Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/vdqtFKxaq3DrkrPPVdG7XrGNoik.roa
File: vdqtFKxaq3DrkrPPVdG7XrGNoik.roa (raw, json)
Hash identifier: RhOxthPqlOxcJLpzVP572dMubZofP5HZeqzVJ+NkKXs=
Subject key identifier: BD:DA:AD:14:AC:5A:AB:70:EB:92:B3:CF:55:D1:BB:5E:B1:8D:A2:29
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 30B184BA
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/vdqtFKxaq3DrkrPPVdG7XrGNoik.roa
Signing time: Wed 16 Mar 2022 18:39:03 +0000
ROA not before: Wed 16 Mar 2022 18:39:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 109.160.34.0/24 maxlen: 24
109.160.38.0/24 maxlen: 24
109.160.37.0/24 maxlen: 24
109.160.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 816940218 (0x30b184ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Mar 16 18:39:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bddaad14ac5aab70eb92b3cf55d1bb5eb18da229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:39:53:6e:8f:6a:b5:84:18:8b:f5:9e:19:a2:
e1:51:b3:54:b9:ae:94:a8:e2:e2:13:29:56:85:e2:
86:a5:61:b6:ef:0a:d7:8c:0b:3f:ce:d7:d5:6e:9d:
55:25:8e:18:a6:da:42:3d:80:6a:ba:4c:48:14:01:
aa:2f:21:d4:bf:bd:17:6c:be:61:ed:86:71:f1:1f:
da:3a:81:bb:af:75:0b:e3:bc:aa:f5:1a:81:73:6d:
8c:a7:7d:b0:e3:90:e0:09:86:2f:46:a9:fb:1d:e0:
4d:2c:b1:a9:17:fd:32:7c:03:4d:fc:ea:ea:bb:c0:
00:70:3a:57:19:b1:a7:ab:fd:c9:30:47:d3:c9:07:
52:f6:7d:bc:50:6f:6a:50:6e:2b:52:15:3c:6e:91:
50:e1:85:fe:f0:ab:55:c6:a3:16:c3:d4:3c:24:20:
7b:ad:72:58:1c:26:65:97:3f:47:09:cd:28:8d:df:
a1:2f:e0:1e:d4:d9:30:dd:57:ab:ea:2e:57:03:55:
eb:1a:15:13:f9:42:b1:b2:08:9c:27:dd:82:26:c2:
85:9b:8f:fe:87:23:16:a3:ee:1a:b2:ab:f7:16:7f:
55:fc:33:fc:65:d0:92:97:c3:15:c6:2f:07:da:16:
51:03:e6:3c:d3:31:20:7d:00:4b:f5:79:47:38:54:
62:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:DA:AD:14:AC:5A:AB:70:EB:92:B3:CF:55:D1:BB:5E:B1:8D:A2:29
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/vdqtFKxaq3DrkrPPVdG7XrGNoik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.160.34.0/24
109.160.37.0-109.160.39.255
Signature Algorithm: sha256WithRSAEncryption
55:9f:59:71:48:0a:23:a9:f0:20:db:ea:c6:a2:0a:d9:79:77:
9a:c4:0c:cb:17:88:db:37:64:ad:07:ec:b1:65:93:2b:6c:42:
fb:c8:d6:f9:a8:57:f5:f0:95:1d:bd:0c:8d:77:ea:15:51:2a:
ff:eb:46:92:64:e6:6e:95:2e:8c:af:45:27:b1:59:23:59:52:
27:3a:d0:8d:e3:14:2f:ad:8c:c5:40:d3:07:5e:05:e0:bc:03:
1b:1a:e9:bc:c0:e2:26:63:89:ba:f2:ee:63:7f:b1:7c:80:e5:
90:91:6c:55:1d:69:7a:b5:6c:e8:80:b7:6e:2d:d8:ba:4f:9b:
78:77:cc:5d:c5:c5:7d:ea:60:aa:67:a1:26:d3:53:c2:48:ba:
f3:03:ba:3e:aa:f1:66:63:16:14:d9:b0:0e:c7:53:2d:21:32:
90:41:ed:2e:f2:c2:5b:d1:cd:5c:28:db:5f:fe:6c:42:32:37:
40:df:0e:d2:cc:3e:71:df:3b:a9:67:4d:20:6a:69:af:ca:ca:
41:0f:d2:2f:8f:75:d3:e9:08:c1:3c:4e:a1:d0:2f:92:76:6d:
65:ff:b8:75:d2:c5:b2:f8:c3:c4:4d:6b:16:42:d7:ec:1a:a6:
fe:78:e3:cf:5c:61:b6:d9:54:bd:09:0a:3f:47:59:c4:ff:d5:
79:4c:bd:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:40 2023 by rpki-client on console-fra.rpki-client.org