Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/5-EoCjskD1bc_h138k4amCNAElw.roa
File: 5-EoCjskD1bc_h138k4amCNAElw.roa (raw, json)
Hash identifier: pXxLC0afMVcmM1QzvvWmC2QELzJ5/gvi8PF1JpOLego=
Subject key identifier: E7:E1:28:0A:3B:24:0F:56:DC:FE:1D:77:F2:4E:1A:98:23:40:12:5C
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 315248C6
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/5-EoCjskD1bc_h138k4amCNAElw.roa
Signing time: Sun 22 May 2022 05:40:30 +0000
ROA not before: Sun 22 May 2022 05:40:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 109.160.34.0/24 maxlen: 24
109.160.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 827476166 (0x315248c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: May 22 05:40:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7e1280a3b240f56dcfe1d77f24e1a982340125c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e2:ca:fe:5d:68:c2:71:4b:e2:22:9f:97:4e:
62:ad:2d:28:12:b6:b1:9a:72:4d:a7:9e:f3:1c:5e:
de:84:1c:87:fd:8b:4a:8a:3b:3c:db:dc:63:c4:f7:
f0:a0:45:5e:23:67:bc:90:0b:31:c6:1e:56:91:65:
ce:16:d6:3b:fe:5a:e2:e2:87:85:01:00:0c:a5:66:
79:90:6a:7b:5e:f2:a1:4e:22:39:1e:64:55:b0:dd:
5e:fa:7f:ab:1b:5b:4f:65:6a:04:8e:a9:5a:34:ab:
0b:e2:e8:43:f1:b3:34:f3:8f:ea:b2:13:90:f9:54:
4e:ac:0e:8c:28:7a:01:88:1c:e8:e6:b2:8f:1d:91:
8f:2f:3e:2e:5a:16:77:7d:0c:04:51:32:1d:91:0e:
89:3c:4c:1a:25:30:41:2e:8c:33:4c:5c:29:f2:6c:
6f:32:45:32:e5:51:e0:12:f2:93:9c:8d:4f:1b:09:
e5:a0:51:e1:db:93:96:8f:9a:5d:38:3e:40:a4:2d:
84:86:46:38:d5:ab:94:f7:ea:c5:d9:57:6f:39:e1:
ca:21:d9:70:d3:ca:9a:e6:a0:01:e3:1c:8f:a9:cd:
18:9d:6f:b9:d1:54:02:1c:c3:8a:ad:3b:56:5a:08:
33:91:4b:0e:86:38:a0:9a:37:ab:e0:e9:82:56:9d:
25:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E1:28:0A:3B:24:0F:56:DC:FE:1D:77:F2:4E:1A:98:23:40:12:5C
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/5-EoCjskD1bc_h138k4amCNAElw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.32.0/24
109.160.34.0/24
Signature Algorithm: sha256WithRSAEncryption
57:41:96:a5:8d:3b:f2:57:57:3a:a7:bf:f4:1a:ee:20:9d:64:
ef:2f:a1:6e:cf:7b:59:91:be:42:59:2c:26:ef:6a:b4:fa:2b:
6b:06:aa:4b:45:00:9a:82:7e:6c:96:98:16:b3:08:14:72:68:
f8:23:0b:22:06:a0:b8:50:a3:1c:c6:ac:d1:75:76:da:9c:f1:
f2:55:8b:b7:c9:d1:f8:00:5e:fd:50:36:29:b6:c6:d7:9b:5d:
c9:10:2b:44:eb:0b:e6:95:7f:f6:f2:26:63:12:00:67:f3:8a:
88:e2:b8:3e:aa:76:4e:14:2e:29:27:5b:2e:f6:9a:c9:98:7c:
02:41:a1:a0:bb:14:b6:9f:9a:b7:3b:eb:dc:ac:17:e4:be:11:
87:11:7f:fd:60:1a:8a:62:83:06:f0:f3:a5:17:27:73:2a:f2:
9f:74:21:ee:d4:b4:62:b2:f5:72:53:90:22:f9:5d:fb:a3:70:
b8:77:42:a1:1a:25:bf:eb:f0:58:e3:14:21:40:ec:66:44:88:
b5:e2:db:3e:bf:c5:b5:54:19:2e:84:f8:4b:1a:77:bd:e9:69:
76:d1:e2:4f:12:08:e3:a9:01:25:23:2e:01:9e:bc:0f:53:46:
aa:7b:cd:02:92:bf:82:81:5c:69:82:9b:71:b0:4c:26:e3:66:
d6:f7:4f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:32 2023 by rpki-client on console-ams.rpki-client.org