Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/TOnPjSmMUU9WFe8Napg0gpo6Otw.roa
File: TOnPjSmMUU9WFe8Napg0gpo6Otw.roa (raw, json)
Hash identifier: YQ5z1z0K4/AeINSMcnUBVB8WfyiUYtkB2G9mm7+7T2c=
Subject key identifier: 4C:E9:CF:8D:29:8C:51:4F:56:15:EF:0D:6A:98:34:82:9A:3A:3A:DC
Certificate issuer: /CN=12ef9e49fecf2509eb6769eee2cdd4a5253b71c5
Certificate serial: 01845D0C8AB6BE0D88B9F8BF41547B13FE88
Authority key identifier: 12:EF:9E:49:FE:CF:25:09:EB:67:69:EE:E2:CD:D4:A5:25:3B:71:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eu-eSf7PJQnrZ2nu4s3UpSU7ccU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/TOnPjSmMUU9WFe8Napg0gpo6Otw.roa
Signing time: Wed 09 Nov 2022 15:40:13 +0000
ROA not before: Wed 09 Nov 2022 15:40:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47872
IP address blocks: 109.121.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5d:0c:8a:b6:be:0d:88:b9:f8:bf:41:54:7b:13:fe:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12ef9e49fecf2509eb6769eee2cdd4a5253b71c5
Validity
Not Before: Nov 9 15:40:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ce9cf8d298c514f5615ef0d6a9834829a3a3adc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d3:54:3d:c4:00:4a:2b:0e:52:e3:50:88:5b:
09:44:79:4e:7d:e8:31:84:7d:ff:85:bc:d7:b0:10:
c6:06:fb:74:1a:38:13:07:77:a4:49:64:4f:25:79:
8b:e6:07:77:6f:e0:3c:68:64:8d:13:90:d8:f1:60:
60:92:01:68:97:60:01:6a:ad:01:ab:66:da:04:86:
3e:02:73:3c:29:2a:da:c1:4c:49:d8:3c:da:dd:34:
6d:11:83:ae:16:b6:88:c7:1b:64:f3:3c:b5:21:21:
b1:38:35:8c:1a:56:f7:4c:97:e7:d0:30:8a:71:c2:
5d:bf:f4:70:b2:3f:5a:81:e5:ee:3b:69:6d:46:07:
26:05:2e:08:3a:14:3d:bc:1c:e9:f7:7a:4e:2e:83:
10:6b:42:f4:32:5d:db:4c:53:44:9f:07:e1:85:4b:
f4:dc:24:1b:4e:97:d6:c5:b9:20:00:e5:20:d1:44:
30:02:55:55:74:83:32:26:be:47:ad:2a:55:a0:ea:
af:98:06:3d:51:26:80:86:b3:f0:e7:20:1a:a1:18:
b4:39:8b:d9:f1:34:d5:68:01:d4:5c:0d:4f:cd:9b:
53:8e:0c:13:63:f2:95:e3:bf:72:b9:5b:44:d4:b9:
66:79:73:7e:c4:f3:22:28:05:e0:5b:6c:cc:f7:38:
c8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:E9:CF:8D:29:8C:51:4F:56:15:EF:0D:6A:98:34:82:9A:3A:3A:DC
X509v3 Authority Key Identifier:
keyid:12:EF:9E:49:FE:CF:25:09:EB:67:69:EE:E2:CD:D4:A5:25:3B:71:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eu-eSf7PJQnrZ2nu4s3UpSU7ccU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/TOnPjSmMUU9WFe8Napg0gpo6Otw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/Eu-eSf7PJQnrZ2nu4s3UpSU7ccU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.121.152.0/24
Signature Algorithm: sha256WithRSAEncryption
67:24:37:c3:56:13:70:aa:bf:81:e2:25:a5:ed:43:e6:f2:50:
fb:b6:a8:90:31:5b:ec:ef:4d:76:48:90:ee:d6:96:e7:e6:15:
92:ad:d8:e1:9e:94:cd:ae:80:0c:7f:f5:7e:fc:4a:43:a1:e6:
af:a8:59:4e:55:a4:78:fe:03:b6:12:0c:b9:07:84:5e:50:9e:
b1:d3:c9:8c:9a:05:d6:cb:b0:06:0e:1f:42:76:37:34:8f:39:
02:b7:a8:70:ae:64:11:c2:bb:c8:57:60:0b:a8:c3:a3:8d:e5:
2d:b6:d4:07:36:88:1d:93:53:0b:9f:84:0c:a0:05:62:ea:56:
e0:25:43:58:d5:92:97:5e:bb:9d:94:ad:9d:b3:1e:9d:b5:19:
3c:ea:e8:e1:57:9c:54:f5:25:c0:63:dc:64:73:5e:ef:fd:c6:
da:9e:58:ba:24:e3:62:9f:9b:6f:b0:9d:d9:b2:16:75:8b:5a:
d9:f1:86:af:3c:a3:d4:3d:eb:42:63:6d:53:03:51:fc:ef:44:
ad:bf:b1:ad:9f:7b:e6:38:82:f5:51:11:03:07:9d:a9:af:27:
07:46:1c:dd:51:35:96:07:d2:e7:f1:d3:45:d6:0d:be:d7:07:
1d:6d:7a:dd:b9:f6:58:e0:a6:5e:25:87:b5:09:16:94:56:ce:
ff:fb:c8:a3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRdDIq2vg2Iufi/QVR7E/6IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyZWY5ZTQ5ZmVjZjI1MDllYjY3NjllZWUyY2RkNGE1MjUz
YjcxYzUwHhcNMjIxMTA5MTU0MDEzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Y2U5Y2Y4ZDI5OGM1MTRmNTYxNWVmMGQ2YTk4MzQ4MjlhM2EzYWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhNNUPcQASisOUuNQiFsJRHlOfegx
hH3/hbzXsBDGBvt0GjgTB3ekSWRPJXmL5gd3b+A8aGSNE5DY8WBgkgFol2ABaq0B
q2baBIY+AnM8KSrawUxJ2Dza3TRtEYOuFraIxxtk8zy1ISGxODWMGlb3TJfn0DCK
ccJdv/Rwsj9ageXuO2ltRgcmBS4IOhQ9vBzp93pOLoMQa0L0Ml3bTFNEnwfhhUv0
3CQbTpfWxbkgAOUg0UQwAlVVdIMyJr5HrSpVoOqvmAY9USaAhrPw5yAaoRi0OYvZ
8TTVaAHUXA1PzZtTjgwTY/KV479yuVtE1LlmeXN+xPMiKAXgW2zM9zjIPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEzpz40pjFFPVhXvDWqYNIKaOjrcMB8GA1UdIwQY
MBaAFBLvnkn+zyUJ62dp7uLN1KUlO3HFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXUtZVNmN1BKUW5yWjJudTRzM1VwU1U3Y2NVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS85YzI3YzItZmRiZS00ZTM5LWJhOTIt
MWQ1ZDk0NWEwNWEzLzEvVE9uUGpTbU1VVTlXRmU4TmFwZzBncG82T3R3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS85YzI3YzItZmRiZS00ZTM5LWJhOTItMWQ1ZDk0NWEwNWEz
LzEvRXUtZVNmN1BKUW5yWjJudTRzM1VwU1U3Y2NVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbXmYMA0G
CSqGSIb3DQEBCwUAA4IBAQBnJDfDVhNwqr+B4iWl7UPm8lD7tqiQMVvs7012SJDu
1pbn5hWSrdjhnpTNroAMf/V+/EpDoeavqFlOVaR4/gO2Egy5B4ReUJ6x08mMmgXW
y7AGDh9Cdjc0jzkCt6hwrmQRwrvIV2ALqMOjjeUtttQHNogdk1MLn4QMoAVi6lbg
JUNY1ZKXXrudlK2dsx6dtRk86ujhV5xU9SXAY9xkc17v/cbanli6JONin5tvsJ3Z
shZ1i1rZ8YavPKPUPetCY21TA1H870Stv7Gtn3vmOIL1UREDB52prycHRhzdUTWW
B9Ln8dNF1g2+1wcdbXrdufZY4KZeJYe1CRaUVs7/+8ij
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:43 2023 by rpki-client on console-fra.rpki-client.org