Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/H8v38fowTEN4APEThst9_f6-cTo.roa
File: H8v38fowTEN4APEThst9_f6-cTo.roa (raw, json)
Hash identifier: 80UdoDrHVRUpHp5qGS/BgxEbtGd8WHupHVF4wKJdi4o=
Subject key identifier: 1F:CB:F7:F1:FA:30:4C:43:78:00:F1:13:86:CB:7D:FD:FE:BE:71:3A
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 30EAFB9B
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/H8v38fowTEN4APEThst9_f6-cTo.roa
Signing time: Sun 10 Apr 2022 04:30:56 +0000
ROA not before: Sun 10 Apr 2022 04:30:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42878
IP address blocks: 109.160.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 820706203 (0x30eafb9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Apr 10 04:30:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fcbf7f1fa304c437800f11386cb7dfdfebe713a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:70:ba:bc:82:db:bd:15:1b:40:37:4d:96:13:
21:48:d4:84:ad:dd:f0:da:7b:59:3a:ee:a4:ca:67:
0b:56:c2:57:e7:7d:d8:44:df:d1:d6:95:d0:89:0a:
fa:75:9c:9e:59:4f:69:88:26:12:e7:a7:38:1a:a0:
8f:68:6f:67:a3:d5:1c:50:52:15:3a:68:17:1b:6b:
cd:62:5f:41:e5:2c:06:c1:94:6e:92:e7:b6:f6:40:
41:ad:ea:1a:10:c4:5e:84:40:be:11:a0:56:ea:66:
56:46:6a:e8:6f:6d:74:19:6b:c1:fe:44:0e:5a:c0:
a0:69:e3:26:f6:4b:15:73:86:49:ca:b4:59:3e:ef:
d9:77:f4:e6:5b:4e:76:22:9a:32:76:45:eb:c7:e7:
af:eb:38:db:3d:4f:b2:fc:63:7a:2b:43:f9:a0:03:
6b:d1:91:67:d6:83:67:63:c6:01:b0:72:dd:ee:38:
93:7a:b0:b2:4d:c4:90:15:0e:d0:ce:d6:52:76:d1:
85:36:67:c5:77:96:c7:b6:ed:14:64:fe:00:a4:f7:
95:ce:09:5e:42:57:d1:d0:bd:4f:e2:cc:06:1e:8e:
0d:60:28:65:a2:81:21:7f:49:d6:0f:db:a6:25:ce:
57:5f:01:77:ec:1d:bc:fc:9b:1a:95:14:3e:07:20:
f3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:CB:F7:F1:FA:30:4C:43:78:00:F1:13:86:CB:7D:FD:FE:BE:71:3A
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/H8v38fowTEN4APEThst9_f6-cTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.118.0/24
Signature Algorithm: sha256WithRSAEncryption
35:4b:e9:84:03:73:36:1e:ec:12:6b:b9:f5:17:3b:f0:29:b8:
9e:81:7a:5a:2b:2b:6a:fd:73:d8:19:81:1e:3c:5b:20:8c:16:
2e:46:6c:0f:f8:19:4e:73:e8:26:d0:c5:52:49:26:c6:6a:ed:
5e:b5:76:2e:5b:b4:2f:72:8c:26:eb:6c:e3:06:e5:4c:67:7f:
08:4b:e0:81:29:b6:d9:3f:3c:59:eb:ca:a6:e0:c0:eb:92:67:
17:20:22:d9:0f:58:a0:0f:92:98:35:2e:1b:50:d0:68:a4:f4:
0b:a1:1b:2c:6e:3c:61:24:4e:90:89:8e:ba:2b:89:36:3d:c3:
e2:17:9b:a1:74:ea:b5:75:0f:a0:b8:6f:73:85:2b:90:37:42:
ea:28:73:9b:66:78:92:3b:2a:2e:2a:99:88:50:37:e4:75:c6:
00:72:81:7c:48:25:be:db:60:ec:2d:f2:f1:bc:bc:20:77:ab:
4d:dd:01:65:19:9d:65:ae:73:9f:63:2c:19:35:1c:b2:cb:a6:
15:02:af:cb:6f:cb:db:ce:b7:bb:69:31:1e:8b:da:1e:7c:59:
0f:61:92:91:62:5c:b0:bc:8f:42:20:66:11:78:a3:ae:36:a8:
6f:a8:03:69:48:e2:38:f2:35:22:02:13:71:38:dc:b5:13:aa:
a8:14:2e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:27 2024 by rpki-client on console-ams.rpki-client.org