Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/Z_l4FqA6obh3Sy7qRa5OTxNXOns.roa
File: Z_l4FqA6obh3Sy7qRa5OTxNXOns.roa (raw, json)
Hash identifier: 64jppDSQzSkpP2reBhKpfZyhOwepDXPcTnKcFk+AsFw=
Subject key identifier: 67:F9:78:16:A0:3A:A1:B8:77:4B:2E:EA:45:AE:4E:4F:13:57:3A:7B
Certificate issuer: /CN=05899f3976487038a3fa6343952b14b4d072b33d
Certificate serial: 03D19741
Authority key identifier: 05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/Z_l4FqA6obh3Sy7qRa5OTxNXOns.roa
Signing time: Sat 01 Jan 2022 15:02:44 +0000
ROA not before: Sat 01 Jan 2022 15:02:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44090
IP address blocks: 109.70.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64067393 (0x3d19741)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05899f3976487038a3fa6343952b14b4d072b33d
Validity
Not Before: Jan 1 15:02:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67f97816a03aa1b8774b2eea45ae4e4f13573a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b3:b4:69:b5:cc:2d:02:03:b7:cd:62:d1:6b:
f1:6b:76:8b:c8:74:50:fc:6d:68:fd:a6:49:d6:7a:
15:81:d3:a2:7c:ca:0d:fe:bf:ff:a2:9e:d1:43:38:
72:65:cb:ae:78:c5:e3:3b:58:2d:6d:a2:36:a4:2c:
cb:5d:8d:ce:8a:28:c4:f7:a7:8a:08:97:fa:07:23:
45:5d:fb:5f:28:13:c5:c3:92:a5:15:4f:67:d7:08:
72:51:c9:dd:ee:df:35:df:1a:4d:93:89:5b:f3:f5:
a6:0f:4c:ed:95:c9:3c:49:f0:99:5d:74:57:1f:20:
5b:5c:72:42:14:39:66:8f:97:08:71:e5:4e:93:57:
76:fa:4d:4e:f9:05:24:03:1c:34:66:bb:82:e6:09:
73:27:3e:3d:47:b3:67:6c:23:b3:b4:58:8f:f2:81:
51:e4:00:1f:48:62:6a:39:5f:4b:1c:a3:7a:14:2d:
67:09:ec:fb:a2:75:b3:5b:65:96:b3:27:c6:b3:2e:
e9:51:25:2a:0f:49:04:6c:e1:d2:d8:0d:2a:70:a1:
e4:b0:9e:85:fd:f3:d5:94:37:cc:cf:f5:a6:89:13:
c2:16:56:96:45:92:b5:89:9d:3e:42:3b:ba:41:b4:
64:d1:a4:63:10:85:c1:d4:d7:b5:81:4f:53:77:5e:
bb:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F9:78:16:A0:3A:A1:B8:77:4B:2E:EA:45:AE:4E:4F:13:57:3A:7B
X509v3 Authority Key Identifier:
keyid:05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/Z_l4FqA6obh3Sy7qRa5OTxNXOns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.70.237.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:cc:62:f3:6a:c8:e8:6b:a2:bd:21:31:a7:4d:3e:98:78:76:
ed:2c:32:ce:f2:57:3b:9c:09:3f:b0:ce:d2:a9:20:d0:dc:c1:
8a:5e:91:ee:41:e5:c6:c9:30:55:9b:c3:e9:32:02:17:f3:a3:
cf:fb:78:ac:8b:b5:b0:67:74:ee:64:46:3a:d3:49:d2:08:d0:
fc:67:47:eb:f0:02:d9:21:b4:f7:02:8a:bf:17:20:90:0d:d5:
82:8a:88:6a:2a:65:c1:2e:40:6b:06:e4:28:39:fe:c2:47:f6:
d3:d4:73:81:91:73:1d:e6:32:30:4f:03:c9:2b:42:bf:8e:f1:
20:8e:92:4a:44:d1:96:16:f0:d4:c8:24:b0:7a:c8:04:ea:12:
f9:dc:85:80:95:f7:b7:87:8c:0d:fb:73:3e:bf:2b:04:c3:45:
31:bf:b3:93:90:0e:67:d5:cc:ce:9b:b9:de:23:98:a2:11:45:
12:c2:81:be:a5:97:10:f1:34:7d:fb:2c:19:0c:cb:14:41:6b:
78:5c:8f:eb:8a:3e:56:be:3d:a0:84:d5:49:42:d5:b2:e3:1f:
57:f3:28:6e:78:15:e3:b1:37:4c:18:1b:31:0c:12:d4:64:f1:
77:95:e2:03:a1:2e:f7:77:e5:c9:01:40:bf:6e:21:04:d9:75:
2f:14:f8:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:18 2024 by rpki-client on console-ams.rpki-client.org