Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Q9NF1MnKHUZTZfMZhvhHaIDgM3Y.roa
File: Q9NF1MnKHUZTZfMZhvhHaIDgM3Y.roa (raw, json)
Hash identifier: Wg/hnfR7ky100/KUzzOiJTMoir2GNjkT7Lp4aSakJHk=
Subject key identifier: 43:D3:45:D4:C9:CA:1D:46:53:65:F3:19:86:F8:47:68:80:E0:33:76
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018279D391F63D992408F4C8CB3DC7DC9AB8
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Q9NF1MnKHUZTZfMZhvhHaIDgM3Y.roa
Signing time: Sun 07 Aug 2022 19:41:24 +0000
ROA not before: Sun 07 Aug 2022 19:41:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 109.121.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:79:d3:91:f6:3d:99:24:08:f4:c8:cb:3d:c7:dc:9a:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Aug 7 19:41:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43d345d4c9ca1d465365f31986f8476880e03376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:2b:e9:bf:8a:9e:29:f5:5d:13:91:f7:2c:6b:
fe:14:1f:2a:f5:60:eb:25:d5:fb:3d:7c:2d:19:f0:
9e:51:35:cd:38:9a:b4:cb:3c:66:2d:41:94:a2:da:
ed:f3:cf:44:68:4e:59:31:29:4e:37:1d:49:7e:a4:
de:72:33:47:15:57:22:84:90:be:9a:cc:0a:93:2c:
2f:00:5d:1b:c1:8d:c9:3f:ab:4e:19:d3:25:83:63:
03:76:06:82:8d:a7:6a:4c:86:fa:82:98:34:66:dd:
e8:30:51:aa:c7:7e:bc:1c:5d:c6:48:f6:55:f9:eb:
78:a8:cc:37:95:f2:e3:c7:d8:d1:5e:cd:18:ff:af:
18:92:10:11:36:b5:7f:e9:39:13:3e:46:1b:af:5d:
9b:29:9b:41:ee:2a:59:5a:5b:77:40:cf:3b:99:c7:
dc:f8:90:6d:be:66:4c:ac:20:f6:e0:d2:33:f8:e1:
b9:75:9f:4c:82:b4:5d:4c:f1:3f:08:85:09:26:08:
49:cf:2f:d1:94:92:36:98:fb:d1:d8:de:89:66:4a:
f7:a1:39:7b:53:d4:05:89:9f:ce:56:e8:88:af:e3:
fb:c6:1b:ce:3a:c4:ad:42:83:f6:55:74:55:23:6e:
48:bb:0d:cd:cb:a2:11:1b:a2:7c:6f:fa:7a:e2:c2:
6d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:D3:45:D4:C9:CA:1D:46:53:65:F3:19:86:F8:47:68:80:E0:33:76
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Q9NF1MnKHUZTZfMZhvhHaIDgM3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.121.44.0/24
Signature Algorithm: sha256WithRSAEncryption
51:ab:f4:78:d1:07:5d:6c:3d:07:2b:8b:c9:06:e2:c6:41:6c:
1a:f3:ae:cd:15:0b:3a:4e:c4:7e:82:64:9e:a6:46:11:17:f7:
db:c7:12:41:b9:32:51:5f:9e:94:e2:f1:2e:a7:52:23:b5:44:
e6:b1:f5:f3:bd:e0:ae:c4:63:d5:a7:90:85:e4:c2:66:cb:9d:
22:09:01:5d:0e:1b:73:53:47:8e:c8:34:75:59:35:d0:52:3c:
b6:d3:c6:6e:15:07:fb:89:83:a1:7a:6b:09:7f:3e:c7:6c:20:
f2:48:31:c3:61:7f:f4:3c:e3:c2:41:ac:b7:ec:f8:3d:3f:34:
f2:7b:a3:e8:12:63:59:44:20:1c:72:b7:6a:8e:07:35:e6:f8:
40:93:3c:8d:da:d6:04:4a:84:90:36:30:eb:49:d3:76:9a:1d:
ef:74:9e:20:e2:29:e8:ce:9f:ef:86:6c:a7:bc:73:59:27:91:
a9:9f:e7:23:d6:8a:b8:0d:f2:b8:76:ff:25:2d:58:58:e1:6f:
5b:6a:30:cc:20:09:79:05:8a:2f:59:2c:4a:10:33:15:8b:fa:
25:b3:32:da:87:e9:5c:b5:e7:b5:50:e0:7c:7a:7c:40:7b:2b:
1c:ea:02:5d:f0:67:76:f3:b4:b7:fd:54:00:40:41:d6:c6:6c:
b9:c1:51:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:26 2024 by rpki-client on console-fra.rpki-client.org