Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/zG_VVEJkaEaZyPYozPwwM4COC_g.roa
File: zG_VVEJkaEaZyPYozPwwM4COC_g.roa (raw, json)
Hash identifier: JRj3Gv6QHUhnKHF6QB+v0jzo7Q6BztXVFf/w1hyBoOk=
Subject key identifier: CC:6F:D5:54:42:64:68:46:99:C8:F6:28:CC:FC:30:33:80:8E:0B:F8
Certificate issuer: /CN=60ebd4f7ac3d24920de1c1ff1185d9507e9ad078
Certificate serial: 02BEAD62
Authority key identifier: 60:EB:D4:F7:AC:3D:24:92:0D:E1:C1:FF:11:85:D9:50:7E:9A:D0:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YOvU96w9JJIN4cH_EYXZUH6a0Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/zG_VVEJkaEaZyPYozPwwM4COC_g.roa
Signing time: Sat 01 Jan 2022 12:57:50 +0000
ROA not before: Sat 01 Jan 2022 12:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34078
IP address blocks: 109.95.68.0/24 maxlen: 24
109.95.67.0/24 maxlen: 24
109.95.66.0/24 maxlen: 24
109.95.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46050658 (0x2bead62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ebd4f7ac3d24920de1c1ff1185d9507e9ad078
Validity
Not Before: Jan 1 12:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc6fd5544264684699c8f628ccfc3033808e0bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:60:fb:bf:f0:89:23:fc:01:65:c7:ba:1c:f4:
77:14:6f:f0:f1:27:33:f2:66:18:14:7b:f6:04:4c:
6d:50:5c:0f:5d:bc:c9:c5:5c:37:18:b5:65:8b:68:
56:0d:6d:43:52:39:9a:88:44:43:91:3d:d3:3f:0f:
61:ed:1a:ec:7c:55:68:57:e2:39:7b:f2:87:2b:11:
65:2f:12:e0:2e:d0:14:0a:e7:a8:ca:5b:db:43:c0:
65:2e:c9:be:77:61:b0:47:a4:93:93:c8:45:23:ac:
2e:3d:53:68:9d:55:2c:35:3e:98:26:41:f8:1f:17:
c6:36:e2:d8:6e:b7:26:4a:25:09:80:21:ea:d3:2d:
90:f9:e2:0d:f7:47:fc:7d:b0:b2:0e:0c:ab:a9:b6:
b6:cc:7b:16:47:66:6e:d2:f3:eb:df:01:7e:b4:63:
fe:9d:21:9c:a7:4a:2d:4a:71:84:65:aa:8f:c1:36:
e0:f7:29:9d:4d:cc:7f:bb:bf:68:c7:fd:98:a3:0b:
02:09:f3:89:33:45:52:bb:a7:63:9f:1a:69:ca:8f:
fa:2e:e3:ae:2e:ae:6d:36:3e:00:65:e0:5b:1e:49:
af:e4:84:44:69:72:84:f1:b9:3a:46:0a:39:12:d2:
4b:93:b4:78:95:5f:0a:c6:11:ae:12:7b:87:f1:bf:
92:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:6F:D5:54:42:64:68:46:99:C8:F6:28:CC:FC:30:33:80:8E:0B:F8
X509v3 Authority Key Identifier:
keyid:60:EB:D4:F7:AC:3D:24:92:0D:E1:C1:FF:11:85:D9:50:7E:9A:D0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YOvU96w9JJIN4cH_EYXZUH6a0Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/zG_VVEJkaEaZyPYozPwwM4COC_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/905378-228a-41b4-bce8-87d3b023d919/1/YOvU96w9JJIN4cH_EYXZUH6a0Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.95.65.0-109.95.68.255
Signature Algorithm: sha256WithRSAEncryption
6f:13:79:d9:61:89:bf:51:aa:64:9c:fd:60:7e:c5:e3:b1:a3:
c1:79:95:b8:0d:57:2a:c8:7d:56:33:eb:51:1a:40:b8:4a:a1:
d7:f6:ee:20:c9:98:1e:31:fa:3a:e7:a4:25:22:79:22:f2:b7:
4c:c7:c9:b7:5e:74:71:a4:4a:20:d7:37:91:35:00:a7:b7:f2:
fe:a0:05:1b:9c:06:0e:ac:10:ee:86:d6:84:96:48:5e:eb:82:
cb:48:4f:e0:4f:5f:e8:04:35:6c:7a:24:87:4d:fc:48:99:a9:
4d:76:13:a8:7f:07:9b:b4:72:c6:1d:96:cb:32:c6:53:f4:ff:
c1:74:d7:5e:0d:53:c8:7c:81:10:d4:0a:07:42:75:31:1c:6c:
a1:52:31:d3:6d:7c:1a:6a:60:10:a6:c8:b9:7d:32:9f:dc:e5:
48:f7:20:20:ce:f0:86:6e:34:9a:3b:92:ec:d2:20:af:94:e4:
b8:06:3b:89:80:c7:07:5d:5f:44:be:7a:e8:a0:d1:29:51:9c:
8f:18:8a:38:cc:14:8a:fb:ed:5b:40:ff:33:33:fa:1c:d7:ff:
a6:bd:18:83:ad:de:df:69:5a:dd:ba:08:09:e7:48:d4:e9:b2:
9a:39:12:c0:3f:32:70:86:25:1d:e7:de:9a:e9:18:28:f4:3d:
aa:6f:2a:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:42 2024 by rpki-client on console-fra.rpki-client.org