Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/XL156AhoqAnDWgfMsdkNlQ_vUj0.roa
File: XL156AhoqAnDWgfMsdkNlQ_vUj0.roa (raw, json)
Hash identifier: tPMkNAU/s5XvBz3vDINXFfN2T5jKm+Er6+1QdfcXmbA=
Subject key identifier: 5C:BD:79:E8:08:68:A8:09:C3:5A:07:CC:B1:D9:0D:95:0F:EF:52:3D
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 30B2CAA6
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/XL156AhoqAnDWgfMsdkNlQ_vUj0.roa
Signing time: Wed 16 Mar 2022 18:39:32 +0000
ROA not before: Wed 16 Mar 2022 18:39:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 109.160.40.0/24 maxlen: 24
109.160.40.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 817023654 (0x30b2caa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Mar 16 18:39:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5cbd79e80868a809c35a07ccb1d90d950fef523d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:17:d4:34:ac:c2:d9:e2:a1:5b:b1:49:e3:80:
34:96:18:a1:c6:71:6d:56:4d:16:ac:45:32:57:01:
49:f5:1c:a5:ec:e1:33:f1:4f:3c:51:ad:d0:38:c8:
fd:f7:c1:10:c6:d7:c9:1e:14:e0:e8:74:de:86:ef:
fd:de:08:73:22:0e:19:10:1c:e8:b1:6d:88:16:6d:
73:b7:c7:ca:90:a9:dd:3b:5a:85:07:b3:d5:a9:17:
9e:75:21:5c:9e:9f:c4:67:32:9d:76:19:2e:09:53:
bc:7d:30:07:bd:ae:1e:e3:30:3c:64:20:cf:13:fe:
d9:77:36:46:36:57:12:8a:a0:59:ee:59:eb:92:d9:
4d:bf:37:c3:41:a0:41:5c:40:05:7d:e0:e6:c3:85:
00:2d:09:e6:47:2d:a7:62:9c:2c:6f:89:5a:a8:19:
89:4e:e5:45:d9:06:92:d3:b9:00:52:c8:00:93:bd:
6e:49:4c:94:53:57:ec:aa:89:6e:57:f6:90:96:75:
52:09:96:25:31:88:b8:ee:c4:91:ec:10:6e:9d:5b:
e3:dd:62:c6:13:d4:96:98:f0:29:de:80:c7:57:81:
ea:3e:65:e0:fd:f1:a0:4e:97:e4:75:54:97:2a:73:
eb:b5:42:e3:97:c4:4e:fe:69:ec:ca:9f:0f:fd:54:
6c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:BD:79:E8:08:68:A8:09:C3:5A:07:CC:B1:D9:0D:95:0F:EF:52:3D
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/XL156AhoqAnDWgfMsdkNlQ_vUj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.40.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:71:74:dc:a7:f8:fa:1c:83:97:dd:97:6c:e1:4c:a8:03:b4:
85:bb:ea:fc:56:8a:05:5b:f9:bf:4c:72:4d:5c:54:af:8d:56:
72:55:35:56:0d:d8:c9:c8:d0:d2:77:08:9b:c0:54:9b:69:b5:
01:95:5f:44:a7:b6:79:a2:17:a4:68:27:00:b2:66:99:ad:09:
32:a4:24:f5:13:c2:71:da:c0:e7:80:33:00:8d:84:78:09:7d:
b4:07:8b:a0:74:2f:a8:50:c6:4a:b6:e8:79:8b:8f:5f:33:0b:
ed:f1:af:7c:ae:b6:d3:60:61:8d:2a:94:f9:da:70:03:5f:7c:
65:d3:68:6e:9c:b3:60:34:4f:94:6c:6d:40:d8:84:c6:0c:6e:
21:5d:c0:5f:5f:d6:f9:53:bc:23:9e:7e:c9:70:a1:07:0e:12:
40:67:20:ae:a4:91:80:b6:3b:fe:ba:4f:e6:1f:d7:df:fa:78:
00:f7:f7:a3:f8:09:41:a1:7f:ee:e9:a0:56:0d:1c:3e:d6:6b:
69:f6:36:25:55:20:6b:cb:2b:fd:c8:ff:f4:21:ce:52:d0:dd:
a1:50:0c:46:e1:87:a7:49:db:09:22:42:8f:50:63:03:6a:e7:
a9:ce:27:cb:95:ef:40:1f:10:bc:4d:91:47:2d:14:ed:63:2d:
3d:b2:ee:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:32 2023 by rpki-client on console-ams.rpki-client.org