Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/Hs2KhSYDbmMfJDFvVnxQ6p-KBQ4.roa
File: Hs2KhSYDbmMfJDFvVnxQ6p-KBQ4.roa (raw, json)
Hash identifier: cVqlLHHr0bk9v3U1SEb3W40UI3El2ac4kfQhR9oIAG8=
Subject key identifier: 1E:CD:8A:85:26:03:6E:63:1F:24:31:6F:56:7C:50:EA:9F:8A:05:0E
Certificate issuer: /CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce
Certificate serial: 020998
Authority key identifier: 2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/Hs2KhSYDbmMfJDFvVnxQ6p-KBQ4.roa
Signing time: Tue 08 Feb 2022 12:27:27 +0000
ROA not before: Tue 08 Feb 2022 12:27:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210708
IP address blocks: 79.110.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133528 (0x20998)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce
Validity
Not Before: Feb 8 12:27:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ecd8a8526036e631f24316f567c50ea9f8a050e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:31:db:7d:66:2a:dd:e1:d0:6e:a3:05:3b:6b:
1c:92:4d:6b:23:31:85:20:73:91:10:fb:c8:14:5f:
62:41:58:b9:3d:25:a5:f1:89:00:58:ac:14:44:dd:
8c:7c:98:6e:84:3e:00:fd:15:e5:a0:55:8d:78:ec:
f5:ae:52:85:56:e4:a8:b0:bd:1d:d1:a3:9f:0e:7a:
7c:1f:50:87:f6:64:5a:14:d0:38:17:c5:47:ad:d7:
3f:68:ba:30:72:ae:20:81:a6:dd:a7:c8:32:42:aa:
bf:45:27:20:4e:18:80:e4:c8:2f:d6:d9:dc:15:92:
dc:ff:f3:a9:12:6d:9e:9f:b6:b4:12:38:6c:25:cc:
0d:5f:b8:de:52:03:44:ff:dd:3b:18:8c:2c:06:1d:
0d:15:cf:bf:23:cf:68:9c:83:0f:a9:d6:93:f7:25:
d6:2a:f0:de:f3:2d:98:a8:88:d9:d9:88:56:d8:1e:
dc:f8:87:22:f6:f0:a7:a2:5e:c6:22:13:76:ca:30:
9b:0a:7e:15:cf:cd:d7:1c:33:1c:e5:8d:f3:e4:12:
8b:cf:4a:09:fe:98:97:c1:80:7d:63:50:02:46:4a:
41:b2:58:17:dd:e2:a9:fb:1f:b1:9e:5a:94:23:eb:
05:b0:58:33:6d:9d:df:ad:1f:98:6e:b2:b6:5c:b9:
60:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:CD:8A:85:26:03:6E:63:1F:24:31:6F:56:7C:50:EA:9F:8A:05:0E
X509v3 Authority Key Identifier:
keyid:2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/Hs2KhSYDbmMfJDFvVnxQ6p-KBQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.233.0/24
Signature Algorithm: sha256WithRSAEncryption
59:b0:37:7b:22:8f:48:15:7b:13:9b:d8:36:82:eb:0a:6f:07:
d8:af:24:4e:fa:a8:38:c7:b0:f7:82:f7:f3:cb:20:a5:27:30:
25:42:cf:ff:c5:4e:73:72:e1:ad:f8:53:f7:31:0b:a0:4c:2c:
25:3d:10:c9:5b:8c:c3:5b:1f:1a:46:36:79:2a:1f:97:d1:32:
ab:96:12:cc:9f:19:ce:59:6e:01:8e:42:36:62:e2:a2:b7:12:
26:af:5a:59:b2:c6:f9:1c:6e:92:5c:58:1f:47:a4:f4:f8:53:
67:b2:43:13:90:bd:15:c4:86:32:f6:49:a8:e9:63:9a:5a:24:
df:02:8d:a6:07:02:1b:ee:1e:e1:a2:35:be:71:33:bc:35:0e:
d4:14:06:ec:32:e9:2f:19:7c:d4:a0:5e:2e:dc:2d:00:1e:cd:
aa:fc:82:1e:67:8e:33:ca:bc:68:ed:b4:1e:45:d0:48:3b:a5:
ee:82:ef:b3:c1:91:65:31:63:0c:fe:d7:16:0e:f5:86:00:34:
d4:e3:e1:51:fe:75:ad:13:8b:e7:5d:b4:5e:d3:c0:0e:98:70:
f2:4f:04:07:4b:a9:28:27:c0:15:b2:0d:5c:a2:68:66:8e:27:
c3:c2:dc:8e:14:54:e8:d3:ea:39:56:e6:af:1e:65:f1:72:95:
27:13:30:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:38 2024 by rpki-client on console-ams.rpki-client.org