Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/mVNpN7c1aQD6fPRdA-cNhECZ7Vo.roa
File: mVNpN7c1aQD6fPRdA-cNhECZ7Vo.roa (raw, json)
Hash identifier: 2plE59uI/8RlyymEXjTzBK8g1iEzgNeWYNYsFUAiGDM=
Subject key identifier: 99:53:69:37:B7:35:69:00:FA:7C:F4:5D:03:E7:0D:84:40:99:ED:5A
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 01831CDB159D0159A057E27885F23AC48ED1
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/mVNpN7c1aQD6fPRdA-cNhECZ7Vo.roa
Signing time: Thu 08 Sep 2022 11:27:43 +0000
ROA not before: Thu 08 Sep 2022 11:27:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60068
IP address blocks: 109.205.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1c:db:15:9d:01:59:a0:57:e2:78:85:f2:3a:c4:8e:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Sep 8 11:27:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99536937b7356900fa7cf45d03e70d844099ed5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:39:1e:31:49:40:8f:b8:d0:d5:22:11:3b:60:
e7:92:65:aa:d1:1f:9d:35:00:8c:6b:79:d1:fc:5e:
58:ef:c4:b5:ae:16:aa:d4:c9:23:94:86:00:4c:18:
3b:33:58:a7:29:01:66:9d:f4:f6:ad:35:ef:14:f5:
b8:5c:76:89:5b:de:cf:68:fb:0c:4f:04:4e:55:ea:
ea:26:bf:2b:23:43:a3:98:10:c9:90:be:b8:ad:39:
ef:4f:d4:0a:e8:6f:61:ab:4a:bd:17:c0:a3:c7:10:
95:94:f9:4b:4f:3c:d0:82:4b:29:7a:23:7f:b2:43:
3e:63:bd:6b:c3:e9:2a:0b:02:2d:b7:ec:b6:dd:51:
7d:70:fd:67:5a:69:82:04:01:08:24:d3:e4:88:b8:
c4:4f:e3:d1:df:89:a9:fb:40:78:80:db:2d:10:ee:
3e:63:d1:17:fb:1f:47:d5:48:85:04:8d:bc:07:72:
a0:be:9f:61:93:ce:1d:a1:fb:7a:13:9c:8f:ea:da:
2b:72:6c:28:a8:5b:8f:fa:d4:67:9f:e4:f0:c6:cf:
01:07:93:d0:3c:c8:dd:b3:3b:00:cb:d6:ee:08:78:
05:d6:7a:98:5b:85:af:0c:d7:5d:e3:a2:28:1a:e4:
b9:92:b7:11:06:7d:fc:d7:b4:b6:2e:56:94:ac:8f:
1d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:53:69:37:B7:35:69:00:FA:7C:F4:5D:03:E7:0D:84:40:99:ED:5A
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/mVNpN7c1aQD6fPRdA-cNhECZ7Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.214.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:09:7c:d1:82:6d:c5:a7:0c:44:80:7d:74:30:c2:d5:8d:4c:
10:57:3b:0f:05:62:45:c4:31:83:22:1d:1e:d0:b4:28:d0:fb:
07:01:e1:85:f0:dd:49:5d:b8:8f:70:15:20:84:5d:ff:c6:87:
da:74:c3:ba:12:5e:d8:69:39:b1:a4:54:cb:25:d1:ba:24:bb:
83:8e:e3:19:d0:7f:ea:75:55:01:f2:23:2e:90:52:3d:29:c8:
72:80:97:f9:c9:86:b7:bf:89:e1:c7:fa:89:b7:cb:00:f5:ff:
dc:6a:9f:ad:2e:51:72:de:6d:2c:54:36:98:44:56:52:9f:9f:
79:61:2d:0f:de:4a:89:f2:a9:6c:e5:4c:32:d5:8f:3d:c2:25:
29:76:96:c7:48:c4:d0:17:06:34:c9:ee:1e:23:db:cf:bd:30:
08:a3:e9:02:f6:74:ba:69:b9:10:45:63:cd:dc:2a:ab:a9:44:
e6:f2:4b:0f:9a:3a:51:17:4e:6e:a1:8c:86:5b:8e:e5:52:f8:
40:42:ee:ea:8c:7c:7d:cf:3f:2e:fe:0b:cd:7a:59:9c:bc:2b:
c4:c9:14:74:cc:25:a1:0a:3f:50:71:d2:7f:56:4c:59:fb:3e:
12:0f:2a:77:4c:57:d1:94:7f:82:c6:99:43:fd:cd:b4:f6:43:
1f:bd:a2:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:06 2025 by rpki-client