Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ZRAh3yETfWJdjc0iA_8_YqV7BJQ.roa
File: ZRAh3yETfWJdjc0iA_8_YqV7BJQ.roa (raw, json)
Hash identifier: GNosd8H27cZ7tyDUVkhVy8evPKpQuXnlUFMJmHWwej4=
Subject key identifier: 65:10:21:DF:21:13:7D:62:5D:8D:CD:22:03:FF:3F:62:A5:7B:04:94
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 30AF2973
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ZRAh3yETfWJdjc0iA_8_YqV7BJQ.roa
Signing time: Wed 16 Mar 2022 18:38:08 +0000
ROA not before: Wed 16 Mar 2022 18:38:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 109.160.35.0/24 maxlen: 24
109.160.32.0/24 maxlen: 24
109.160.33.0/24 maxlen: 24
109.160.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 816785779 (0x30af2973)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Mar 16 18:38:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=651021df21137d625d8dcd2203ff3f62a57b0494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:26:87:cb:17:5f:69:af:14:5d:f5:2f:c9:2d:
96:1a:d7:d4:b9:65:15:ac:94:b1:46:3e:5d:95:da:
35:a0:3c:cd:1e:8e:b2:1f:c7:85:a5:53:18:de:e1:
2c:34:42:b2:3c:d1:0c:2d:c4:76:de:37:31:0b:dd:
0e:88:2f:36:35:2e:5e:05:97:ab:96:6e:eb:0e:4d:
22:01:89:ff:cd:13:c2:db:39:d4:a0:58:ce:c2:ea:
d1:db:2d:b8:7e:6e:5d:07:66:6d:cb:95:63:8f:3f:
e6:c2:a0:43:6f:48:9d:b3:a6:18:86:8a:ae:07:da:
2d:91:87:7a:0e:5d:77:8b:c3:7f:f3:b5:e7:33:8b:
fc:07:b0:c3:52:a8:25:89:24:f8:dc:ee:7e:f2:1a:
2d:e4:72:75:7b:06:34:26:f7:97:81:e5:f7:32:dc:
d2:17:3e:a8:13:ae:4c:e6:cf:2f:9e:10:3a:70:ef:
c5:85:cd:d1:6c:37:69:ad:cc:fb:15:0e:3c:0a:05:
9f:43:4a:88:70:12:f1:54:a5:97:fc:8b:35:1e:7b:
84:58:df:78:fd:0b:2c:66:f0:2e:09:7a:e6:59:9c:
c7:53:4c:21:5f:f7:86:ca:27:69:8e:38:14:04:62:
b6:78:50:23:3f:db:94:1c:0f:35:75:60:f8:5a:5c:
d6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:10:21:DF:21:13:7D:62:5D:8D:CD:22:03:FF:3F:62:A5:7B:04:94
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ZRAh3yETfWJdjc0iA_8_YqV7BJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.32.0/23
109.160.35.0-109.160.36.255
Signature Algorithm: sha256WithRSAEncryption
7f:ab:35:83:57:bd:af:f5:ca:d0:36:75:7b:f7:0c:5d:58:f7:
8c:23:65:1c:67:72:ae:d9:5e:00:84:13:b9:22:26:8e:49:52:
84:eb:cd:b2:16:26:cf:3d:b2:9b:71:36:07:d9:b6:3c:5f:7d:
d1:4c:1c:4c:bb:de:ec:3a:95:e3:61:b9:4a:e9:aa:f6:a1:2a:
06:a3:8e:91:41:c4:ed:dc:d2:03:20:0e:22:a7:72:ae:14:10:
e5:8f:3a:ba:f1:d0:4f:a7:9a:08:fa:ae:42:25:28:70:b5:0d:
27:cb:5e:df:49:ac:fb:f4:f9:a8:02:b7:89:02:6e:15:c6:f9:
a3:13:79:6f:03:29:68:a6:d4:04:24:5a:3f:25:97:f2:e7:21:
b6:a4:87:37:e2:d6:b7:cd:c0:90:f2:14:66:c8:29:fb:96:49:
6c:99:5c:8a:6b:09:70:f7:3b:4b:2a:d5:a8:8d:55:a3:88:77:
20:ce:96:34:c0:f1:ee:ac:aa:2c:a9:5d:7a:29:d9:8c:a8:9f:
83:13:f5:37:d0:bc:49:68:50:9e:62:8c:d9:12:58:b7:b9:42:
d3:eb:2b:8b:92:eb:02:2d:c8:68:4c:6d:b5:a1:44:d3:cb:fd:
82:19:ac:67:94:eb:54:3c:03:80:13:ee:c4:3f:05:e7:2c:17:
fe:26:79:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:32 2023 by rpki-client on console-ams.rpki-client.org