Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/09db86-676d-4f9e-a2b4-0285c15fc51e/1/yX-4v5DcNhhynSB_fcgt6-fLgiA.roa
File: yX-4v5DcNhhynSB_fcgt6-fLgiA.roa (raw, json)
Hash identifier: 7nQ+JWgAuVFcvPNNk24LneCHGKVZzyNRrlKIWBIO/VY=
Subject key identifier: C9:7F:B8:BF:90:DC:36:18:72:9D:20:7F:7D:C8:2D:EB:E7:CB:82:20
Certificate issuer: /CN=175f6e1ebb831935c8422c972bcab2e56d1d9e36
Certificate serial: 29449FEA
Authority key identifier: 17:5F:6E:1E:BB:83:19:35:C8:42:2C:97:2B:CA:B2:E5:6D:1D:9E:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F19uHruDGTXIQiyXK8qy5W0dnjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/09db86-676d-4f9e-a2b4-0285c15fc51e/1/yX-4v5DcNhhynSB_fcgt6-fLgiA.roa
Signing time: Sat 01 Jan 2022 05:59:36 +0000
ROA not before: Sat 01 Jan 2022 05:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50031
IP address blocks: 109.69.112.0/21 maxlen: 21
2a01:7300::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 692363242 (0x29449fea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=175f6e1ebb831935c8422c972bcab2e56d1d9e36
Validity
Not Before: Jan 1 05:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c97fb8bf90dc3618729d207f7dc82debe7cb8220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:10:6b:27:40:d7:0f:98:ba:42:5d:57:fb:09:
fe:b6:3e:6c:9b:0d:a3:3f:84:2a:01:d8:fe:12:95:
67:01:37:04:86:9f:28:f1:7a:f0:47:c3:c0:4d:24:
57:9c:71:16:b2:32:78:fd:6c:01:0e:a0:d8:dc:41:
b2:82:e3:47:4a:9a:f8:f3:2c:fd:05:9d:fc:7b:4f:
ac:ab:72:ab:e6:b7:99:7c:8a:a9:ca:74:34:9f:10:
d8:95:9a:c3:0b:72:f6:2e:56:5b:2e:68:e0:61:26:
64:1c:27:a9:08:28:7e:cf:2c:c4:63:46:e1:6a:d2:
50:73:1d:86:bd:dd:fb:92:1c:3b:76:33:72:dc:ad:
07:01:3a:a0:fa:13:3f:b6:31:0f:f5:2a:fe:cc:da:
ab:91:ea:58:07:c7:b5:e4:2a:9e:be:51:de:80:a1:
6b:aa:ec:00:61:42:c4:c6:15:bb:38:78:f8:51:5a:
52:fe:1b:9c:54:8c:eb:7e:81:72:28:26:42:aa:c4:
da:40:89:97:56:8d:9c:61:54:14:c1:4d:41:36:9e:
c1:d6:30:36:72:5b:30:70:19:03:fc:3f:d1:d1:7c:
99:2a:99:1b:13:e0:77:09:64:14:c3:7a:de:0b:49:
2a:fd:83:92:3b:be:fc:c3:c5:dd:00:28:ca:22:de:
b5:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:7F:B8:BF:90:DC:36:18:72:9D:20:7F:7D:C8:2D:EB:E7:CB:82:20
X509v3 Authority Key Identifier:
keyid:17:5F:6E:1E:BB:83:19:35:C8:42:2C:97:2B:CA:B2:E5:6D:1D:9E:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F19uHruDGTXIQiyXK8qy5W0dnjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/09db86-676d-4f9e-a2b4-0285c15fc51e/1/yX-4v5DcNhhynSB_fcgt6-fLgiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/09db86-676d-4f9e-a2b4-0285c15fc51e/1/F19uHruDGTXIQiyXK8qy5W0dnjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.69.112.0/21
IPv6:
2a01:7300::/32
Signature Algorithm: sha256WithRSAEncryption
65:77:c3:19:1b:3b:33:9e:30:1c:32:93:51:a1:6b:6f:38:a2:
88:a6:0a:91:26:b4:08:85:cf:5a:80:78:a7:17:58:f3:37:cb:
14:c0:82:c0:8d:27:69:94:47:ce:04:f6:34:0b:e3:fd:42:66:
6e:b5:b2:2b:58:29:6e:b5:9c:f2:95:47:2e:43:02:70:13:dc:
28:37:7c:9d:63:75:41:49:c0:09:42:ed:ee:fc:c3:47:49:fd:
84:63:09:08:71:39:2f:e8:06:16:2f:46:a9:d3:56:ca:26:5e:
6d:59:44:ae:a9:78:04:e3:33:78:e2:8b:8c:3f:ff:8b:13:c9:
d2:0f:d6:51:2a:0c:0f:e2:c1:84:b4:00:8a:cc:84:0b:83:2b:
22:e3:e5:57:31:76:8c:50:0d:ee:ba:db:d7:3c:d7:aa:d9:2c:
b4:41:33:37:0e:0f:7e:5e:a0:51:ad:dc:6f:21:4b:eb:c5:c7:
f1:b1:cf:bc:4b:39:15:e7:1e:b0:d5:4a:74:82:1f:02:b8:29:
79:00:1c:55:ca:44:9a:f3:aa:43:bc:3c:c4:3c:1f:0d:b2:3a:
a6:d7:6b:a6:12:48:10:8d:54:7c:09:ee:81:ea:0a:e3:d7:e1:
7e:73:8a:fb:0c:bf:e5:f3:0f:e3:eb:37:c7:26:77:07:74:42:
15:2a:13:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:55 2023 by rpki-client on console-fra.rpki-client.org