Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/EsTJnbfkOTfmZ56-e_FA_FIrmzw.roa
File: EsTJnbfkOTfmZ56-e_FA_FIrmzw.roa (raw, json)
Hash identifier: tSMyDYRxnDAQzV4p7Styn+Nn5c1gdg28wnp6mHqm6UM=
Subject key identifier: 12:C4:C9:9D:B7:E4:39:37:E6:67:9E:BE:7B:F1:40:FC:52:2B:9B:3C
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 309D24A2
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/EsTJnbfkOTfmZ56-e_FA_FIrmzw.roa
Signing time: Sat 12 Mar 2022 06:53:00 +0000
ROA not before: Sat 12 Mar 2022 06:53:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35773
IP address blocks: 109.160.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 815604898 (0x309d24a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Mar 12 06:53:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12c4c99db7e43937e6679ebe7bf140fc522b9b3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d5:77:89:0d:ea:3d:ef:34:d5:42:1f:c7:e4:
fb:b5:b7:af:6d:74:85:ba:60:e3:81:a2:b0:2f:56:
54:6c:0b:52:1e:3a:37:df:1d:68:3f:d6:68:1c:a3:
97:62:b1:a4:06:b6:dd:66:2e:6c:1c:95:dc:78:dc:
7b:e9:71:03:01:dd:99:69:c5:ae:ae:fc:07:23:6e:
fd:7d:5b:fe:ec:3c:29:d6:e0:65:dd:0c:c3:67:b2:
b1:c0:85:cc:2d:ee:a0:97:cd:0d:80:0f:89:43:12:
32:d0:96:45:2c:ae:73:55:f9:3f:c8:1c:76:16:a8:
0a:b5:c8:bc:4c:df:8c:b4:7c:c0:01:65:8f:e4:88:
e5:17:ec:c7:d4:1a:92:22:ac:cb:38:20:d3:cd:c2:
94:24:da:dd:88:6d:1a:b0:a7:81:3a:49:c9:10:e6:
1f:ce:54:2f:a0:5a:6c:c6:b5:86:c5:3a:95:50:cd:
f1:31:d4:bc:5e:9c:d4:db:d3:aa:be:41:f6:aa:81:
2f:c8:e6:e7:ef:c3:43:7f:2b:31:85:84:91:a2:91:
3e:65:bc:dd:68:31:b0:2d:ac:64:8a:a7:e8:bd:03:
7e:78:00:b7:5f:36:68:52:0c:7f:69:5a:c4:0d:b8:
f5:ca:a9:53:86:6d:0e:f6:8c:81:eb:38:6b:49:f5:
72:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C4:C9:9D:B7:E4:39:37:E6:67:9E:BE:7B:F1:40:FC:52:2B:9B:3C
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/EsTJnbfkOTfmZ56-e_FA_FIrmzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.112.0/24
Signature Algorithm: sha256WithRSAEncryption
62:b1:c7:18:c1:bd:38:d1:20:b1:a8:7e:f7:7e:a9:b9:e6:dc:
81:14:52:e0:d6:c9:98:ff:5e:92:66:4b:60:72:0e:da:56:d8:
39:eb:46:0e:27:25:4b:35:6d:f7:4e:5f:2c:f6:83:2b:a6:9f:
95:af:14:d8:31:b0:ad:e2:21:cc:b2:96:af:ef:1a:f7:31:57:
c3:a5:db:5d:c6:e0:82:c3:96:ff:2c:b4:26:a5:40:25:0e:8e:
b1:18:ff:04:aa:a0:c0:5b:79:3b:27:bf:77:e9:30:ad:b4:16:
ce:21:9e:ea:83:af:dd:6a:f2:60:91:4e:2b:33:b5:6d:e8:4f:
f0:ca:5b:88:0b:7a:43:40:66:5f:7c:b7:ba:7f:f2:38:6c:56:
eb:3b:cc:ca:46:a5:dd:1b:c9:84:b3:67:87:c1:d5:64:ce:e8:
56:6b:5e:77:96:a3:c0:bc:1c:ed:79:e4:53:75:ef:b0:54:96:
e3:d1:49:c0:dd:85:5a:68:f1:6d:38:55:33:e4:8e:1b:76:b7:
80:61:bd:1c:55:fe:2a:f9:3a:6e:c7:8b:71:14:5b:26:bb:ab:
6f:b0:c0:ea:71:87:58:0e:94:e7:f5:18:7d:38:fc:3c:23:52:
8d:9f:b0:f1:ed:eb:05:27:07:31:05:5a:a3:d1:65:4b:8d:b8:
46:8d:2a:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:40 2023 by rpki-client on console-fra.rpki-client.org