Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/0yleZ3tRBfld3HJv_tjDBp3wcVw.roa
File: 0yleZ3tRBfld3HJv_tjDBp3wcVw.roa (raw, json)
Hash identifier: eBn6sC95a5Z/lf1LnYAUvweBj6kmoDzHxQ7uQvILMPY=
Subject key identifier: D3:29:5E:67:7B:51:05:F9:5D:DC:72:6F:FE:D8:C3:06:9D:F0:71:5C
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 3062B291
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/0yleZ3tRBfld3HJv_tjDBp3wcVw.roa
Signing time: Wed 16 Feb 2022 08:04:30 +0000
ROA not before: Wed 16 Feb 2022 08:04:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 109.160.38.0/24 maxlen: 24
109.160.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 811774609 (0x3062b291)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Feb 16 08:04:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3295e677b5105f95ddc726ffed8c3069df0715c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9e:68:90:79:e8:44:b9:84:54:0e:5f:ec:88:
91:a0:76:fc:03:93:47:50:96:38:b7:11:87:64:15:
e2:09:93:12:ac:65:07:9c:7d:c0:b9:56:5f:f1:39:
d0:77:65:b8:19:22:f7:39:30:77:cf:44:9c:11:23:
7a:c8:2d:e7:74:6f:90:67:88:35:a0:25:8f:97:d8:
b3:d8:59:7e:22:0f:92:8e:10:a9:20:b9:4f:54:0a:
ed:cc:18:ca:04:51:f2:21:93:9b:d2:5e:58:49:d9:
55:5e:6b:54:09:ea:1b:cf:d2:8a:79:d9:b8:3c:cd:
93:b3:89:0f:d2:18:92:e1:e6:87:02:c6:8f:7f:99:
ab:e0:46:3e:a9:c7:bb:f8:a9:60:dc:fd:38:fa:db:
c6:9f:de:95:8d:b9:ff:46:f6:8e:78:c9:21:db:c4:
11:47:71:0e:01:45:13:03:1e:d6:58:be:8d:bd:f0:
59:f7:31:b5:98:71:e4:b1:ea:c7:4c:16:cc:14:53:
7b:71:34:78:2c:91:25:00:27:b1:da:ef:df:d4:32:
36:da:7d:5d:ab:a9:4f:d4:b9:a3:49:a6:33:e3:11:
50:be:54:39:86:65:e0:80:0c:b1:ca:93:6c:bb:29:
d0:d7:a1:6b:73:60:6b:e1:1c:00:ee:30:94:c3:3e:
25:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:29:5E:67:7B:51:05:F9:5D:DC:72:6F:FE:D8:C3:06:9D:F0:71:5C
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/0yleZ3tRBfld3HJv_tjDBp3wcVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.38.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:4a:0e:59:94:bb:5e:42:a3:4e:2a:96:87:a2:88:4e:a3:50:
35:03:53:e5:60:34:ab:76:14:5b:76:96:63:16:37:bc:98:49:
3c:99:66:3d:c8:3a:07:7c:50:1c:b1:5a:51:75:d7:e2:d2:61:
d3:6f:aa:39:e3:7e:69:aa:30:84:dc:ac:da:32:af:e6:72:99:
f5:e0:b9:74:1c:7c:3c:a2:d0:a7:24:29:fb:d3:d4:ba:65:94:
04:57:4b:a0:de:78:41:85:c6:22:37:c1:a5:38:01:e1:fe:c8:
51:1c:e7:ea:13:35:f8:fc:d8:c9:03:b6:9f:0d:af:5c:04:84:
f2:3d:a9:87:e5:d3:32:d2:1a:73:ef:08:86:0c:45:e9:76:99:
36:42:c5:98:f4:c9:7d:89:76:f0:6f:75:0a:c4:c6:1e:7f:f8:
22:e3:4d:15:30:10:3f:ad:70:bc:63:d6:e3:4a:e4:eb:56:15:
06:52:36:e3:80:41:30:da:c0:fb:37:95:e0:1a:c8:93:d3:f5:
57:17:70:01:f4:e6:f3:2c:3e:5e:7b:6a:db:27:0d:3c:7c:6f:
23:9f:16:52:56:0b:90:4b:e9:77:fa:5a:bd:61:a6:00:46:2f:
35:22:06:8c:df:8d:d6:02:e0:7c:7d:37:ce:32:d1:45:01:b1:
67:53:30:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:32 2023 by rpki-client on console-ams.rpki-client.org