Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/jU2yEAqKbEjees8ZnmjmDJyG06g.roa
File: jU2yEAqKbEjees8ZnmjmDJyG06g.roa (raw, json)
Hash identifier: xFqo9IM4ShpwQ3BT6KUQPz1aDffWzwAhqQin2EAXxi0=
Subject key identifier: 8D:4D:B2:10:0A:8A:6C:48:DE:7A:CF:19:9E:68:E6:0C:9C:86:D3:A8
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 018288CD24536D59B7E6F36C2ED3C5C964E0
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/jU2yEAqKbEjees8ZnmjmDJyG06g.roa
Signing time: Wed 10 Aug 2022 17:28:41 +0000
ROA not before: Wed 10 Aug 2022 17:28:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 109.160.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:88:cd:24:53:6d:59:b7:e6:f3:6c:2e:d3:c5:c9:64:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Aug 10 17:28:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d4db2100a8a6c48de7acf199e68e60c9c86d3a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:27:90:54:24:02:cd:66:41:d6:28:bf:5f:55:
54:b7:a0:ee:9c:82:ea:8e:d6:7a:9b:c1:d5:44:78:
24:b0:69:32:7c:15:18:9c:4a:f2:4d:8c:ff:55:91:
d8:13:49:20:8e:a9:bc:18:34:70:e1:0e:14:a0:2b:
23:40:67:4e:29:26:af:f8:78:50:b8:b6:7a:de:ed:
35:ba:29:7c:7d:d2:bc:68:fa:57:f7:f4:04:9b:7e:
e2:7e:9e:f5:2e:cb:05:cd:08:87:c2:51:e4:79:5c:
36:1d:08:29:24:5f:2e:1f:b0:eb:7a:06:27:cd:64:
36:4e:fa:07:4e:49:35:ca:e2:f5:51:92:3f:b2:06:
97:f2:63:4c:6b:b8:65:b6:dd:24:25:eb:59:41:bb:
28:86:8c:8f:cb:bf:6f:86:a2:b3:ca:9c:c1:25:66:
f6:6c:17:72:b7:7d:e0:4a:29:85:8e:28:2b:0c:2e:
e8:71:65:cd:5d:ed:43:c2:95:46:52:c7:23:64:2e:
d0:71:4a:bc:cc:3c:22:03:a4:bf:d9:c8:cf:8e:63:
0a:3a:90:9b:4f:f0:fc:ef:80:09:31:29:73:99:d2:
de:48:bf:67:c6:04:ca:35:04:d3:e2:b0:e0:90:6a:
e2:be:e7:11:54:0a:e7:b1:f8:e3:1c:c2:c3:b7:53:
a9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:4D:B2:10:0A:8A:6C:48:DE:7A:CF:19:9E:68:E6:0C:9C:86:D3:A8
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/jU2yEAqKbEjees8ZnmjmDJyG06g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.32.0/22
Signature Algorithm: sha256WithRSAEncryption
25:c4:f8:5b:79:15:3f:1a:f6:26:ec:54:fa:7e:e0:bb:d8:70:
3f:d0:1a:78:bf:06:76:94:08:3f:9c:bc:d2:8d:af:79:8d:28:
c6:e4:80:6b:0d:19:8b:69:c6:e9:3f:16:84:6a:0c:b1:b6:0a:
30:14:f3:ae:92:bf:68:0b:ac:41:7f:fa:d1:84:4e:23:67:0b:
bc:b9:42:47:a7:6d:ec:9b:78:2c:17:57:6a:a3:71:21:59:b0:
d9:94:cb:be:07:4d:58:13:ea:28:d5:de:8b:bf:f0:3c:7d:b0:
ef:ad:9b:a3:a6:65:21:a5:f2:f8:55:c6:fa:98:84:2a:d6:ca:
f7:ab:ce:2d:6a:25:76:17:73:0c:7d:f0:08:27:be:db:b0:99:
51:54:12:b5:df:7d:d6:65:a8:b4:d2:fc:80:1b:b7:76:94:72:
d1:85:8d:87:49:ef:44:6b:dd:2a:2b:e8:26:75:02:a4:08:87:
2e:50:ed:18:b2:ef:87:88:da:33:75:c7:81:ce:bb:82:d6:f6:
f1:13:fa:45:66:ee:18:7b:5d:e9:6d:e3:22:91:ff:72:78:54:
52:77:05:03:62:d9:ef:a5:d0:89:d2:5d:01:09:7f:c7:32:1b:
d0:ad:02:8e:e8:25:91:fb:36:d8:94:4b:98:e6:c9:55:f9:df:
53:59:b8:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:14 2024 by rpki-client on console-fra.rpki-client.org