Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/ca6f69-6fec-4753-ad77-eb6f9df045b2/1/1KTeJLbR7zAOuqXJXyl9XfmQexo.roa
File: 1KTeJLbR7zAOuqXJXyl9XfmQexo.roa (raw, json)
Hash identifier: wm7JIFXEeMNghGyXkwDIlZKFV98Nxr7fc3ePhBt7t40=
Subject key identifier: D4:A4:DE:24:B6:D1:EF:30:0E:BA:A5:C9:5F:29:7D:5D:F9:90:7B:1A
Certificate issuer: /CN=75a5a9e8ef27e3027293ef84fb8f8d30fab6e6d6
Certificate serial: 0A53DA07
Authority key identifier: 75:A5:A9:E8:EF:27:E3:02:72:93:EF:84:FB:8F:8D:30:FA:B6:E6:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/daWp6O8n4wJyk--E-4-NMPq25tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/ca6f69-6fec-4753-ad77-eb6f9df045b2/1/1KTeJLbR7zAOuqXJXyl9XfmQexo.roa
Signing time: Sat 01 Jan 2022 03:55:00 +0000
ROA not before: Sat 01 Jan 2022 03:55:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64426
IP address blocks: 109.206.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173267463 (0xa53da07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75a5a9e8ef27e3027293ef84fb8f8d30fab6e6d6
Validity
Not Before: Jan 1 03:55:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4a4de24b6d1ef300ebaa5c95f297d5df9907b1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6e:4e:f4:c6:bf:96:13:a4:b1:bb:39:a3:63:
82:97:02:35:bc:7b:76:1f:4d:4b:7f:e4:f6:f9:a8:
1d:5b:8c:54:48:ba:85:9b:26:8f:e5:99:97:9f:35:
de:92:96:83:9a:3c:19:a0:7d:5f:bf:7d:f6:b8:8b:
90:da:f8:bb:cb:eb:6a:12:51:48:80:5c:73:81:6e:
c9:16:e4:1b:09:bd:cb:c2:0c:46:3a:50:c4:f5:89:
f5:e3:63:77:33:0b:48:37:0c:ac:dd:3e:02:73:ec:
4c:a5:b5:a4:22:79:26:20:21:ba:36:40:b5:52:60:
86:8a:8e:cf:e0:22:67:0a:56:f8:50:d5:55:51:de:
c7:6b:ae:65:ad:be:fd:64:f4:df:1d:0c:bd:c3:f3:
54:60:a8:c0:0b:72:b4:66:24:52:72:f0:d7:94:77:
b0:fb:b3:57:72:d8:f1:d1:52:4b:fd:d5:da:c9:4f:
aa:9d:e3:54:01:38:cf:fe:61:81:d9:63:31:d0:25:
27:24:72:0e:ae:ca:f7:84:9f:1d:e8:85:7c:40:3d:
c8:a2:e9:41:83:e2:67:93:52:2f:37:68:0d:c6:6d:
b5:ac:0f:8d:6b:9f:3f:b7:d1:56:ef:1d:d0:83:fb:
2c:fe:12:d4:14:c8:5a:08:92:0c:7a:8c:85:a7:e2:
88:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A4:DE:24:B6:D1:EF:30:0E:BA:A5:C9:5F:29:7D:5D:F9:90:7B:1A
X509v3 Authority Key Identifier:
keyid:75:A5:A9:E8:EF:27:E3:02:72:93:EF:84:FB:8F:8D:30:FA:B6:E6:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/daWp6O8n4wJyk--E-4-NMPq25tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ca6f69-6fec-4753-ad77-eb6f9df045b2/1/1KTeJLbR7zAOuqXJXyl9XfmQexo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ca6f69-6fec-4753-ad77-eb6f9df045b2/1/daWp6O8n4wJyk--E-4-NMPq25tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.206.232.0/22
Signature Algorithm: sha256WithRSAEncryption
22:a1:db:8d:d1:fb:7a:ee:dd:20:37:f0:42:f8:a5:d2:49:27:
1b:7b:27:58:78:91:15:03:40:17:3c:19:d8:57:90:16:b4:c0:
02:cf:b9:26:88:91:09:92:9c:22:2e:e8:f8:95:7a:c1:06:61:
3c:33:8d:5a:eb:74:60:bb:35:f9:b2:b9:98:46:bd:72:34:c8:
53:96:41:85:e7:ab:f0:87:0e:44:96:9c:5b:5d:3c:fa:ea:d7:
bd:c0:8c:31:e6:40:72:b2:57:08:e6:8c:8a:31:01:a2:71:d6:
2d:7a:ec:d7:21:41:d6:f1:ab:bc:8d:5b:ec:e5:7d:1d:32:aa:
66:3e:d0:e9:21:38:a8:a6:d3:3b:3c:aa:2a:9f:1b:5d:ed:41:
3e:aa:54:54:c4:39:bc:b5:e6:2a:db:0a:21:2c:30:58:2a:b4:
7c:7d:da:9d:45:96:42:7c:a5:05:55:3d:e1:12:27:34:30:0e:
4f:70:11:7c:1d:be:a0:a6:d5:e0:82:51:3a:13:8f:06:61:bf:
3a:a8:d9:6b:cd:92:49:4a:d7:9f:75:92:64:aa:3b:be:ef:b3:
7e:01:ed:09:01:56:08:69:a0:89:81:8e:4a:08:00:9c:12:c9:
b6:16:ba:d4:8a:ae:ba:f7:a6:15:7d:06:98:23:51:90:b9:45:
79:b3:7c:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:57 2023 by rpki-client on console.sobornost.net