Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/e33Zdo90Ks4SyxnRYrCpOzh4Oxs.roa
File: e33Zdo90Ks4SyxnRYrCpOzh4Oxs.roa (raw, json)
Hash identifier: fD8DIrBBWzXPQfAAX4LwXR1McNAHNvQcF4gWz/3CP9U=
Subject key identifier: 7B:7D:D9:76:8F:74:2A:CE:12:CB:19:D1:62:B0:A9:3B:38:78:3B:1B
Certificate issuer: /CN=239572ddfcab6291e6410ccd4e860ee36000e668
Certificate serial: 086559C2
Authority key identifier: 23:95:72:DD:FC:AB:62:91:E6:41:0C:CD:4E:86:0E:E3:60:00:E6:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/e33Zdo90Ks4SyxnRYrCpOzh4Oxs.roa
Signing time: Sat 01 Jan 2022 08:54:00 +0000
ROA not before: Sat 01 Jan 2022 08:54:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197216
IP address blocks: 109.232.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140859842 (0x86559c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=239572ddfcab6291e6410ccd4e860ee36000e668
Validity
Not Before: Jan 1 08:54:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b7dd9768f742ace12cb19d162b0a93b38783b1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:bd:17:0d:95:25:e2:e2:39:41:8c:cb:01:53:
e6:16:f1:22:6d:f6:86:89:ae:5e:36:0c:f5:bb:5d:
06:0a:df:67:61:ad:e0:6f:37:55:e7:70:41:a2:6c:
8f:2c:18:dd:db:03:fc:26:58:d0:d9:01:92:0d:b7:
13:1a:69:0b:2d:0d:28:60:63:c5:2f:ff:c9:33:22:
b4:5c:a5:78:eb:48:73:3d:7d:20:4b:e0:a1:86:36:
b9:fa:cc:0f:03:a4:ca:a6:a5:2c:53:8b:94:5d:4d:
f2:c1:c2:e2:51:d8:69:7f:48:87:28:ba:4d:fe:56:
98:56:54:e8:dc:2c:78:a9:b9:8d:78:f6:82:57:9b:
26:0b:e4:33:8e:46:6a:b0:5f:c4:27:dd:b3:98:2f:
d9:c7:a4:e5:02:a5:9c:86:96:55:05:c2:25:eb:5a:
94:62:d6:b0:50:cc:56:d1:3f:bd:0e:45:e9:cd:95:
a3:7f:7d:04:4e:4e:8b:ef:34:20:bf:41:3b:f3:c0:
49:2a:ed:e1:b1:64:f8:a7:1f:ef:64:ea:3c:8a:38:
1e:d6:22:6d:db:78:d8:ed:f9:8d:b3:90:3a:9a:0e:
b1:d5:2d:1f:7f:5e:3d:d8:5d:c2:2c:aa:0e:d9:ce:
44:9c:35:d3:e1:99:76:23:3c:7d:a8:ea:15:59:78:
75:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:7D:D9:76:8F:74:2A:CE:12:CB:19:D1:62:B0:A9:3B:38:78:3B:1B
X509v3 Authority Key Identifier:
keyid:23:95:72:DD:FC:AB:62:91:E6:41:0C:CD:4E:86:0E:E3:60:00:E6:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/e33Zdo90Ks4SyxnRYrCpOzh4Oxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.232.160.0/24
Signature Algorithm: sha256WithRSAEncryption
96:e4:ad:4d:2d:df:7e:66:11:4f:e9:86:19:94:a1:39:19:e1:
85:e9:8a:07:62:b6:3a:d2:7a:fe:7b:3a:1f:83:ae:c9:ef:6f:
0b:f4:14:4d:10:02:a9:eb:59:fc:fd:95:92:e5:25:6d:89:35:
4b:e9:2f:30:79:59:30:7d:2a:70:24:e4:f5:62:cd:44:f6:18:
2f:7f:17:30:50:f3:de:90:db:3d:92:d4:27:1a:f3:75:10:5d:
50:7c:69:b0:42:b1:00:1d:89:2d:4d:77:70:dd:23:a2:87:57:
6f:95:8a:f4:69:7d:6a:a5:36:93:1d:32:71:2b:97:46:32:b2:
e4:f4:ba:4e:5f:40:8e:4e:e4:a7:91:8b:be:ef:61:8b:a5:a8:
80:74:1a:d5:a8:32:85:ef:c7:90:3b:8d:53:97:d5:5f:cb:07:
6a:d2:6d:fc:f8:04:3d:a7:53:08:67:8c:ff:70:35:93:37:28:
8e:ca:fe:78:b3:5c:09:3f:30:bb:12:f8:bb:f1:fc:60:20:c6:
09:5e:32:08:96:db:46:56:c5:66:aa:eb:a9:e6:c9:bb:bb:19:
f4:26:d9:8f:9b:5e:8e:92:ef:b0:ab:d2:63:4b:d3:80:89:7d:
9a:c5:80:31:f9:02:c0:f7:f9:b0:1b:b2:83:df:84:78:17:88:
d7:38:cd:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:21 2025 by rpki-client