Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/Q7gOOCgwMheBsJ4BoBI4GjmVSDE.roa
File: Q7gOOCgwMheBsJ4BoBI4GjmVSDE.roa (raw, json)
Hash identifier: e4rD2AkH1L2PlRNRSE6b4Ydfqwgfs2lEY0CRJhO0ZsQ=
Subject key identifier: 43:B8:0E:38:28:30:32:17:81:B0:9E:01:A0:12:38:1A:39:95:48:31
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 37A9057A
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/Q7gOOCgwMheBsJ4BoBI4GjmVSDE.roa
Signing time: Thu 10 Mar 2022 21:12:06 +0000
ROA not before: Thu 10 Mar 2022 21:12:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50923
IP address blocks: 109.248.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933823866 (0x37a9057a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Mar 10 21:12:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43b80e382830321781b09e01a012381a39954831
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f4:ca:35:f0:59:fa:97:d3:65:1d:5b:29:a5:
f5:c2:b2:49:a4:1a:45:34:26:14:7f:d5:69:58:88:
d1:be:a3:4d:09:53:cc:86:78:18:42:d9:cc:e5:82:
65:be:a4:06:5c:d7:f6:f7:be:12:91:88:22:24:80:
4f:b0:3c:b4:6e:ed:9b:e1:9f:ba:29:29:9d:62:0b:
8f:6f:d1:39:78:68:12:c7:89:56:74:9d:11:b5:1c:
28:ee:8d:48:61:1e:3c:f5:e8:3c:97:f0:cf:8d:22:
d7:91:e3:6b:ac:eb:75:4c:c5:a7:0a:12:b5:27:2a:
04:cd:0d:4f:d2:f2:7d:97:56:66:78:d8:55:98:d9:
48:dc:83:03:4c:c6:f3:47:da:c6:be:32:97:d1:32:
c9:6c:ae:22:ea:6a:7c:f3:ff:cf:50:cb:84:5e:8a:
80:66:03:80:16:f0:54:0a:9f:e2:8b:1e:fd:86:f3:
1a:f3:9f:ad:a7:5a:ef:30:38:17:3d:45:9b:f8:63:
04:cb:4a:52:8e:95:77:a1:27:c7:6f:41:f1:52:3d:
4f:ee:3e:80:7a:8b:68:d6:61:8c:82:a9:fd:9a:78:
43:9f:b7:71:65:8a:c9:72:b9:eb:6a:41:14:85:0c:
45:09:00:74:6d:e0:7c:e9:03:d1:6a:4a:64:9c:1e:
76:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B8:0E:38:28:30:32:17:81:B0:9E:01:A0:12:38:1A:39:95:48:31
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/Q7gOOCgwMheBsJ4BoBI4GjmVSDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.248.196.0/22
Signature Algorithm: sha256WithRSAEncryption
46:f8:14:e2:ec:cc:ba:df:de:d2:a4:4b:ac:c1:97:4a:1d:d3:
83:73:83:2f:02:d5:d8:9c:d1:5f:04:f4:73:45:af:bc:34:9d:
dd:1d:82:1b:83:b2:b1:77:17:07:4d:3b:e8:cd:06:79:76:e8:
b4:41:3e:f6:c9:77:4c:d5:89:33:68:8c:06:41:90:fb:bc:9f:
a3:9f:aa:4b:1f:3c:79:b4:64:93:c0:3a:0c:fe:04:1d:be:f8:
ca:78:ec:d0:88:45:cc:88:84:be:75:f0:25:7b:d3:ca:f3:e5:
37:4e:08:5f:56:48:e3:4b:b7:69:1f:bf:41:69:f5:ec:3c:b0:
85:91:de:94:d6:73:12:e1:52:5c:a3:b2:09:ba:fa:3c:b7:b0:
72:d5:d0:2f:be:28:b9:67:fd:2f:e9:d7:b8:97:5b:78:56:9f:
3e:ae:24:f1:77:ec:db:a7:16:fc:f2:43:8b:22:b9:cf:50:df:
38:1d:c1:08:fa:a8:ab:39:42:f0:87:9b:5f:b7:ac:4d:99:c0:
5b:e8:44:b4:58:59:0b:3a:ad:7f:4e:a8:8f:1c:2a:aa:d2:fc:
6d:c1:01:9a:8e:a5:10:c6:d3:2a:44:78:ff:f1:85:8f:53:3e:
35:93:9d:dd:00:9c:b0:66:21:c5:12:4f:e8:4c:20:c1:f3:89:
d0:4e:8a:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:00 2024 by rpki-client on console-ams.rpki-client.org