Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/tcWYQ1X-Gfx1irwc09ZxHvJ2_SU.roa
File: tcWYQ1X-Gfx1irwc09ZxHvJ2_SU.roa (raw, json)
Hash identifier: EW7l3mJS6vunm11fmIJestfx3ljqU03sy8tTZb+szgQ=
Subject key identifier: B5:C5:98:43:55:FE:19:FC:75:8A:BC:1C:D3:D6:71:1E:F2:76:FD:25
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 315173EB
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/tcWYQ1X-Gfx1irwc09ZxHvJ2_SU.roa
Signing time: Sun 22 May 2022 05:40:29 +0000
ROA not before: Sun 22 May 2022 05:40:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 109.160.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 827421675 (0x315173eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: May 22 05:40:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5c5984355fe19fc758abc1cd3d6711ef276fd25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5f:1a:08:93:03:21:67:7f:70:e2:18:76:95:
7d:5c:56:8f:0c:57:62:3c:14:f3:e7:0d:17:88:7e:
aa:85:3d:c2:64:0b:f7:8a:61:50:09:59:fa:cf:5a:
4d:d8:ca:24:0d:fb:49:ed:51:ba:0d:07:84:8d:0a:
9b:9e:96:e0:ba:ad:1a:97:62:2b:e3:1e:c0:d3:1e:
f3:68:60:1c:ee:e3:ac:ae:b8:e2:97:bb:2b:71:14:
6c:83:b6:fa:8d:d1:3d:62:59:08:d1:ed:e6:74:6e:
eb:e1:c7:7f:96:75:1d:5c:80:af:39:0d:95:ef:2d:
b5:ed:cd:46:76:e7:da:11:29:da:64:f6:ac:39:e2:
02:2c:fb:47:ff:27:9a:eb:87:40:e2:09:ba:ee:99:
09:92:81:0b:68:e1:85:17:fa:62:6d:b2:f6:dd:42:
18:21:29:aa:ee:e1:48:af:72:95:21:bb:49:8a:aa:
43:ac:c8:30:98:40:31:25:fa:5a:9a:a7:57:ad:c0:
75:3b:26:77:a0:e7:5d:ad:6e:78:21:31:c5:20:ff:
6a:4c:75:3c:66:04:08:d4:d6:46:3a:69:17:d5:30:
9d:df:e8:ed:7b:22:7c:42:9b:65:c4:50:f2:53:fa:
d4:14:7e:86:61:b2:e6:98:a3:0e:61:b1:76:b8:60:
3d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C5:98:43:55:FE:19:FC:75:8A:BC:1C:D3:D6:71:1E:F2:76:FD:25
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/tcWYQ1X-Gfx1irwc09ZxHvJ2_SU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.35.0/24
Signature Algorithm: sha256WithRSAEncryption
51:1a:29:aa:50:0e:a3:91:5f:98:c7:66:3b:e2:d7:b0:b6:c0:
8f:24:d7:17:1a:25:b0:fd:75:84:59:58:e1:6e:41:fe:39:4f:
93:b1:ab:5e:b0:87:c9:4d:57:e9:a4:c7:d1:ff:88:94:e7:b5:
a4:e5:f3:0b:7b:4b:89:c8:d8:85:ef:17:a0:ed:80:c9:e6:56:
c7:87:a0:b5:f4:c4:5f:ec:98:75:8d:a7:99:f6:76:65:9f:3b:
3a:4a:f1:4c:70:ed:99:4d:57:03:0c:a5:5e:46:01:1b:fe:de:
a2:7c:02:dd:7c:12:60:13:b0:5c:05:bb:1b:10:85:e7:d6:31:
b5:27:50:54:fe:8d:70:2b:f1:2e:b9:a6:8a:8c:1d:bc:db:dc:
56:c9:73:dd:36:52:29:cb:1c:20:db:a5:f3:72:52:73:54:83:
56:2d:19:36:ef:0c:d2:7e:8b:a3:cf:d9:a7:03:95:d1:6a:3b:
e1:f8:e4:52:66:50:4c:42:a6:c7:7c:8a:5f:3c:d7:ab:e9:4d:
ea:e1:56:35:23:e3:b2:d5:3e:94:08:43:4a:21:47:7b:80:d7:
b0:a1:25:3a:45:ba:03:6d:a4:f6:cf:0b:30:a4:80:e1:cd:5d:
02:1e:ec:b4:8f:c1:55:38:29:90:a1:33:1b:8d:a3:03:81:a3:
b8:e1:f2:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:40 2023 by rpki-client on console-fra.rpki-client.org