Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/pIDkH6dvHBz3nqrD0w4Mwej9JmU.roa
File: pIDkH6dvHBz3nqrD0w4Mwej9JmU.roa (raw, json)
Hash identifier: 8g4EyLtZk4+9h0ienUNao9BhOjnNlgl/Gzyg2gmg6iY=
Subject key identifier: A4:80:E4:1F:A7:6F:1C:1C:F7:9E:AA:C3:D3:0E:0C:C1:E8:FD:26:65
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 018264CB53E5B8E4D1E246744F06F741E8EC
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/pIDkH6dvHBz3nqrD0w4Mwej9JmU.roa
Signing time: Wed 03 Aug 2022 17:40:23 +0000
ROA not before: Wed 03 Aug 2022 17:40:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211936
IP address blocks: 109.160.38.0/24 maxlen: 24
109.160.37.0/24 maxlen: 24
109.160.36.0/24 maxlen: 24
109.160.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:64:cb:53:e5:b8:e4:d1:e2:46:74:4f:06:f7:41:e8:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Aug 3 17:40:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a480e41fa76f1c1cf79eaac3d30e0cc1e8fd2665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1b:c2:24:ee:39:58:d3:56:35:40:24:06:f3:
51:00:20:af:65:8e:9c:00:b7:64:6c:61:5d:46:2c:
d7:38:46:bd:ba:5f:3c:53:6c:66:0c:9c:78:2a:7f:
2b:64:b3:1d:ab:dd:2b:b2:4f:a8:3a:c4:5e:64:85:
19:0b:b5:04:83:de:0c:3b:f1:21:04:13:1a:25:c1:
57:9e:c1:91:04:22:b3:8e:36:fc:ff:6e:fc:38:8f:
f2:c6:ca:4d:cc:f0:95:5b:23:d3:3a:8a:2b:08:a4:
73:8e:c0:78:44:3b:04:1b:a4:04:5a:9e:dc:ac:74:
21:1b:f1:3b:b6:26:f7:ca:19:a4:fb:83:cf:cb:57:
9f:8a:98:d2:ec:2a:25:c3:8d:b4:6c:49:c0:9c:bb:
96:7c:a0:91:09:10:f5:be:bd:d1:13:0f:ba:d8:a3:
2e:5f:52:5b:89:0f:19:67:11:87:1c:b5:ae:b4:b1:
68:93:b0:bb:7c:d5:21:83:ab:a6:6d:ee:5f:f5:5e:
8e:8f:8a:d9:b0:c5:2e:0a:7a:be:b3:26:17:60:da:
9a:ba:69:81:60:42:a1:ea:30:c9:ad:be:a5:c4:8a:
43:96:4d:5a:8b:73:e6:d3:2d:f6:2b:af:19:93:e6:
61:ad:e9:4f:2d:0d:6e:40:40:e7:a0:3b:bd:15:bc:
cf:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:80:E4:1F:A7:6F:1C:1C:F7:9E:AA:C3:D3:0E:0C:C1:E8:FD:26:65
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/pIDkH6dvHBz3nqrD0w4Mwej9JmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.36.0/22
Signature Algorithm: sha256WithRSAEncryption
42:e1:4c:8c:ea:5d:20:bd:b9:3a:6f:a2:9e:c7:c2:f9:75:c8:
6e:a5:59:a2:ed:11:4b:95:35:24:71:c0:b9:00:f9:c6:22:54:
0f:07:ef:61:60:d5:d3:c1:62:78:a8:ee:a7:5a:6b:30:ed:92:
65:0a:98:7a:03:44:c4:c8:47:7f:f3:fa:27:1f:ec:4e:34:5e:
14:06:5f:95:91:3a:6c:49:9c:7e:b9:c5:31:90:05:19:45:a4:
9b:f0:6d:e7:a5:be:3e:59:28:55:c6:f4:04:3e:e2:17:4f:db:
73:cc:ac:7a:0b:cc:d8:ec:05:d2:e7:20:c8:34:3c:cb:02:47:
6b:18:61:a1:85:71:40:64:5c:c4:d6:7c:07:d5:c7:8d:e7:47:
c7:75:7e:8e:0f:4f:c4:00:4f:1d:42:13:52:ae:03:e5:f6:25:
d3:ba:f9:5b:0b:1e:fa:a8:bd:54:30:37:e9:e9:70:85:09:c4:
5d:18:b1:22:d9:e4:1c:98:ee:e4:97:4c:47:2a:3a:a7:79:50:
15:b3:77:fe:0a:99:7a:73:1f:ad:b7:d7:ad:9d:8c:84:bf:50:
a9:16:4a:fa:ef:5a:3a:9a:e8:95:e9:3c:4c:dd:c6:39:fa:45:
61:b5:86:01:97:41:89:c3:cc:1f:b9:e7:07:34:55:53:bf:5f:
f2:26:37:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:40 2023 by rpki-client on console-fra.rpki-client.org