Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/s75Dc-pdcErwH6gBjFYt1Ej-OL4.roa
File: s75Dc-pdcErwH6gBjFYt1Ej-OL4.roa (raw, json)
Hash identifier: b5ZNFtTZiU0SchdxXMJQ/W7uYlaG2bRapwRiyW3n0Ak=
Subject key identifier: B3:BE:43:73:EA:5D:70:4A:F0:1F:A8:01:8C:56:2D:D4:48:FE:38:BE
Certificate issuer: /CN=ee8ba8824c5c8d207326a4a3ab893ebb8f5096ad
Certificate serial: 13E80F8F
Authority key identifier: EE:8B:A8:82:4C:5C:8D:20:73:26:A4:A3:AB:89:3E:BB:8F:50:96:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7ouogkxcjSBzJqSjq4k-u49Qlq0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/s75Dc-pdcErwH6gBjFYt1Ej-OL4.roa
Signing time: Sat 01 Jan 2022 05:00:11 +0000
ROA not before: Sat 01 Jan 2022 05:00:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43766
IP address blocks: 79.170.120.0/22 maxlen: 22
79.170.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 333975439 (0x13e80f8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee8ba8824c5c8d207326a4a3ab893ebb8f5096ad
Validity
Not Before: Jan 1 05:00:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3be4373ea5d704af01fa8018c562dd448fe38be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a2:bb:ef:6f:8e:4a:59:68:ab:ee:f6:b5:3c:
62:48:6c:a9:2b:c4:d4:ae:de:8c:1e:d1:bb:a5:47:
ce:df:51:61:e5:f3:4f:b0:51:94:8a:51:c1:bd:a4:
a7:d5:39:0f:3f:95:0e:e9:f9:3a:76:87:d6:5d:bb:
cf:9f:c9:3f:86:ec:ef:37:f2:77:8c:b2:d8:ab:b4:
16:1e:8b:9c:fd:06:b2:06:15:a7:fa:b8:45:1c:fd:
e8:c7:db:e6:29:9a:fb:f8:1b:49:17:88:d6:2e:2e:
24:a8:71:f4:24:b3:52:32:6a:0e:3f:7f:b3:f2:51:
2b:91:86:20:ac:c4:12:33:09:b1:0a:ca:2c:5c:12:
e0:ef:fe:b2:04:2b:3b:d6:6c:9f:9f:64:2b:7d:f1:
96:7f:ce:53:04:b9:d2:c3:d4:d6:76:63:9f:49:55:
01:5b:d1:0f:ee:54:31:1c:00:7c:d5:3a:4e:e1:a0:
7e:37:93:f6:e7:f6:31:e4:e4:85:b9:b3:16:07:45:
ed:2c:89:82:ca:96:fe:80:7b:83:0e:5e:8f:cf:e9:
8f:80:1d:09:cc:ea:1c:9f:26:10:be:5e:eb:c0:d6:
45:69:5c:d7:8d:cb:ea:31:44:67:7a:72:ce:3d:39:
1c:74:bb:1f:e6:9c:18:8d:90:17:3f:c7:63:2e:91:
41:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:BE:43:73:EA:5D:70:4A:F0:1F:A8:01:8C:56:2D:D4:48:FE:38:BE
X509v3 Authority Key Identifier:
keyid:EE:8B:A8:82:4C:5C:8D:20:73:26:A4:A3:AB:89:3E:BB:8F:50:96:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7ouogkxcjSBzJqSjq4k-u49Qlq0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/s75Dc-pdcErwH6gBjFYt1Ej-OL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/7ouogkxcjSBzJqSjq4k-u49Qlq0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.170.120.0/21
Signature Algorithm: sha256WithRSAEncryption
57:ab:2c:fd:56:3e:d7:4a:b2:00:b4:5d:00:97:7d:27:39:89:
aa:e0:0a:f2:b8:8c:45:c9:70:e2:d8:1f:da:ed:e6:d0:61:53:
34:49:a8:56:f1:20:fa:e9:bc:87:93:de:3a:42:73:b4:fe:a6:
3d:ef:5b:12:c6:6b:cd:0d:2e:1a:79:bb:76:ae:4b:f2:70:55:
7f:cc:2c:5a:e8:00:ba:f6:fe:02:97:d7:45:fb:42:e7:f3:03:
61:75:15:2b:f7:90:81:45:4e:6f:64:5f:23:6f:05:75:20:f2:
b8:34:56:b2:0d:9c:5e:a5:7a:01:ff:31:93:87:74:85:b1:d7:
55:28:54:e0:d6:d5:3b:15:94:f1:63:f2:8e:36:55:19:be:0e:
65:47:c1:4d:b5:92:3d:f7:28:d5:d0:45:ce:62:93:af:2f:3d:
7e:0b:6b:d1:b9:be:1b:fb:5d:a2:ea:85:65:5c:15:38:95:97:
87:fe:dc:d7:b8:ff:03:ac:2a:5e:34:d6:45:b4:46:ce:c0:db:
a8:71:82:23:c1:f5:d6:39:0f:95:b7:dd:23:5c:89:91:a0:c7:
df:5c:14:4a:76:cf:cf:94:c7:24:6c:4b:34:05:29:39:88:31:
1e:9b:ab:0e:75:91:c8:a5:7a:c7:3c:e2:f6:93:32:b7:73:58:
82:54:e3:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:24 2024 by rpki-client on console-ams.rpki-client.org