Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/FKSd2fQNUG7VB3I-JkjtqKbcpwU.roa
File: FKSd2fQNUG7VB3I-JkjtqKbcpwU.roa (raw, json)
Hash identifier: hUKEZ1P6/OeSF2vMeLl8CZHKK1FcFLyfvGY9cH7SeVE=
Subject key identifier: 14:A4:9D:D9:F4:0D:50:6E:D5:07:72:3E:26:48:ED:A8:A6:DC:A7:05
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 31199EE8
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/FKSd2fQNUG7VB3I-JkjtqKbcpwU.roa
Signing time: Fri 29 Apr 2022 04:48:23 +0000
ROA not before: Fri 29 Apr 2022 04:48:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 109.160.35.0/24 maxlen: 24
109.160.38.0/24 maxlen: 24
109.160.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 823762664 (0x31199ee8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Apr 29 04:48:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14a49dd9f40d506ed507723e2648eda8a6dca705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:08:d5:fb:c2:a5:d7:a6:02:fb:bb:f5:fd:9a:
4a:97:9e:a7:cd:93:26:14:37:c2:08:8a:58:61:7c:
29:d8:16:40:65:42:4a:39:f6:ab:1e:2a:48:ff:89:
fe:f1:51:74:34:88:d6:a7:8f:d1:20:43:c7:83:ee:
e1:d1:c6:a5:de:2c:4f:15:08:d0:15:52:ad:af:46:
2d:54:b2:67:25:78:d8:f8:bb:82:6a:4f:06:31:4b:
1b:1a:86:70:4d:2f:0d:2a:9e:f9:06:f1:b3:30:f2:
71:a0:ad:36:59:ff:b7:b9:59:38:24:e6:b5:a0:91:
e2:a1:fc:a8:a4:dc:0d:49:a2:4d:4e:b6:fd:42:70:
c1:d9:71:31:6e:fa:fc:41:c1:12:14:1f:37:77:34:
de:09:87:d3:cb:0e:c3:37:31:8e:a9:4a:7f:25:ea:
7e:da:9c:11:d2:cb:08:27:5b:94:23:0b:f1:5b:72:
85:df:bf:c4:7b:43:36:dc:b3:10:ff:cb:bc:15:ee:
a1:b7:1f:f5:ab:5d:4d:3f:7d:b8:cb:44:68:26:c9:
59:e8:4d:17:fc:4e:30:35:08:4b:e2:46:1e:46:42:
15:8d:d8:58:38:d8:6f:64:82:0a:b7:82:3e:62:66:
fe:5e:ba:d9:09:64:3a:d8:69:d0:7b:2b:7d:05:7e:
b3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A4:9D:D9:F4:0D:50:6E:D5:07:72:3E:26:48:ED:A8:A6:DC:A7:05
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/FKSd2fQNUG7VB3I-JkjtqKbcpwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.35.0/24
109.160.38.0/23
Signature Algorithm: sha256WithRSAEncryption
50:93:71:25:91:5b:04:80:13:b5:3b:28:0a:c9:de:95:fa:56:
b2:ab:1b:90:d6:70:28:97:cd:96:f0:5a:29:ba:4c:0f:95:aa:
67:a4:cb:46:6f:3d:c1:fa:92:55:f7:33:ef:1b:ff:de:5f:d9:
21:65:5c:21:4b:79:ac:84:1b:1e:1c:c7:6b:4a:74:9a:12:fa:
19:69:73:87:76:6e:de:36:9c:e7:8a:4c:a3:7c:53:e3:1f:57:
68:e8:1b:1e:88:3a:9c:92:1e:03:7f:7b:5f:31:0d:91:1d:ac:
7c:ce:35:c9:07:01:5b:68:9b:a4:6c:52:22:93:23:5d:e7:6d:
56:c3:db:c5:89:47:24:86:55:84:a1:a5:19:11:39:93:44:d3:
92:13:3e:f2:6f:f6:e6:d0:c0:b5:10:65:d7:ba:62:3e:de:45:
c1:01:4a:ee:60:89:b4:65:60:af:89:b0:2f:25:2a:e5:de:bf:
54:b9:49:a0:c0:29:6e:e5:1d:c9:8a:fd:20:63:8f:fc:94:77:
25:58:29:a1:63:87:7d:db:57:16:e3:81:88:e8:f3:8f:80:2a:
9a:2e:cc:fe:47:e8:4a:5d:b2:73:4b:d0:b5:79:65:2b:a6:32:
ba:d6:52:d5:56:68:c2:07:4b:c9:ef:09:89:5a:16:9e:34:6d:
e9:ff:f0:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:40 2023 by rpki-client on console-fra.rpki-client.org