Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/EffEtF14OYE_begH7l_GzHRd0XY.roa
File: EffEtF14OYE_begH7l_GzHRd0XY.roa (raw, json)
Hash identifier: WGZ8jvTdNdkUg2gYU1SDfczbvyVyD23VZ0hVa99V/0s=
Subject key identifier: 11:F7:C4:B4:5D:78:39:81:3F:6D:E8:07:EE:5F:C6:CC:74:5D:D1:76
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 09B60609
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/EffEtF14OYE_begH7l_GzHRd0XY.roa
Signing time: Mon 27 Jun 2022 06:57:48 +0000
ROA not before: Mon 27 Jun 2022 06:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 109.121.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162924041 (0x9b60609)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jun 27 06:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11f7c4b45d7839813f6de807ee5fc6cc745dd176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7e:ae:31:d9:8d:ea:70:0b:aa:d6:78:a4:97:
59:1b:dd:ee:79:f4:00:97:1e:5d:6f:e5:f0:5f:22:
12:04:c5:62:57:c9:20:73:b0:b8:0e:b8:0b:a6:b6:
47:73:c0:4f:58:d4:74:1f:4a:3b:f7:78:8b:43:3f:
53:82:d7:91:32:4e:21:f2:96:d9:7b:61:62:7c:d0:
74:e6:6d:a9:c6:79:85:c9:c2:13:8a:34:44:a3:70:
5c:48:cf:93:15:74:80:e4:a1:56:76:69:fd:83:7a:
46:b4:16:4d:63:d3:2a:e6:f3:56:e2:d3:41:f3:cc:
9b:03:18:6e:13:7a:08:cc:69:75:b9:f2:2e:72:18:
ca:7c:b6:4c:cc:31:af:14:bb:2e:e7:39:31:86:33:
92:c0:9d:3c:14:f1:ec:1c:83:c5:6f:cb:bb:ec:f9:
78:47:26:7b:61:5e:88:c1:67:f5:7f:8d:27:1a:7b:
ae:2e:38:ac:b8:ac:9e:b0:08:d6:53:df:31:5e:6c:
0e:ac:78:47:b2:6c:7f:d2:7d:3b:08:84:8a:7b:d6:
00:1a:4c:a4:b9:3a:50:a9:b1:27:c7:57:57:1f:d2:
aa:c2:da:00:92:2e:ec:49:56:17:d2:93:30:79:54:
43:f0:39:1d:e3:26:13:d0:50:bc:76:b1:2f:de:9c:
f3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:F7:C4:B4:5D:78:39:81:3F:6D:E8:07:EE:5F:C6:CC:74:5D:D1:76
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/EffEtF14OYE_begH7l_GzHRd0XY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.121.36.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:83:9e:51:14:7a:1f:3d:3a:43:1d:14:62:27:ec:69:3a:33:
12:54:65:8c:cb:d4:62:12:a2:3d:01:9b:de:e7:59:78:c1:52:
66:e7:0c:61:19:23:e3:05:ac:fb:70:2e:56:32:26:a0:06:a1:
45:15:72:86:5e:97:04:5c:ab:a1:ba:07:27:ae:f3:4d:51:bc:
92:c1:3c:05:9f:6c:c4:7a:cb:43:4f:d0:41:05:fc:dd:31:17:
9e:82:a4:a7:39:3c:7d:51:1a:8d:17:fc:ec:0b:2e:60:2a:f8:
a0:ac:04:09:fe:75:15:03:4f:4f:5b:5d:a1:05:4f:35:00:77:
ba:27:e9:1b:1a:45:8e:10:97:c2:37:26:47:3e:6e:d0:7e:eb:
1e:1d:78:31:b9:f5:8c:5e:37:0d:ab:6f:06:a1:65:75:f3:f7:
57:3b:63:ea:98:82:55:d2:ab:2c:07:73:dd:8b:1a:bc:0e:09:
f4:4a:33:93:33:cb:73:14:78:ee:b9:da:a0:13:6a:a1:1d:6b:
76:b3:8a:96:56:5e:4b:74:6c:78:d3:31:3e:9f:86:85:d0:45:
6d:56:c0:38:f4:a0:77:e4:be:4c:1a:db:4b:73:38:2d:5e:44:
ec:1e:55:0b:42:71:3e:de:d9:3e:ea:fc:fb:e7:63:45:d4:e6:
d0:85:84:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:26 2024 by rpki-client on console-fra.rpki-client.org