Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/WcejNqM3ze2ogSnoT5SIUEJ9hxQ.roa
File: WcejNqM3ze2ogSnoT5SIUEJ9hxQ.roa (raw, json)
Hash identifier: /AAPOY1QltePebVD52ViosNWAO6iVw166kDjCadtcJs=
Subject key identifier: 59:C7:A3:36:A3:37:CD:ED:A8:81:29:E8:4F:94:88:50:42:7D:87:14
Certificate issuer: /CN=41f5a10e4fd2655adbbb40ede18b2615ac558ea9
Certificate serial: 363B0E2E
Authority key identifier: 41:F5:A1:0E:4F:D2:65:5A:DB:BB:40:ED:E1:8B:26:15:AC:55:8E:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/WcejNqM3ze2ogSnoT5SIUEJ9hxQ.roa
Signing time: Wed 16 Mar 2022 16:29:02 +0000
ROA not before: Wed 16 Mar 2022 16:29:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 192.109.201.0/24 maxlen: 24
192.109.200.0/24 maxlen: 24
192.109.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 909839918 (0x363b0e2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41f5a10e4fd2655adbbb40ede18b2615ac558ea9
Validity
Not Before: Mar 16 16:29:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59c7a336a337cdeda88129e84f948850427d8714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:de:76:3c:0a:ff:c9:14:25:21:3e:15:92:12:
67:06:fa:5f:7e:ea:5c:dc:4b:ba:e7:7f:ec:b4:50:
99:c6:e0:bb:7b:4a:40:03:5a:72:39:75:d5:0d:5e:
5e:9d:c9:92:6d:5c:64:a7:17:5b:ea:75:dc:c3:4a:
59:4f:4b:57:4e:f5:3f:c7:d1:3a:8b:0a:12:5a:36:
cd:fb:3d:71:3f:b0:9a:c0:58:19:db:f6:3a:bf:2a:
6b:2d:31:96:79:b6:fc:ea:eb:e6:c0:d9:13:45:4e:
c6:cb:ca:ab:bc:59:07:e8:7b:90:dc:04:1b:47:3e:
ea:89:6e:b0:fa:45:18:e4:d5:32:a0:75:cf:d5:ca:
9c:bd:67:ea:45:cb:94:59:e6:b2:d0:f7:a0:b5:ce:
49:54:36:2e:74:0f:fc:e9:ea:ea:84:23:18:5a:69:
53:b7:46:18:0e:8b:2a:95:27:13:0c:58:a5:05:ba:
13:2e:29:ca:5c:02:03:02:f3:4a:de:63:02:d1:70:
4f:fa:6e:83:cc:57:58:64:f0:81:60:a0:22:d5:e9:
9d:06:30:9b:b5:07:b9:48:9d:2b:ba:6b:97:60:27:
18:b2:28:52:ef:87:82:4b:63:98:60:d2:0c:76:f8:
9c:a2:f0:d0:a5:42:ac:6c:36:92:ff:15:33:8a:29:
78:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C7:A3:36:A3:37:CD:ED:A8:81:29:E8:4F:94:88:50:42:7D:87:14
X509v3 Authority Key Identifier:
keyid:41:F5:A1:0E:4F:D2:65:5A:DB:BB:40:ED:E1:8B:26:15:AC:55:8E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/WcejNqM3ze2ogSnoT5SIUEJ9hxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.139.0/24
192.109.200.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:5f:17:41:8f:a8:2b:0e:77:d1:31:b5:e2:85:ba:71:42:f8:
77:cd:7f:1a:5b:ee:75:46:f3:a7:7a:1f:f9:b3:b2:cb:1d:e6:
9b:cb:16:3e:4b:fd:28:4b:be:6c:9f:95:6e:61:ef:52:9d:d3:
cf:ca:23:1e:1c:8e:36:ec:5b:69:7a:2d:74:ca:65:e2:ae:57:
d3:9b:e7:7e:70:83:7a:06:99:ae:84:47:20:1a:4a:00:4f:bb:
19:7f:e5:b6:8f:73:31:82:31:80:d4:36:2c:b7:fe:88:18:05:
84:49:a3:87:f2:27:b8:86:6a:d9:26:07:c1:e4:8f:f0:d2:ee:
77:ed:4a:00:97:ac:06:8b:a8:7c:ef:f7:43:84:61:88:49:53:
ef:84:e4:aa:72:6c:be:9d:c1:72:d4:39:92:81:0b:8e:da:86:
af:26:fc:6c:a1:ef:a1:43:09:40:92:28:a8:26:36:ab:4d:1e:
35:33:fc:1e:25:0b:7d:b5:da:66:f8:f5:50:a7:c3:4b:e9:aa:
ad:5c:ff:c5:5f:69:a5:3c:fd:e7:9d:06:1d:00:f2:b5:54:69:
2d:40:2c:10:b8:92:2c:7d:ad:64:1f:8a:e3:1c:95:94:1c:cd:
23:77:d5:68:6e:4e:e2:1e:38:cd:a7:60:24:b6:7b:3d:bd:c3:
09:c6:53:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:01 2024 by rpki-client on console-ams.rpki-client.org