Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/fb9d5e-a628-4f23-88a5-e5ddd2bb51c5/1/xWJiNcwOw2BTr6WsVbjwpIUWess.roa
File: xWJiNcwOw2BTr6WsVbjwpIUWess.roa (raw, json)
Hash identifier: 8sXQaNWuc0ECaWtAKdAZbKQd+QcTP/Qvq1vWn/w+FFc=
Subject key identifier: C5:62:62:35:CC:0E:C3:60:53:AF:A5:AC:55:B8:F0:A4:85:16:7A:CB
Certificate issuer: /CN=699c581aff3d0a90178cfab565a388ccd9bc01ce
Certificate serial: 0A2D91F0
Authority key identifier: 69:9C:58:1A:FF:3D:0A:90:17:8C:FA:B5:65:A3:88:CC:D9:BC:01:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZxYGv89CpAXjPq1ZaOIzNm8Ac4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/fb9d5e-a628-4f23-88a5-e5ddd2bb51c5/1/xWJiNcwOw2BTr6WsVbjwpIUWess.roa
Signing time: Sat 01 Jan 2022 06:53:10 +0000
ROA not before: Sat 01 Jan 2022 06:53:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208708
IP address blocks: 109.110.192.0/20 maxlen: 20
109.110.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170758640 (0xa2d91f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=699c581aff3d0a90178cfab565a388ccd9bc01ce
Validity
Not Before: Jan 1 06:53:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5626235cc0ec36053afa5ac55b8f0a485167acb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:39:f7:72:aa:21:fb:c4:e4:8a:dd:e3:50:54:
b5:26:a7:53:30:d5:72:00:fc:74:c8:fa:da:fd:d1:
25:5e:8e:57:2b:c2:d1:7e:c3:c2:ea:7d:0a:3d:12:
8a:55:36:5a:b9:ab:f6:78:c5:17:bd:63:a3:ba:53:
77:e1:a7:55:32:4b:ed:ff:bf:15:4e:4c:ca:ba:6c:
fe:62:09:19:a2:92:5f:cb:35:30:8c:dd:8d:a9:d2:
57:4a:a7:5b:c5:93:6d:62:6a:64:4d:14:0e:4e:a0:
0f:dc:68:96:4d:9a:66:05:c4:c0:97:df:49:10:08:
e8:9c:26:e2:11:7f:8b:bb:24:9d:da:19:18:10:eb:
70:60:87:c5:24:3f:18:12:c8:84:b5:85:ce:28:65:
7f:0a:aa:ea:66:3b:99:76:df:47:64:fe:49:4a:3d:
f0:9d:22:c3:cf:9d:9d:65:43:22:f2:c1:4e:92:15:
47:a5:1b:9e:83:42:db:25:33:d0:67:9b:72:d4:8f:
d8:f4:5f:64:cf:ec:df:c9:ca:04:c2:29:10:14:8d:
e2:cf:f4:6f:ee:eb:d6:7b:9a:cd:70:08:e9:d0:87:
28:62:fd:b4:8c:6d:a7:26:9f:f6:a7:a0:1b:97:c9:
4d:14:9e:7e:47:8a:e3:bc:ce:37:a1:ec:30:ee:a9:
e7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:62:62:35:CC:0E:C3:60:53:AF:A5:AC:55:B8:F0:A4:85:16:7A:CB
X509v3 Authority Key Identifier:
keyid:69:9C:58:1A:FF:3D:0A:90:17:8C:FA:B5:65:A3:88:CC:D9:BC:01:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZxYGv89CpAXjPq1ZaOIzNm8Ac4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/fb9d5e-a628-4f23-88a5-e5ddd2bb51c5/1/xWJiNcwOw2BTr6WsVbjwpIUWess.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/fb9d5e-a628-4f23-88a5-e5ddd2bb51c5/1/aZxYGv89CpAXjPq1ZaOIzNm8Ac4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.192.0/19
Signature Algorithm: sha256WithRSAEncryption
1f:04:50:4b:26:f2:c5:58:af:c4:c7:cd:b5:72:4b:3e:6a:ca:
90:29:32:c5:8f:c9:c6:9a:9f:4b:86:92:0f:1b:80:1f:f7:ac:
2a:67:f4:86:21:5e:be:6b:70:6b:c6:99:40:95:b4:46:73:7a:
db:c1:f9:85:f2:73:88:30:10:98:19:19:25:b4:0b:dd:7f:46:
b3:41:a7:b3:e1:e0:88:67:a7:d8:8f:be:28:55:ce:f3:5f:cb:
82:7b:6a:6e:84:27:63:ed:50:a1:8a:0d:df:7c:5a:c2:c0:9d:
bb:84:b0:09:78:aa:cf:24:59:87:9a:bb:d9:8f:6e:c7:21:6a:
b4:0f:44:57:3a:27:45:7a:38:8a:6d:3e:e5:66:61:a3:17:9f:
1f:be:5a:ad:87:68:32:06:ef:70:76:94:f7:06:16:c7:4c:21:
a7:2d:08:32:38:08:17:40:a1:1b:a6:34:a4:55:06:78:7e:96:
8c:30:4e:0a:20:06:d3:52:82:86:c7:78:08:86:2c:ba:79:9b:
0b:ea:ff:2b:44:90:79:1c:cb:e6:0e:1d:5e:f0:fd:2b:8e:35:
62:99:d1:9c:be:d0:8b:d1:b2:65:1d:ac:f9:b6:2d:1e:83:7c:
da:7c:35:fa:30:d4:13:fd:31:0e:60:76:88:1b:d2:e3:3f:5c:
4e:ec:fa:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:51 2024 by rpki-client on console-ams.rpki-client.org