Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/79c8b1-51e7-45c7-8878-be0e2dc89ae6/1/gHpppAhRjJXzneoYNG1kfdO6gSM.roa
File: gHpppAhRjJXzneoYNG1kfdO6gSM.roa (raw, json)
Hash identifier: e2yg9BrtSpvRu+i69iRtAcSg0a7T2mNyEY9zUtZ5tU4=
Subject key identifier: 80:7A:69:A4:08:51:8C:95:F3:9D:EA:18:34:6D:64:7D:D3:BA:81:23
Certificate issuer: /CN=5b93376c79a97344640e7a00a455be92468e8b53
Certificate serial: 014323DA
Authority key identifier: 5B:93:37:6C:79:A9:73:44:64:0E:7A:00:A4:55:BE:92:46:8E:8B:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W5M3bHmpc0RkDnoApFW-kkaOi1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/79c8b1-51e7-45c7-8878-be0e2dc89ae6/1/gHpppAhRjJXzneoYNG1kfdO6gSM.roa
Signing time: Sat 01 Jan 2022 13:01:54 +0000
ROA not before: Sat 01 Jan 2022 13:01:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21040
IP address blocks: 109.94.162.0/24 maxlen: 24
2a11:2780::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21177306 (0x14323da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b93376c79a97344640e7a00a455be92468e8b53
Validity
Not Before: Jan 1 13:01:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=807a69a408518c95f39dea18346d647dd3ba8123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:aa:d6:13:62:07:b6:62:2e:bf:27:7c:e3:46:
ff:19:8d:67:cf:ad:bc:ed:5d:52:c1:df:c6:b9:a9:
57:44:a7:93:d2:48:f3:39:f9:24:28:80:a5:52:d9:
28:fc:ef:49:35:0b:1a:ae:71:86:b9:13:e5:40:62:
ee:6a:d8:ef:9c:81:4b:92:3b:0a:f6:b7:ef:d6:2c:
98:29:e7:71:ee:84:32:5c:20:86:9b:45:e1:7b:35:
a6:27:28:76:18:73:a0:fb:02:18:3d:b1:23:fa:0f:
da:87:7b:e1:9e:f8:54:04:b3:c5:49:c5:5e:37:fa:
03:64:c8:74:bf:56:be:28:e1:43:b6:da:ab:ca:0d:
bc:2d:68:66:86:5b:3e:57:a2:b6:31:3c:12:6d:61:
22:0b:f9:57:58:26:bb:29:fd:63:3a:cb:01:6d:83:
be:56:fa:2d:b3:05:46:0f:83:69:4f:1a:de:09:56:
c8:e8:bd:4c:10:6c:bd:9a:2e:b4:8d:f9:66:34:54:
a2:89:3e:39:b0:48:62:91:2b:74:c2:22:94:f9:af:
ea:62:af:56:ec:62:82:13:7a:db:aa:87:a4:45:9b:
1b:05:09:0e:82:f7:7e:6a:3f:d4:5f:b2:b1:fd:56:
a0:16:50:e8:bd:d3:d3:35:d5:63:64:f7:6a:eb:00:
54:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7A:69:A4:08:51:8C:95:F3:9D:EA:18:34:6D:64:7D:D3:BA:81:23
X509v3 Authority Key Identifier:
keyid:5B:93:37:6C:79:A9:73:44:64:0E:7A:00:A4:55:BE:92:46:8E:8B:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W5M3bHmpc0RkDnoApFW-kkaOi1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/79c8b1-51e7-45c7-8878-be0e2dc89ae6/1/gHpppAhRjJXzneoYNG1kfdO6gSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/79c8b1-51e7-45c7-8878-be0e2dc89ae6/1/W5M3bHmpc0RkDnoApFW-kkaOi1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.94.162.0/24
IPv6:
2a11:2780::/29
Signature Algorithm: sha256WithRSAEncryption
7f:a6:a6:2a:fc:3f:70:c7:a9:09:2c:3c:75:f1:fe:f5:f8:1a:
57:6f:22:e0:fc:08:3b:9a:a9:4d:60:ff:0c:65:c8:86:6a:71:
bf:f2:24:36:63:51:b5:2e:7a:44:2b:3a:94:e0:d5:c4:6c:32:
dc:88:60:c5:7e:4f:bb:2d:e5:43:b9:19:42:7a:d4:d1:d6:6e:
00:99:3c:a2:80:7f:b0:8b:54:e0:5d:f2:91:b0:ae:07:da:12:
99:ef:fa:b8:d8:d3:13:dd:d5:34:e5:61:af:13:49:40:f6:37:
c5:24:d6:3a:da:93:5a:44:3e:cc:32:12:b3:49:34:cb:98:18:
73:17:cd:d3:f6:79:87:16:6c:3e:13:89:51:43:e2:1d:e0:43:
1f:95:8a:59:f1:1a:33:35:93:75:c0:73:85:d3:2b:c0:c2:64:
c5:9b:5c:18:0f:22:8a:80:5d:bf:e4:a8:bf:ab:4c:f4:1d:09:
53:04:96:73:1a:17:e2:42:8a:b4:0c:5c:d6:db:18:06:b8:ed:
30:b1:e7:49:3e:56:21:89:d9:aa:5a:25:09:82:42:35:8f:57:
f2:0c:1e:a1:89:61:4f:27:a0:7e:ef:b2:20:6c:ab:93:92:a8:
93:5d:7e:35:c6:e4:c6:e0:bd:bc:3e:91:1f:b8:7a:d8:47:d1:
46:5e:51:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:04 2023 by rpki-client on console-ams.rpki-client.org