Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/l9DAb6h2xMHgMDC5iWsfDo35K44.roa
File: l9DAb6h2xMHgMDC5iWsfDo35K44.roa (raw, json)
Hash identifier: V6slZUOMABcmRCGtMRXoqUi3UCTkEO0ZUPdQn83kmY4=
Subject key identifier: 97:D0:C0:6F:A8:76:C4:C1:E0:30:30:B9:89:6B:1F:0E:8D:F9:2B:8E
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 37B83A74
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/l9DAb6h2xMHgMDC5iWsfDo35K44.roa
Signing time: Mon 14 Mar 2022 17:39:41 +0000
ROA not before: Mon 14 Mar 2022 17:39:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49181
IP address blocks: 109.248.196.0/22 maxlen: 24
188.130.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 934820468 (0x37b83a74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Mar 14 17:39:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97d0c06fa876c4c1e03030b9896b1f0e8df92b8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4c:61:cb:77:38:d0:8d:8a:32:2e:12:4f:c0:
26:2d:6c:00:0f:dc:81:c6:f3:e7:5e:16:c2:db:b6:
2c:d9:8a:2b:82:2c:78:1f:4b:1f:5b:34:29:46:99:
f9:9a:a6:98:ca:19:cd:46:4e:dc:34:65:fd:1b:65:
b5:d4:6f:8c:4a:d5:de:d4:b4:a1:7b:c3:21:36:c0:
75:b0:75:94:23:09:d3:48:5a:d3:f7:c8:6e:a0:71:
ce:b6:61:b8:9c:a0:54:09:64:e5:2f:e9:27:f5:7c:
50:ca:63:9c:e6:e9:8a:5f:2c:62:78:61:4c:4e:06:
97:7a:27:d1:9e:22:dd:93:20:70:13:e9:2a:a6:bc:
ec:38:04:d4:ea:a3:39:5f:bb:69:74:04:dc:bb:1d:
96:b4:a9:9f:f8:9e:2d:9a:f9:62:ba:bd:e7:20:82:
39:fb:44:33:43:46:90:cd:e4:7d:b1:d9:e6:7c:0a:
d2:7e:ad:fb:2d:c1:41:b7:3e:32:b2:61:ef:a0:e6:
b1:fc:a7:5c:62:e9:7b:eb:9d:eb:ef:f4:65:a1:9a:
ed:a8:e7:e9:83:73:76:9c:9c:14:1c:33:1c:83:63:
28:29:63:42:63:71:6b:21:41:6c:a7:0f:08:dc:39:
05:56:6d:d1:61:73:b6:93:39:64:0f:6a:1f:f6:89:
de:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D0:C0:6F:A8:76:C4:C1:E0:30:30:B9:89:6B:1F:0E:8D:F9:2B:8E
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/l9DAb6h2xMHgMDC5iWsfDo35K44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.248.196.0/22
188.130.254.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:64:b8:99:51:c9:1b:49:d6:03:10:39:b5:02:7d:17:ba:7f:
c8:25:a1:bd:55:97:9b:9c:de:42:21:1f:d0:35:d6:1b:57:2f:
5e:03:73:97:f1:83:17:96:f4:25:55:79:41:fb:88:06:00:5d:
9e:00:99:10:84:3c:40:08:5a:1f:06:78:30:b0:56:70:72:fe:
6b:13:6f:f5:c5:3a:c8:5d:0c:ad:3b:08:5a:f0:c9:29:61:88:
b2:84:9e:55:04:91:8e:32:e8:1c:7c:77:19:4e:e1:da:0a:34:
ad:ed:21:a7:c3:96:4e:49:ca:23:eb:1b:ec:0d:da:f8:d3:b4:
61:aa:6b:d2:e3:86:b0:68:3f:26:95:6e:e4:71:04:0b:cb:e5:
6c:73:e7:32:b8:77:ec:31:8e:d6:d2:e0:99:b3:4b:0c:40:87:
10:da:b7:b8:d8:06:a2:b6:c7:b8:5d:d8:6b:5e:d7:b7:c3:6b:
82:2f:ff:b8:ec:34:c3:82:61:63:85:60:42:b0:27:d9:a6:de:
c5:d7:c8:a7:4d:28:a4:fe:64:a4:4e:df:29:34:db:fe:93:6e:
6e:a9:4f:90:c2:94:12:71:41:46:17:57:ac:11:ab:52:3d:38:
d0:0b:8a:7c:be:25:a8:d3:7f:46:6a:c1:66:b1:33:88:bc:73:
29:2b:43:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:51 2023 by rpki-client on console-ams.rpki-client.org