Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/LDcGE5JwMZyeT62XDb_93UbhKCQ.roa
File: LDcGE5JwMZyeT62XDb_93UbhKCQ.roa (raw, json)
Hash identifier: mmnnAXz60CogbAlz++eSVfMEJ19uzKnJJA9sJYJ3K6k=
Subject key identifier: 2C:37:06:13:92:70:31:9C:9E:4F:AD:97:0D:BF:FD:DD:46:E1:28:24
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 02B246E0
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/LDcGE5JwMZyeT62XDb_93UbhKCQ.roa
Signing time: Thu 28 Apr 2022 11:43:43 +0000
ROA not before: Thu 28 Apr 2022 11:43:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139648
IP address blocks: 109.238.160.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45237984 (0x2b246e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Apr 28 11:43:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c3706139270319c9e4fad970dbffddd46e12824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:6d:4c:93:aa:28:47:b8:36:24:4b:4a:e6:31:
c1:c1:11:b6:18:76:b4:3d:b7:0f:48:bb:f3:8a:7b:
a0:18:a0:95:b9:b3:e3:d3:19:c9:cf:bc:4a:90:8c:
40:50:94:90:a1:a0:20:47:c0:e4:1a:ac:e4:92:97:
fc:ee:0f:50:ad:78:17:17:af:1f:a2:76:4d:00:92:
ce:6e:81:d8:b4:ca:df:4b:73:f6:01:4f:0a:e5:65:
c8:a3:21:1f:f7:7b:3c:c9:78:4a:73:5f:aa:2d:c0:
d0:44:7c:9c:e5:fd:e4:62:2e:1f:7a:1a:40:41:dc:
32:d8:11:51:c3:33:42:f7:9d:bc:2e:55:d4:ab:c6:
98:36:71:6a:6b:e4:d3:80:9c:d6:06:2d:b2:ee:de:
a0:ed:52:26:4a:22:ba:5c:4f:36:4c:09:c6:74:4a:
20:e8:79:0c:9b:d6:c9:00:39:4e:eb:26:61:60:08:
ba:f0:25:4c:fb:30:7e:01:6f:57:d7:e7:63:25:2d:
10:29:9e:09:d4:5b:0c:ca:15:a7:1d:d4:73:00:f5:
db:1f:1b:d5:67:f8:bb:ee:2e:58:49:c7:f4:f7:c6:
2e:64:e0:e1:ea:57:56:54:95:cd:1d:7d:78:dc:e0:
d5:b5:85:1f:60:af:86:c1:ed:e0:ee:7a:d4:66:9c:
5c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:37:06:13:92:70:31:9C:9E:4F:AD:97:0D:BF:FD:DD:46:E1:28:24
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/LDcGE5JwMZyeT62XDb_93UbhKCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.238.160.0/21
Signature Algorithm: sha256WithRSAEncryption
0b:d9:d4:34:b7:7f:f3:b0:f3:b4:c8:ef:29:06:8e:ac:34:da:
ed:ba:06:cb:7b:34:31:43:b2:d2:0f:af:90:1f:0b:d6:f3:17:
6b:29:27:9c:6a:22:ae:a1:6d:58:d4:e6:9e:11:66:04:ba:8c:
a6:f7:2c:2e:6b:5b:92:f2:af:71:ae:5b:da:7d:48:0b:cd:13:
a9:d7:0d:4b:09:13:75:4a:f7:e0:13:d4:62:a2:f0:a2:05:78:
39:10:25:41:28:8a:70:a6:6a:4f:87:13:fc:a6:9c:bf:46:88:
b1:42:a6:86:11:95:cc:8d:1a:f6:c3:26:d8:41:7c:82:7a:19:
a7:97:c8:5e:81:39:9c:b7:34:d0:cf:c6:fc:34:49:d3:7a:3d:
de:0d:7d:c5:8d:31:4d:0b:49:4f:f4:d8:c2:45:27:2a:a7:f1:
4b:a5:0f:81:34:57:4c:3d:20:21:34:2b:ad:91:7a:47:87:a4:
d3:40:c4:f0:87:6e:fd:d7:21:34:6a:97:1e:27:f0:5e:36:35:
6e:5b:b9:a3:46:2d:82:ac:ed:46:b9:c6:00:5b:9d:41:26:ec:
14:6a:35:da:30:89:3c:24:54:06:e5:17:c3:f0:50:97:0a:d0:
45:c7:4f:00:f3:5b:2b:3d:4c:0b:af:95:75:61:b5:b6:c7:55:
63:6f:7b:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:06 2023 by rpki-client on console-fra.rpki-client.org