Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/m07sIeUTqRpNpwXeCUGsc_ov6f8.roa
File: m07sIeUTqRpNpwXeCUGsc_ov6f8.roa (raw, json)
Hash identifier: M89LVk/1OXLGvaVVfq1aQmXISVE2ULlYsqk59Do5/Eo=
Subject key identifier: 9B:4E:EC:21:E5:13:A9:1A:4D:A7:05:DE:09:41:AC:73:FA:2F:E9:FF
Certificate issuer: /CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Certificate serial: 9C62A1
Authority key identifier: B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/m07sIeUTqRpNpwXeCUGsc_ov6f8.roa
Signing time: Sat 21 May 2022 13:40:29 +0000
ROA not before: Sat 21 May 2022 13:40:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136250
IP address blocks: 104.207.37.0/24 maxlen: 24
104.207.36.0/24 maxlen: 24
104.207.36.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10248865 (0x9c62a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Validity
Not Before: May 21 13:40:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b4eec21e513a91a4da705de0941ac73fa2fe9ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b4:e5:e1:17:ff:e0:e0:94:85:21:64:66:0d:
e3:ec:51:a8:2a:a7:bb:95:1a:4a:07:8e:16:e1:7f:
27:9d:58:c0:d9:86:cd:74:79:fe:db:23:e2:c7:6d:
91:e3:c0:eb:64:cb:d7:67:91:a6:d7:0f:ed:58:ba:
00:f5:b6:04:0d:a3:98:37:65:6d:99:22:37:a1:f3:
96:60:9a:f3:80:82:95:4a:b7:3a:98:c5:49:15:ad:
77:f1:4c:c3:65:62:de:45:10:14:36:ae:e2:d8:2f:
ec:6a:ed:4a:c2:44:d6:5e:cd:c1:54:30:be:4f:3e:
a2:90:3a:68:4d:f2:f2:6f:33:5d:8e:9e:e6:dd:00:
e9:78:98:87:e9:be:75:d7:66:33:56:30:6c:b0:b8:
72:05:35:c7:77:b4:a6:01:d4:76:51:a0:63:6b:8b:
07:b3:0f:eb:49:c4:8e:22:00:96:d9:06:bd:e9:10:
36:c6:94:0f:e6:df:1f:a6:17:0b:17:4c:b0:85:e1:
9d:18:60:50:db:39:78:d8:92:de:14:be:5f:c6:b7:
0d:39:b3:76:e8:f8:d8:94:f8:5f:ec:f5:92:6d:c7:
a4:05:8e:f5:da:66:3d:c8:48:1b:0d:d3:22:38:a8:
93:9b:ba:b2:ad:fa:ed:b3:80:b5:7b:35:96:0b:0c:
44:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:4E:EC:21:E5:13:A9:1A:4D:A7:05:DE:09:41:AC:73:FA:2F:E9:FF
X509v3 Authority Key Identifier:
keyid:B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/m07sIeUTqRpNpwXeCUGsc_ov6f8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.207.36.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:96:dc:0f:d5:05:c7:8a:96:84:2a:60:0b:56:39:c9:03:39:
8e:52:95:57:9e:79:41:82:37:af:dc:1b:21:c1:10:2e:f7:a4:
b7:92:3c:4d:5d:49:20:bb:e2:37:91:ab:10:56:78:d4:f5:f7:
19:58:4e:c2:19:91:f7:46:6a:2b:0c:6c:a2:1b:2b:33:1b:87:
c9:62:cf:76:c0:32:60:d1:37:54:01:ef:89:51:65:cb:67:3f:
1a:72:1c:f8:d0:63:cf:44:ad:7f:bf:6e:2c:48:dd:ae:14:3b:
17:f6:47:f9:ed:9b:50:81:b0:ef:a6:bf:a1:53:2f:fe:92:de:
e1:b0:b8:3e:5a:fe:93:bc:4d:38:1f:e0:9d:f5:0f:c5:eb:6a:
0d:02:ff:32:69:94:b6:be:3d:0b:97:10:93:64:db:c0:d7:58:
89:c2:cc:26:c8:21:27:27:73:f6:d2:de:b7:a9:a5:fd:b1:23:
cf:63:42:75:09:b0:8c:cf:0a:22:c0:da:0b:d7:a3:e2:bb:30:
2d:78:91:65:31:ad:44:ce:9d:6d:04:3c:da:e0:9d:2d:f9:b5:
df:b4:51:82:06:88:37:7c:49:e4:b7:90:57:b2:42:23:d8:2d:
f0:dd:a2:60:33:30:d8:09:90:0e:be:69:6d:2d:0b:0a:2f:5c:
fc:ba:84:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:52 2023 by rpki-client on console.sobornost.net