Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/fa5782-801c-4893-9328-3e0b84478b9d/1/Ejb0qQWGnzHN_oD-La3i278FKIQ.roa
File: Ejb0qQWGnzHN_oD-La3i278FKIQ.roa (raw, json)
Hash identifier: ELKb4+7nVOVXV0yhvqpAt0PLp+Qi13cZzxXaiLFMHJk=
Subject key identifier: 12:36:F4:A9:05:86:9F:31:CD:FE:80:FE:2D:AD:E2:DB:BF:05:28:84
Certificate issuer: /CN=400fe172a0c7e33c43ccaaee3a1ef42cd009e91e
Certificate serial: 89BA10
Authority key identifier: 40:0F:E1:72:A0:C7:E3:3C:43:CC:AA:EE:3A:1E:F4:2C:D0:09:E9:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA_hcqDH4zxDzKruOh70LNAJ6R4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/fa5782-801c-4893-9328-3e0b84478b9d/1/Ejb0qQWGnzHN_oD-La3i278FKIQ.roa
Signing time: Sat 01 Jan 2022 01:01:17 +0000
ROA not before: Sat 01 Jan 2022 01:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 109.107.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9026064 (0x89ba10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400fe172a0c7e33c43ccaaee3a1ef42cd009e91e
Validity
Not Before: Jan 1 01:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1236f4a905869f31cdfe80fe2dade2dbbf052884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ee:b2:1e:6a:1f:d2:ff:e3:d3:4b:a6:2d:47:
23:1a:30:2c:1e:b0:55:44:61:05:04:e4:69:88:37:
1f:f5:8a:18:54:c4:a4:f2:1a:a1:fa:3e:79:2d:33:
27:c2:0b:c4:6f:e4:3b:03:ff:87:a7:d8:94:e0:1e:
40:55:f3:7c:28:35:b6:5e:03:5a:7c:b3:54:7f:20:
61:d1:7c:a3:f6:b1:ad:41:80:f0:97:cf:a1:9a:a5:
b8:e8:78:12:25:1c:91:e3:bf:9e:02:66:4d:a5:21:
73:d6:69:89:f7:1a:ad:36:82:53:3e:c7:35:cc:d8:
c8:1f:ea:d3:6d:d8:47:b2:ce:6c:fe:3f:6d:1a:5a:
07:f9:17:e7:97:5f:13:3c:b2:e0:63:a7:6e:3e:f6:
c3:00:72:8e:47:21:f6:16:a5:08:63:63:bc:03:d0:
86:fe:f9:58:50:b9:bf:6d:3a:f2:14:fd:53:4a:b4:
5b:5d:5b:ca:75:a1:68:f1:1a:35:2a:cd:45:b3:38:
85:e9:35:53:f2:c7:95:93:09:62:e1:63:a1:06:75:
68:ee:0b:9c:e1:09:5b:f2:e4:1b:54:45:97:13:b7:
27:cf:fa:19:f9:2d:55:8f:c5:e9:3f:35:45:d1:95:
ca:ff:c6:ad:82:7a:42:0a:c1:c3:19:e9:78:ce:cf:
05:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:36:F4:A9:05:86:9F:31:CD:FE:80:FE:2D:AD:E2:DB:BF:05:28:84
X509v3 Authority Key Identifier:
keyid:40:0F:E1:72:A0:C7:E3:3C:43:CC:AA:EE:3A:1E:F4:2C:D0:09:E9:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA_hcqDH4zxDzKruOh70LNAJ6R4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/fa5782-801c-4893-9328-3e0b84478b9d/1/Ejb0qQWGnzHN_oD-La3i278FKIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/fa5782-801c-4893-9328-3e0b84478b9d/1/QA_hcqDH4zxDzKruOh70LNAJ6R4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.145.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:1c:a2:3f:07:c1:c0:94:25:b7:1b:e1:16:b7:54:08:f9:0d:
86:10:b6:8d:3a:55:15:a6:66:11:73:29:bb:27:c4:a1:a1:85:
eb:8c:06:bb:66:78:39:91:c4:a0:01:b7:8f:e5:09:09:4b:52:
4d:13:0a:7a:15:b9:a5:78:d8:4f:ef:30:1f:f0:ef:34:6e:cb:
a8:3d:b4:a2:cb:b6:ae:00:93:07:d6:f0:67:16:ab:fd:9c:76:
b1:21:5b:27:dc:d1:bf:0c:77:a7:0a:51:1f:d8:09:80:6d:16:
47:45:d7:34:a7:46:82:8f:46:3a:ef:13:23:32:dd:02:25:59:
c5:11:09:78:e1:96:fa:39:af:11:67:88:7f:ea:9f:24:b8:1e:
02:80:0c:c9:ba:18:9c:97:40:17:f0:b6:a8:dc:d4:8c:7d:26:
53:09:6d:72:62:cc:91:d0:5f:31:63:db:fa:28:48:1a:e3:e9:
44:79:82:32:2b:eb:3e:66:b9:b1:b2:8c:44:29:f5:03:03:fa:
f4:6f:82:c8:c0:30:cc:bc:b1:c6:fe:61:ac:e1:ed:a8:90:06:
bd:1d:63:93:c2:79:53:6f:b4:a3:f2:52:ed:88:b0:46:af:28:
b4:b8:5e:87:aa:0a:86:3b:c8:31:5d:52:c2:d4:7e:be:ce:dd:
17:2e:fe:e1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAIm6EDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MDBmZTE3MmEwYzdlMzNjNDNjY2FhZWUzYTFlZjQyY2QwMDllOTFlMB4XDTIyMDEw
MTAxMDExN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTIzNmY0YTkwNTg2
OWYzMWNkZmU4MGZlMmRhZGUyZGJiZjA1Mjg4NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKDush5qH9L/49NLpi1HIxowLB6wVURhBQTkaYg3H/WKGFTE
pPIaofo+eS0zJ8ILxG/kOwP/h6fYlOAeQFXzfCg1tl4DWnyzVH8gYdF8o/axrUGA
8JfPoZqluOh4EiUckeO/ngJmTaUhc9ZpifcarTaCUz7HNczYyB/q023YR7LObP4/
bRpaB/kX55dfEzyy4GOnbj72wwByjkch9halCGNjvAPQhv75WFC5v2068hT9U0q0
W11bynWhaPEaNSrNRbM4hek1U/LHlZMJYuFjoQZ1aO4LnOEJW/LkG1RFlxO3J8/6
GfktVY/F6T81RdGVyv/GrYJ6QgrBwxnpeM7PBVcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQSNvSpBYafMc3+gP4treLbvwUohDAfBgNVHSMEGDAWgBRAD+FyoMfjPEPM
qu46HvQs0AnpHjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FBX2hjcURINHp4RHpLcnVPaDcwTE5BSjZSNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2EvZmE1NzgyLTgwMWMtNDg5My05MzI4LTNlMGI4NDQ3OGI5ZC8x
L0VqYjBxUVdHbnpITl9vRC1MYTNpMjc4RktJUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Ev
ZmE1NzgyLTgwMWMtNDg5My05MzI4LTNlMGI4NDQ3OGI5ZC8xL1FBX2hjcURINHp4
RHpLcnVPaDcwTE5BSjZSNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG1rkTANBgkqhkiG9w0BAQsFAAOC
AQEAjRyiPwfBwJQltxvhFrdUCPkNhhC2jTpVFaZmEXMpuyfEoaGF64wGu2Z4OZHE
oAG3j+UJCUtSTRMKehW5pXjYT+8wH/DvNG7LqD20osu2rgCTB9bwZxar/Zx2sSFb
J9zRvwx3pwpRH9gJgG0WR0XXNKdGgo9GOu8TIzLdAiVZxREJeOGW+jmvEWeIf+qf
JLgeAoAMyboYnJdAF/C2qNzUjH0mUwltcmLMkdBfMWPb+ihIGuPpRHmCMivrPma5
sbKMRCn1AwP69G+CyMAwzLyxxv5hrOHtqJAGvR1jk8J5U2+0o/JS7YiwRq8otLhe
h6oKhjvIMV1SwtR+vs7dFy7+4Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:23 2024 by rpki-client on console-ams.rpki-client.org