Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/Fob-nm2rAZ2wOiBGwA5FH9gk-6g.roa
File: Fob-nm2rAZ2wOiBGwA5FH9gk-6g.roa (raw, json)
Hash identifier: KGz9QxoomhOtvsmc8SCfbjsVIC4HeQ66yZZ+Za8Kr5M=
Subject key identifier: 16:86:FE:9E:6D:AB:01:9D:B0:3A:20:46:C0:0E:45:1F:D8:24:FB:A8
Certificate issuer: /CN=5a4a47d582bb0e9680f89258ab96d05867d352ef
Certificate serial: 0474CD58
Authority key identifier: 5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/Fob-nm2rAZ2wOiBGwA5FH9gk-6g.roa
Signing time: Sat 01 Jan 2022 04:53:29 +0000
ROA not before: Sat 01 Jan 2022 04:53:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50602
IP address blocks: 109.205.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74763608 (0x474cd58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a4a47d582bb0e9680f89258ab96d05867d352ef
Validity
Not Before: Jan 1 04:53:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1686fe9e6dab019db03a2046c00e451fd824fba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1c:a8:c4:ca:fd:78:65:92:c3:94:d7:f7:d1:
6e:b0:fd:2d:52:88:2b:44:17:e5:2b:56:74:c6:0a:
88:95:6f:99:97:cb:aa:06:10:70:8a:42:93:66:81:
a9:0d:93:53:0b:b8:50:47:98:bd:a3:08:32:04:16:
2d:ed:5c:54:d2:6c:c5:35:79:50:2f:07:e1:b0:43:
dd:4a:2e:10:1e:c3:c4:2b:9e:9f:6f:75:b7:48:34:
0f:dd:5d:0e:02:fd:c3:4e:44:c1:ff:1e:6d:52:12:
89:f9:56:e6:bc:53:50:26:40:d7:d4:02:f8:ab:1d:
87:43:8f:93:f3:75:e9:0c:5b:24:d9:9a:16:7f:20:
b0:9f:77:10:5e:0e:06:b3:3a:e6:3e:46:34:3c:84:
fb:d8:8f:c8:5f:da:d0:a3:d0:41:c5:d8:d5:94:0e:
b8:74:e4:7a:ef:2a:a5:19:50:ae:96:4c:b1:b2:2c:
16:c0:f7:fd:a5:a4:82:74:16:06:6b:9b:15:28:63:
7a:ba:65:21:37:13:78:8f:b3:35:be:47:82:68:f7:
dd:f6:59:a7:b8:25:48:f6:7b:21:ea:7d:d6:c4:8c:
16:82:90:09:18:4d:4b:34:95:e3:e3:9e:76:4d:57:
2f:4a:1b:97:06:8d:3e:d6:b0:23:b3:63:b1:5e:5a:
1e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:86:FE:9E:6D:AB:01:9D:B0:3A:20:46:C0:0E:45:1F:D8:24:FB:A8
X509v3 Authority Key Identifier:
keyid:5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/Fob-nm2rAZ2wOiBGwA5FH9gk-6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/WkpH1YK7DpaA-JJYq5bQWGfTUu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.31.0/24
Signature Algorithm: sha256WithRSAEncryption
02:9f:38:3b:9f:9f:84:79:a0:14:55:15:c2:b3:ca:2e:e1:84:
a6:a0:9e:e5:53:6f:37:2f:ff:14:1e:1b:60:d2:fd:1b:7a:2b:
5d:5b:74:20:7e:f4:5c:56:6b:03:b3:19:2e:ae:04:bc:bf:a0:
33:d1:fe:08:6a:df:9e:d7:53:55:9c:d6:5b:01:a9:e5:15:07:
60:37:8d:b5:0c:a3:af:62:db:09:0c:54:23:5d:84:c9:b6:9a:
fe:91:d6:5d:8d:e9:21:c3:81:87:c5:ff:c9:8f:8a:fc:1c:d8:
17:26:7a:f3:83:15:e0:57:ab:74:66:aa:45:4e:8a:5b:9e:85:
63:01:db:0b:85:de:90:df:22:bc:95:0a:98:79:d0:92:70:58:
40:26:15:d2:ec:f6:3e:6c:39:38:ce:8e:a1:39:10:16:d7:39:
8b:a9:3f:39:54:71:3f:03:47:ed:96:4f:6f:4e:3e:a7:ec:44:
a0:44:57:ae:b2:d6:ee:24:2b:1f:76:ff:24:cc:65:87:a8:04:
83:6b:cb:00:cc:34:7d:64:d9:48:e6:02:c2:ab:eb:b6:b9:22:
6c:92:a7:d1:ed:7f:a2:c6:7a:4e:b0:01:b5:39:55:2a:99:2e:
ad:df:b7:28:1d:98:79:db:40:a9:53:bb:af:81:0b:d1:af:03:
91:22:38:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:55 2024 by rpki-client on console-fra.rpki-client.org