Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/9vbWF9BREmA2LnqiihQOj0xnYFQ.roa
File: 9vbWF9BREmA2LnqiihQOj0xnYFQ.roa (raw, json)
Hash identifier: CMK93chB8Ajhg1nKiwICgXVPiG8G2T4iwvt4BLLVpTg=
Subject key identifier: F6:F6:D6:17:D0:51:12:60:36:2E:7A:A2:8A:14:0E:8F:4C:67:60:54
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 318E59FA
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/9vbWF9BREmA2LnqiihQOj0xnYFQ.roa
Signing time: Thu 16 Jun 2022 06:05:45 +0000
ROA not before: Thu 16 Jun 2022 06:05:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 109.160.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 831412730 (0x318e59fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Jun 16 06:05:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6f6d617d0511260362e7aa28a140e8f4c676054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e9:2c:5a:86:d2:a6:4c:dd:81:90:dc:b8:03:
bc:08:f1:b0:07:a0:0f:03:15:57:64:f8:61:1c:75:
5d:ca:61:56:f0:33:ad:3e:d2:a5:e6:6e:f7:22:52:
bf:4d:ac:36:ce:3d:2d:98:e7:48:f3:87:85:94:18:
09:71:87:c6:21:4b:c3:d1:f7:14:b9:89:01:80:74:
92:b7:e4:b3:b3:66:4a:cd:67:f8:a4:14:6e:7c:84:
89:8c:db:78:bd:ae:28:a9:1a:ea:fc:51:d0:d6:a3:
2b:42:13:13:03:66:a2:03:c6:eb:16:74:ec:55:47:
0b:2b:68:70:9c:dc:80:ec:e0:56:8a:c3:de:0c:cb:
29:09:22:e7:a8:d1:23:5c:16:cc:8e:66:b0:46:8a:
7d:35:af:19:88:be:8b:60:32:f7:f4:94:f9:4b:97:
ec:a2:ed:11:19:6c:7f:87:09:2f:f4:2a:50:69:1d:
92:bd:7a:cc:70:a6:d5:9d:95:13:cc:f3:3c:40:9c:
bc:8a:18:09:87:e7:08:a6:1c:5f:87:6f:25:44:e6:
ba:c5:0f:64:44:42:83:f2:58:62:52:20:a6:93:8e:
bd:3f:97:d7:4b:9a:a6:f0:cd:05:f7:1f:c4:db:45:
e6:03:77:5f:5d:7e:36:1f:f7:98:83:fe:51:57:9b:
af:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F6:D6:17:D0:51:12:60:36:2E:7A:A2:8A:14:0E:8F:4C:67:60:54
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/9vbWF9BREmA2LnqiihQOj0xnYFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.34.0/24
Signature Algorithm: sha256WithRSAEncryption
10:cc:0c:a1:c2:16:ef:73:0f:e5:d0:30:e2:ac:3f:5b:a4:f9:
25:27:75:66:78:c4:47:c5:3c:bd:48:c8:e4:3c:12:10:ba:00:
73:dc:e5:a5:de:61:ff:ab:6d:c6:15:a4:b4:ce:61:e2:69:8a:
a6:5c:c8:ad:45:5c:3d:48:1d:03:fd:5c:88:f4:3e:cf:18:d0:
bc:a6:1c:ad:d5:72:3e:3e:b6:41:e4:47:95:02:bd:1f:8b:35:
ac:98:43:25:33:e2:29:4d:e8:33:4d:0b:bb:e8:d1:91:07:c8:
a7:a1:32:97:81:32:0c:6f:2f:62:f7:60:22:7f:ed:43:c0:ff:
55:76:a4:79:74:af:e3:2c:39:eb:b6:26:81:58:7f:87:15:45:
7a:25:6a:14:8f:dd:40:da:f5:f7:1d:b9:e1:b0:9f:4d:dc:8e:
15:97:61:a7:71:f1:9c:d4:29:6b:65:51:3e:80:ef:ea:fe:1f:
04:85:a7:2e:dc:de:e2:99:fd:31:c4:bc:eb:90:f4:35:1a:32:
15:4a:e6:6f:22:96:b4:db:e7:5b:e5:83:7a:ab:52:fe:99:ed:
37:0f:0d:1b:a2:5e:f7:55:dc:c6:8b:d7:27:75:e1:86:e1:cc:
ef:6d:7f:ae:3c:84:7e:55:f2:eb:99:fc:5f:8e:f8:58:72:58:
5a:fe:0d:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:32 2023 by rpki-client on console-ams.rpki-client.org