Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/L48SZelh2fX8Vi4_ZqOi3QK6ZMI.roa
File: L48SZelh2fX8Vi4_ZqOi3QK6ZMI.roa (raw, json)
Hash identifier: +Xm5ovkxUZqkts5s1Suh2zNEhHML5/51/Uqg2SSWIGc=
Subject key identifier: 2F:8F:12:65:E9:61:D9:F5:FC:56:2E:3F:66:A3:A2:DD:02:BA:64:C2
Certificate issuer: /CN=ab54fe831b6a719f42e6c8486fd03b550be761fb
Certificate serial: 11EE99DE
Authority key identifier: AB:54:FE:83:1B:6A:71:9F:42:E6:C8:48:6F:D0:3B:55:0B:E7:61:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q1T-gxtqcZ9C5shIb9A7VQvnYfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/L48SZelh2fX8Vi4_ZqOi3QK6ZMI.roa
Signing time: Tue 26 Apr 2022 11:17:26 +0000
ROA not before: Tue 26 Apr 2022 11:17:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212462
IP address blocks: 109.234.80.0/24 maxlen: 24
185.33.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 300849630 (0x11ee99de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab54fe831b6a719f42e6c8486fd03b550be761fb
Validity
Not Before: Apr 26 11:17:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f8f1265e961d9f5fc562e3f66a3a2dd02ba64c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:de:da:5d:e0:e4:f0:c5:71:7d:c4:b9:46:d8:
bc:7a:15:54:63:15:19:25:6a:03:7e:ad:87:d6:24:
7b:d4:e5:fa:2f:f9:8a:ef:9f:fb:ac:3e:59:a7:12:
48:38:1d:07:fa:f7:45:16:6f:90:a6:07:a3:eb:f8:
5a:25:c8:05:18:ed:33:87:86:a4:66:30:ac:08:28:
6c:89:ae:c1:c5:2a:47:41:1f:1f:8b:fd:1f:9f:ce:
38:75:19:c3:5b:83:5a:01:4b:82:0c:6d:79:b4:2c:
ab:1b:e1:06:8f:81:91:3e:93:dc:63:8d:14:71:7c:
13:3a:f7:4b:d5:08:e7:bd:dd:3b:61:55:0d:c5:9d:
0f:66:cd:7c:b0:04:47:12:65:33:30:77:8b:37:99:
9e:6a:e1:c9:df:b5:a1:18:b6:04:ee:eb:12:6c:24:
2b:e0:45:f5:13:08:0f:dd:7b:dd:42:58:f8:7f:d5:
e1:2c:cb:ea:1b:6b:eb:00:c5:52:be:9c:c2:fb:84:
7e:60:ee:10:ab:55:e0:3a:33:94:a0:e7:ad:12:35:
36:7e:f7:64:62:6b:86:09:f7:92:b5:b5:62:f2:04:
11:2e:ac:30:12:a8:fa:39:2e:82:d6:18:84:cd:d1:
2f:bc:39:b2:a6:10:56:3f:cb:8e:26:50:d3:ea:d7:
06:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:8F:12:65:E9:61:D9:F5:FC:56:2E:3F:66:A3:A2:DD:02:BA:64:C2
X509v3 Authority Key Identifier:
keyid:AB:54:FE:83:1B:6A:71:9F:42:E6:C8:48:6F:D0:3B:55:0B:E7:61:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q1T-gxtqcZ9C5shIb9A7VQvnYfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/L48SZelh2fX8Vi4_ZqOi3QK6ZMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/q1T-gxtqcZ9C5shIb9A7VQvnYfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.80.0/24
185.33.67.0/24
Signature Algorithm: sha256WithRSAEncryption
38:a8:cd:48:10:31:26:a7:62:b2:9b:ae:94:1f:10:0a:e6:a7:
79:f2:58:6c:d0:da:e3:db:c7:d3:1d:49:0a:25:96:13:e8:2a:
2a:e4:6a:8d:7d:65:ee:35:b2:6f:34:51:b4:60:05:5c:27:0a:
17:1c:61:96:e9:eb:5c:ee:74:ff:20:cd:b7:fe:cb:9a:5e:94:
5f:85:55:f6:f3:d5:df:f6:b4:73:43:32:48:51:72:d2:2f:48:
45:61:50:ef:12:31:b8:84:94:d3:f9:01:2e:ea:06:cd:6f:9c:
0c:e4:f0:9a:56:33:9b:5e:7e:36:17:26:37:14:7d:4c:d5:ad:
e5:ca:f1:da:5e:5a:e0:c4:53:4b:d8:88:2e:ea:0f:4e:a6:84:
29:d6:ba:1c:4a:9c:62:b4:ef:38:19:e2:49:99:0f:fa:9c:d6:
0c:f8:25:9c:59:ea:b4:70:1e:10:9e:db:7b:cd:e8:44:17:c6:
5c:5f:65:eb:07:33:78:9f:89:c7:3e:d4:68:df:a0:20:93:3f:
8f:26:b4:69:e8:49:13:fe:a3:75:ee:d5:88:bb:67:08:2f:1b:
27:30:d1:e4:cf:5e:d4:18:c9:71:88:97:a2:cb:68:72:8e:41:
79:84:c4:c6:11:8b:0a:d2:b1:5a:39:80:2c:ec:65:55:94:53:
8d:61:33:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:35 2023 by rpki-client on console.sobornost.net