Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/iE81w_N9bt9-oDoRp-qxek-uNjQ.roa
File: iE81w_N9bt9-oDoRp-qxek-uNjQ.roa (raw, json)
Hash identifier: 8eoKDU1MFC3lSQiExa+JRi1dQoWIKyk/AbJQGGXQRlQ=
Subject key identifier: 88:4F:35:C3:F3:7D:6E:DF:7E:A0:3A:11:A7:EA:B1:7A:4F:AE:36:34
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 309FC071
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/iE81w_N9bt9-oDoRp-qxek-uNjQ.roa
Signing time: Sun 13 Mar 2022 06:41:40 +0000
ROA not before: Sun 13 Mar 2022 06:41:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 109.160.38.0/24 maxlen: 24
109.160.37.0/24 maxlen: 24
109.160.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 815775857 (0x309fc071)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Mar 13 06:41:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=884f35c3f37d6edf7ea03a11a7eab17a4fae3634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e7:28:cb:d4:4b:c4:d6:21:24:c2:cd:38:9f:
26:87:6e:5d:c9:e2:c8:4d:f0:07:ea:1a:52:55:31:
f3:84:1c:09:7c:6f:d1:32:a9:ac:70:5f:b9:14:8a:
78:52:e2:32:3c:88:48:5f:0c:1e:f5:32:e0:b4:82:
ab:4a:14:77:a7:28:da:64:d2:86:2b:47:d3:0e:a0:
56:eb:bf:14:d4:16:82:fd:21:18:55:83:28:07:00:
fc:3d:a8:8e:2f:7e:15:56:b6:3e:b7:80:b2:b7:af:
7c:c7:2a:6b:7d:70:56:a8:d4:93:72:fc:20:c6:63:
1c:a4:c4:55:87:67:84:7f:b5:79:6a:50:77:6b:d5:
7c:24:ae:f6:d6:2c:8c:81:e4:0f:4a:bb:96:0b:ce:
4a:8a:2d:51:b3:01:a9:bf:ab:07:07:3f:35:b8:b3:
3b:0d:d4:f1:0c:45:a4:7b:ee:e0:7f:12:ec:21:48:
be:b7:a4:37:95:4a:ee:59:be:79:42:28:30:37:7f:
7b:c2:87:32:42:da:09:1a:74:b8:aa:32:cf:69:23:
27:eb:0b:4b:59:8f:4a:5e:d1:19:3a:ad:f1:39:22:
89:2a:2b:af:09:db:b4:a6:49:a0:c2:87:ab:bc:08:
16:21:d7:e5:e3:94:9e:d6:b1:b3:ea:4a:b6:cc:6d:
ac:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:4F:35:C3:F3:7D:6E:DF:7E:A0:3A:11:A7:EA:B1:7A:4F:AE:36:34
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/iE81w_N9bt9-oDoRp-qxek-uNjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.37.0-109.160.39.255
Signature Algorithm: sha256WithRSAEncryption
92:71:98:a9:1c:2e:42:5d:23:e9:c9:55:3c:b7:0b:4b:8f:9d:
56:17:83:7c:36:6a:b0:7f:9c:0e:94:d5:7a:e5:11:6e:e3:6d:
13:83:55:a1:f4:bf:d0:25:bf:ee:1c:5c:55:2b:d6:0b:57:6b:
13:c9:f6:09:cf:7b:1e:07:b3:f5:eb:fd:9b:99:20:81:e3:53:
b0:16:e8:92:4a:88:b8:6e:43:91:c0:ca:d4:3c:7d:78:3c:f6:
a9:4e:38:25:22:c6:df:a9:04:2f:1f:0e:ca:df:3f:50:09:ff:
0a:ad:13:ae:d0:97:aa:64:18:91:5f:7d:b3:bb:e5:1f:a1:da:
98:de:d5:03:94:f6:2c:7c:06:d9:37:f7:1b:3d:b8:0e:73:39:
3c:d7:b1:3a:9c:33:60:c7:2b:81:d8:82:cc:50:94:a5:94:ef:
f2:9e:d7:36:b9:e2:d5:a7:a5:dd:74:21:10:1b:a9:ee:db:bb:
32:9a:9e:b7:28:bf:a2:52:d3:dc:0c:46:d9:d3:4f:fa:28:b3:
83:a9:a2:81:d8:0e:62:03:ee:68:8b:4a:78:28:b0:2d:c2:c5:
1f:ec:f0:85:c9:42:bd:3b:e8:f9:e7:12:12:c6:db:9d:e8:b3:
35:d2:fa:72:3a:c5:3e:54:04:d7:dc:c7:c0:5e:fb:c2:52:f7:
60:c6:a9:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:40 2023 by rpki-client on console-fra.rpki-client.org