Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/vqPgx4RZVUjhVHZURG55wQpb6nU.roa
File: vqPgx4RZVUjhVHZURG55wQpb6nU.roa (raw, json)
Hash identifier: et2bMC+tgAcRhy7rB5Dj5WZphLBC8F9yjOZSQq2N3SA=
Subject key identifier: BE:A3:E0:C7:84:59:55:48:E1:54:76:54:44:6E:79:C1:0A:5B:EA:75
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0AE58206
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/vqPgx4RZVUjhVHZURG55wQpb6nU.roa
Signing time: Fri 07 Jan 2022 18:00:27 +0000
ROA not before: Fri 07 Jan 2022 18:00:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213257
IP address blocks: 109.236.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182813190 (0xae58206)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 7 18:00:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bea3e0c784595548e1547654446e79c10a5bea75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:62:49:56:9a:7d:e5:db:58:94:bf:81:3e:14:
49:45:81:cf:62:8a:ce:6e:3e:51:1e:66:08:58:27:
69:94:be:ce:24:90:7e:47:2b:0a:c3:c6:59:b8:e6:
ed:04:ab:dc:d2:c9:18:04:b7:4d:ec:d3:2a:7d:20:
38:af:53:a2:32:5c:e2:b3:66:ea:d9:03:c5:44:e4:
9a:26:95:e4:2b:3e:45:ca:9a:fc:d7:0c:d0:ce:d8:
8b:aa:a1:14:4b:72:0c:fd:f9:0b:03:64:c0:54:2f:
40:f6:e1:64:4f:7d:0c:2b:60:0d:b3:3c:b3:ea:c9:
a7:37:b4:5f:57:5d:b6:e2:58:6f:e1:f0:24:21:a9:
e8:8f:6a:ee:1a:18:36:5d:f7:c9:96:80:1c:b6:62:
c1:b5:82:af:7d:da:c2:65:53:fd:75:23:89:be:a5:
b4:0e:37:b1:8d:3a:12:03:97:de:b1:4b:a5:20:25:
c8:e0:1f:11:6e:d6:02:14:cd:d9:86:fd:c0:af:68:
c0:6a:3e:71:99:89:26:76:ed:64:37:1b:4f:f2:f1:
b8:47:ea:35:ec:8e:ea:7f:fd:e4:1d:47:c9:7e:e1:
0f:18:6a:59:37:1b:e1:f4:ae:7a:04:96:5a:93:79:
cb:15:23:2c:47:78:d7:60:1c:36:78:80:36:06:86:
db:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:A3:E0:C7:84:59:55:48:E1:54:76:54:44:6E:79:C1:0A:5B:EA:75
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/vqPgx4RZVUjhVHZURG55wQpb6nU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.236.49.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:7b:98:54:2e:23:17:56:48:d3:cc:b6:ce:d1:3f:70:fc:0c:
08:31:ab:82:64:ad:61:51:02:3f:6f:07:94:81:ae:1e:e3:3d:
39:e2:f2:64:4c:d9:f2:b4:c7:40:7b:4d:c6:0a:bb:3f:c2:54:
c3:76:b2:6b:de:cb:4a:ff:f9:b0:78:4f:79:c7:f1:30:b5:33:
98:b3:ec:48:c5:06:9c:78:0c:e6:51:6a:0a:4e:59:f0:1e:1d:
c9:95:41:d6:77:0a:bf:1e:e0:12:65:4b:ae:1f:c2:3d:3f:92:
19:98:c9:9d:47:91:00:d8:65:ce:0f:de:2f:bf:45:73:a6:06:
77:25:90:d4:65:75:15:e5:a7:35:e7:f7:dd:5b:f3:b9:e8:31:
6f:67:6f:32:12:e3:df:58:5f:7e:74:ce:52:cc:a1:a9:e4:d6:
ab:88:56:5a:38:8c:50:a8:10:64:3a:7b:88:3e:f2:86:cf:96:
ab:19:13:10:01:f7:e9:4c:09:69:38:7b:b8:e0:7a:51:5e:2f:
78:34:9c:35:3b:b7:30:b5:85:aa:c9:20:34:d4:94:53:57:12:
0c:55:47:36:1d:a3:42:69:63:dd:24:b4:92:e1:b7:17:30:69:
29:ec:65:9e:18:68:9c:89:14:a5:5d:7b:a2:fa:6b:0f:96:da:
7b:da:56:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:49 2024 by rpki-client on console-fra.rpki-client.org