Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/cRMmYFEV1dtXXbS_I21Bl-_p5Xk.roa
File: cRMmYFEV1dtXXbS_I21Bl-_p5Xk.roa (raw, json)
Hash identifier: kah1zBTxtaU2sXYcQB2VslTozLrT8CM3pzvp6lB5+tU=
Subject key identifier: 71:13:26:60:51:15:D5:DB:57:5D:B4:BF:23:6D:41:97:EF:E9:E5:79
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0182C60FE7B7A3653917166D6179859DD312
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/cRMmYFEV1dtXXbS_I21Bl-_p5Xk.roa
Signing time: Mon 22 Aug 2022 14:58:27 +0000
ROA not before: Mon 22 Aug 2022 14:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 79.110.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c6:0f:e7:b7:a3:65:39:17:16:6d:61:79:85:9d:d3:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 22 14:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=711326605115d5db575db4bf236d4197efe9e579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:37:f1:8c:f7:44:3a:74:03:18:fa:16:31:a6:
19:02:cb:fc:78:f5:57:80:26:1d:03:15:37:2c:e6:
f8:00:54:ef:ee:96:4b:4d:8e:c5:44:71:c0:5c:f4:
70:82:4e:f6:4e:8e:55:a8:51:d1:30:d4:3d:91:9b:
c6:a4:b6:dd:10:30:31:12:1d:3e:9b:d2:39:0a:75:
94:71:f4:73:d8:78:5b:ff:3b:a8:11:b1:8f:be:42:
64:82:f5:11:5c:22:f2:a8:23:ed:7b:f4:13:47:5f:
99:38:fd:66:ab:49:90:16:b5:9b:3b:41:17:97:a1:
07:5b:77:fd:35:20:c7:a2:46:70:ce:77:f7:4d:94:
c1:2d:55:f3:df:ab:b0:ea:88:5f:1a:0b:98:51:3f:
0e:81:60:3f:be:62:45:a6:a0:3d:33:dc:00:80:5d:
ff:22:17:2d:9f:7f:09:0e:c7:ec:b3:2e:42:96:0d:
37:6d:62:0a:e5:21:ef:83:7d:38:1f:02:cf:6d:ba:
67:35:78:9b:9e:fa:fd:39:a4:02:03:9d:47:79:d4:
2e:f4:4b:ba:e7:f4:5d:f1:da:24:4e:24:49:59:c8:
76:cf:0f:65:a7:47:e2:5b:63:d8:26:91:34:43:7f:
b8:2c:b5:08:51:ae:71:29:6a:9d:69:df:00:19:a3:
e4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:13:26:60:51:15:D5:DB:57:5D:B4:BF:23:6D:41:97:EF:E9:E5:79
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/cRMmYFEV1dtXXbS_I21Bl-_p5Xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.50.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:67:8b:90:91:79:1e:8a:3c:75:61:dc:c3:5f:35:76:0e:b0:
a6:74:80:0e:c8:e7:99:64:16:0a:11:8e:b3:83:7c:6d:c6:5e:
03:ab:89:47:27:14:17:8a:cd:b9:20:28:de:ad:01:6f:4c:72:
ed:17:cc:07:71:ca:c0:42:11:cb:6c:64:ea:7b:0a:34:09:e8:
28:10:06:9e:56:69:78:e0:81:0c:5b:66:17:fc:81:2b:36:47:
e0:13:59:5b:0b:f7:06:cf:42:1c:b5:b5:55:08:7e:05:46:ab:
c2:7b:5d:2d:5c:49:2f:27:4e:77:3b:6f:ba:d0:b3:d2:f7:19:
6a:a2:27:70:a9:9b:f8:71:2a:8e:b4:37:b9:75:da:50:bc:98:
2a:37:34:41:bf:41:02:19:30:2a:85:62:dc:6b:a0:4b:c8:08:
1e:fa:cd:47:99:39:cf:2f:d8:5e:64:bc:da:82:1d:3d:54:e5:
1e:40:f9:13:bc:34:a4:56:33:08:4e:a8:3b:16:dc:33:02:ee:
4f:24:9c:77:67:fc:eb:b3:cd:fe:cb:60:c7:7e:cd:44:9a:46:
ec:1d:09:0b:3f:06:8e:dc:a9:22:06:98:a1:90:f9:c1:f4:b7:
b8:6d:33:f6:c7:44:e7:7f:9d:1e:c5:19:3d:0e:e7:47:10:57:
13:46:be:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:39 2023 by rpki-client on console-ams.rpki-client.org