Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/J0YVVsSxyGtRgflpbmNVSgey6hM.roa
File: J0YVVsSxyGtRgflpbmNVSgey6hM.roa (raw, json)
Hash identifier: ap2ZlX4Y+dc7udcfbIUwM0wZCHP8QHMOmQMsuxHXW64=
Subject key identifier: 27:46:15:56:C4:B1:C8:6B:51:81:F9:69:6E:63:55:4A:07:B2:EA:13
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 01841CBF1116BC22B9CEEEF5A147A8066041
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/J0YVVsSxyGtRgflpbmNVSgey6hM.roa
Signing time: Fri 28 Oct 2022 03:59:54 +0000
ROA not before: Fri 28 Oct 2022 03:59:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61185
IP address blocks: 109.238.160.0/21 maxlen: 24
109.238.168.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1c:bf:11:16:bc:22:b9:ce:ee:f5:a1:47:a8:06:60:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Oct 28 03:59:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27461556c4b1c86b5181f9696e63554a07b2ea13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e9:ba:a3:46:25:90:7d:ba:33:8a:9f:ca:e6:
46:c5:33:8b:d9:72:bf:bd:8d:67:49:89:8b:c2:00:
97:32:e7:d6:18:5e:01:21:cd:0c:0f:02:af:3b:50:
b0:6c:d1:4d:8a:73:52:94:b7:ed:33:87:d4:0f:f1:
e8:88:3c:9c:60:33:02:86:68:f7:f7:98:e3:a2:53:
53:8a:de:8e:3f:f2:73:30:ef:75:5e:24:2b:9d:c6:
b2:16:9f:26:f1:3b:7e:9b:d2:c6:ad:ae:42:7e:a7:
94:ad:c3:83:70:4f:7b:90:e4:b0:d5:f5:d4:3b:5d:
44:1a:08:62:6f:67:5f:88:39:ff:dd:bc:55:45:d7:
a9:20:20:cc:fc:e8:81:c7:5e:aa:1b:ab:1c:59:6a:
9c:f2:a3:a5:95:3b:ec:e5:70:b7:95:66:78:91:2a:
49:37:48:36:61:eb:64:8e:33:48:1b:23:3c:d4:1b:
2e:da:7a:b9:42:2c:3e:d9:ea:94:54:b2:1a:1b:bb:
0b:21:7c:cb:d6:80:78:7d:43:5b:8f:57:6c:8e:02:
ee:3f:14:ca:4c:95:08:6c:13:68:e4:16:46:bd:a3:
5f:4d:75:dc:da:3b:af:49:51:b7:fa:99:80:16:37:
33:0c:cb:4c:27:eb:6a:64:0b:42:da:76:77:9b:02:
ac:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:46:15:56:C4:B1:C8:6B:51:81:F9:69:6E:63:55:4A:07:B2:EA:13
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/J0YVVsSxyGtRgflpbmNVSgey6hM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.238.160.0/20
Signature Algorithm: sha256WithRSAEncryption
98:5a:98:d2:e6:20:d7:75:45:77:de:c5:36:97:4c:46:4b:b5:
cf:96:54:23:99:10:24:77:90:53:a5:51:ce:5a:77:53:74:9a:
84:62:f6:5b:98:3f:5c:83:2d:62:6d:f2:2d:2f:af:58:7e:ea:
ce:99:3b:b7:5a:d6:b2:47:80:06:bb:69:ed:47:f3:5f:62:61:
4c:22:37:83:81:52:0b:28:37:12:8f:46:4f:f1:ec:83:c9:66:
b3:24:0b:c4:dd:20:46:63:f6:64:d5:47:cc:57:35:e9:31:0f:
7a:27:2c:ff:87:d1:75:4c:cd:68:f8:b0:d3:b3:09:fd:6f:cd:
54:45:e0:91:83:50:50:e6:ef:9a:6f:b0:c9:4f:57:81:bd:8f:
bd:a3:7e:c0:8a:45:22:f2:fe:fd:d8:59:5e:e5:7d:8b:b2:9c:
ff:85:e2:f2:29:41:38:8d:9d:94:6c:33:b8:ca:1a:29:f2:6f:
8c:e2:b1:aa:82:db:c1:fe:d7:9c:b5:40:6c:72:9f:9f:69:c2:
e9:dd:4b:78:c7:7e:cb:23:a1:c7:bf:e3:03:40:95:83:8b:57:
7c:45:04:c4:34:95:fd:48:7d:5b:28:3d:35:cb:5f:d9:e0:86:
cf:8a:a6:12:8b:ac:ba:d1:a8:ed:54:4c:cc:22:b1:18:f5:4e:
42:91:4a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:43 2023 by rpki-client on console-ams.rpki-client.org