Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/2e8abe-8e70-4715-91ae-963d13fd09bb/1/xewT6jOtEI_EBF816ymuKEyJqRc.roa
File: xewT6jOtEI_EBF816ymuKEyJqRc.roa (raw, json)
Hash identifier: 3G4nj/t1LWZBYrDSxx937tnISV2vbO4WfnNKT21CQMY=
Subject key identifier: C5:EC:13:EA:33:AD:10:8F:C4:04:5F:35:EB:29:AE:28:4C:89:A9:17
Certificate issuer: /CN=f141d664698b70ffb2a26f684b47deb6c8d59a53
Certificate serial: 01825548
Authority key identifier: F1:41:D6:64:69:8B:70:FF:B2:A2:6F:68:4B:47:DE:B6:C8:D5:9A:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8UHWZGmLcP-yom9oS0fetsjVmlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/2e8abe-8e70-4715-91ae-963d13fd09bb/1/xewT6jOtEI_EBF816ymuKEyJqRc.roa
Signing time: Sat 01 Jan 2022 02:52:37 +0000
ROA not before: Sat 01 Jan 2022 02:52:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201336
IP address blocks: 109.71.249.0/24 maxlen: 24
109.71.248.0/24 maxlen: 24
109.71.248.0/22 maxlen: 22
109.71.251.0/24 maxlen: 24
109.71.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25318728 (0x1825548)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f141d664698b70ffb2a26f684b47deb6c8d59a53
Validity
Not Before: Jan 1 02:52:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5ec13ea33ad108fc4045f35eb29ae284c89a917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fe:bc:b2:96:d7:2e:9e:26:d1:8a:c9:13:0f:
fa:68:24:3b:73:4b:58:32:de:38:0e:5c:bc:64:4c:
3b:55:02:0b:d7:57:e5:4f:f5:01:ec:a0:bc:f9:77:
8f:61:2b:df:16:5a:5c:c5:8a:4b:36:28:ea:80:87:
2c:5b:36:58:43:0b:fb:f1:b1:38:9d:94:aa:e1:95:
32:f9:8a:5c:42:16:45:c8:f7:86:b5:6c:91:ef:0a:
67:9e:b8:9a:fe:a6:e8:f3:87:32:53:bf:1e:0a:21:
3d:0d:6b:f8:bf:9f:f5:b2:65:1d:fe:0e:b7:90:86:
73:92:13:d9:14:18:92:4a:b5:d7:47:90:0b:00:86:
7b:ab:71:26:a5:15:c3:fb:3c:1b:86:8c:de:e6:71:
cf:75:25:c0:63:b9:a0:d7:b4:e0:d4:f0:dc:67:19:
ba:e0:ae:84:30:6c:b9:67:fc:83:7e:43:5a:f2:3d:
22:e1:13:83:d0:39:bd:78:b3:54:4e:f8:54:ce:92:
e9:b6:dd:ec:72:a2:b4:a0:02:99:b9:fa:24:e8:1e:
e3:32:80:91:5c:b7:3b:f5:77:95:78:1b:7d:d1:18:
11:d6:74:0d:0e:c6:b4:f1:ad:4b:72:87:ed:12:eb:
df:33:11:4c:ff:7f:1a:99:40:bd:c7:6b:7d:86:8b:
f3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:EC:13:EA:33:AD:10:8F:C4:04:5F:35:EB:29:AE:28:4C:89:A9:17
X509v3 Authority Key Identifier:
keyid:F1:41:D6:64:69:8B:70:FF:B2:A2:6F:68:4B:47:DE:B6:C8:D5:9A:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8UHWZGmLcP-yom9oS0fetsjVmlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/2e8abe-8e70-4715-91ae-963d13fd09bb/1/xewT6jOtEI_EBF816ymuKEyJqRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/2e8abe-8e70-4715-91ae-963d13fd09bb/1/8UHWZGmLcP-yom9oS0fetsjVmlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.71.248.0/22
Signature Algorithm: sha256WithRSAEncryption
af:29:4a:ef:15:1f:bf:f8:13:72:c7:0b:3b:79:df:5d:15:ee:
03:85:e6:76:81:f7:f1:d4:51:6a:f9:bd:d9:99:3f:a2:17:75:
2c:d0:59:a0:4c:5e:6b:67:b7:42:34:b7:a5:bf:6a:66:77:a1:
b1:de:12:d6:5a:66:6e:1d:65:5d:de:96:51:ee:a5:b7:0a:af:
b5:bb:92:9c:33:74:30:dc:23:46:68:94:35:ed:17:d5:72:b4:
c7:6f:74:3b:87:4f:74:13:27:9d:e0:9c:b4:4e:f3:9b:06:b9:
0a:f4:9d:b0:82:99:f5:c6:66:65:ec:37:a6:f8:6f:ca:10:ec:
e7:43:c5:37:0d:55:0c:a8:58:28:ea:1c:a0:77:e2:4d:93:a8:
49:2c:5d:c8:ed:ee:6d:f3:06:b6:66:7c:50:b0:03:cd:51:87:
eb:b6:25:86:d1:31:b2:fe:14:ff:f7:c3:89:c6:1f:e5:c0:50:
44:37:e7:ed:f8:68:41:26:8c:67:b4:92:3d:7e:b0:00:ae:18:
00:8a:a5:9e:56:2d:33:d4:55:e9:66:10:0f:0b:2d:22:35:a3:
b7:dc:62:42:11:1d:0e:a6:6c:65:ed:fb:c4:97:1f:79:90:e7:
6a:7b:84:0d:07:cd:85:31:f8:6d:42:22:f5:ef:75:1b:66:a2:
f1:cb:7d:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:30 2023 by rpki-client on console-ams.rpki-client.org