Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/f4fC0089UE7WYmwp4xhbtHTQ-WQ.roa
File: f4fC0089UE7WYmwp4xhbtHTQ-WQ.roa (raw, json)
Hash identifier: QrFCmrVaJ2DXqNMvGVtU4Q2MVkzWWQPPN7nd4YguZHU=
Subject key identifier: 7F:87:C2:D3:4F:3D:50:4E:D6:62:6C:29:E3:18:5B:B4:74:D0:F9:64
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 3018C8E7
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/f4fC0089UE7WYmwp4xhbtHTQ-WQ.roa
Signing time: Thu 20 Jan 2022 13:33:23 +0000
ROA not before: Thu 20 Jan 2022 13:33:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 109.160.35.0/24 maxlen: 24
109.160.34.0/24 maxlen: 24
109.160.40.0/24 maxlen: 24
109.160.40.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 806930663 (0x3018c8e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Jan 20 13:33:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f87c2d34f3d504ed6626c29e3185bb474d0f964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:42:72:06:30:6f:fe:06:89:81:d8:9f:09:05:
9b:4b:c9:e9:8d:58:ba:49:48:7e:c2:29:16:19:48:
fe:84:b1:af:f8:d6:d3:3e:b8:81:ea:9c:0a:0e:af:
27:95:26:82:74:cc:e8:2b:4a:48:31:6b:3b:2b:4d:
44:f5:38:85:88:cc:66:a3:a2:4f:aa:07:8e:40:2f:
95:3a:c3:0b:cf:61:1c:ef:a7:e4:f6:16:c1:37:56:
28:1b:3f:63:28:a9:4a:83:d6:cb:62:fe:b5:6b:f3:
4b:d8:73:27:0f:3b:75:f7:64:36:2d:89:9f:eb:fe:
25:2f:5d:86:1f:ae:16:f6:24:e0:d1:5d:c5:6d:76:
f7:9c:94:79:67:de:5d:60:6a:51:b6:69:b4:c1:31:
52:12:fa:94:aa:d5:33:ec:33:7d:cc:9e:56:61:54:
38:a5:a0:21:08:c6:f3:77:11:74:bb:4d:a0:fa:ff:
68:fe:d3:d1:7a:b2:26:1f:72:62:af:a4:9c:50:73:
89:e3:0b:68:99:34:80:29:f6:fc:e9:85:8b:f7:67:
53:1a:f2:b2:d9:2d:5c:6d:6f:08:7a:6d:01:fe:e6:
8d:a4:69:f3:e2:33:9c:d6:41:e7:b5:b1:2a:61:6f:
69:96:c1:7c:38:0e:58:61:ec:20:11:8e:71:e8:a5:
c3:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:87:C2:D3:4F:3D:50:4E:D6:62:6C:29:E3:18:5B:B4:74:D0:F9:64
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/f4fC0089UE7WYmwp4xhbtHTQ-WQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.34.0/23
109.160.40.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:0b:fc:d3:8c:46:2d:da:77:2d:1d:29:7c:ca:f5:e1:d3:41:
c3:81:e3:c2:79:7b:d7:08:f4:11:9e:fc:e1:b1:a5:a7:a5:44:
4d:c3:79:49:77:3f:be:84:c7:e3:27:c5:7c:66:b3:e5:63:98:
08:cf:47:9f:bf:76:04:34:00:87:e3:dc:c8:49:7a:c4:d7:9e:
3e:33:38:28:ad:c2:b4:aa:fc:d4:e5:7f:72:b5:cf:f1:a6:7b:
e4:d6:e9:43:0e:76:9a:43:32:27:86:12:14:a7:db:e3:9e:2b:
ab:91:29:dc:f1:b5:12:07:db:9d:73:80:22:b5:db:a3:02:c6:
fa:f3:4a:c4:95:70:fc:87:14:1a:1c:32:06:25:79:ee:4a:a1:
af:3e:14:12:eb:15:f3:3d:38:ba:e8:95:49:e3:f7:f8:e6:e4:
f4:a6:be:2a:d3:aa:88:54:81:44:09:ea:5a:fd:25:20:86:5c:
59:bc:de:a2:44:9d:cd:67:39:39:f0:ea:83:95:d9:cf:7c:58:
cf:55:1a:5d:7c:3c:fe:76:14:ca:71:76:a7:ff:b6:83:30:4f:
d0:de:fc:6b:2d:d0:b8:f7:05:bd:85:07:c0:c5:0f:5d:72:89:
03:53:0a:db:26:ea:4f:7c:c0:e9:1e:58:8d:f9:49:9a:ec:e0:
d1:b5:2e:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:32 2023 by rpki-client on console-ams.rpki-client.org