Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/032276-25dc-4c30-8a7b-95a33e12a3ad/1/eCIMlEg_6r2dOA8ShQ8mibrSVKQ.roa
File: eCIMlEg_6r2dOA8ShQ8mibrSVKQ.roa (raw, json)
Hash identifier: Zg1ipXaDyux8+l3JN7DwiWm8sBEWS+YOGac7GXWzKoE=
Subject key identifier: 78:22:0C:94:48:3F:EA:BD:9D:38:0F:12:85:0F:26:89:BA:D2:54:A4
Certificate issuer: /CN=2841262acd62c90e68081a6f777375df2c3713c2
Certificate serial: 3844C8B4
Authority key identifier: 28:41:26:2A:CD:62:C9:0E:68:08:1A:6F:77:73:75:DF:2C:37:13:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KEEmKs1iyQ5oCBpvd3N13yw3E8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/032276-25dc-4c30-8a7b-95a33e12a3ad/1/eCIMlEg_6r2dOA8ShQ8mibrSVKQ.roa
Signing time: Sat 01 Jan 2022 03:59:15 +0000
ROA not before: Sat 01 Jan 2022 03:59:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39834
IP address blocks: 79.173.0.0/18 maxlen: 18
2a02:f740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 944031924 (0x3844c8b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2841262acd62c90e68081a6f777375df2c3713c2
Validity
Not Before: Jan 1 03:59:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78220c94483feabd9d380f12850f2689bad254a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:57:d5:41:76:81:b0:53:6e:8b:f5:97:36:2f:
e4:03:bb:79:51:d6:6e:72:3e:b3:d5:97:02:57:00:
e6:50:b3:44:3b:8b:e3:b8:4e:dd:ec:44:a9:ea:76:
43:ba:e7:9d:af:b4:29:8e:62:98:b7:f8:c3:c8:bc:
fd:2d:0c:2d:23:d2:33:e6:48:70:07:82:bb:03:1b:
0b:76:8c:3e:d8:5e:5f:7b:86:4a:e9:cd:49:64:62:
3e:c1:ab:a7:91:6a:84:e4:fa:db:bf:1c:f5:f4:e1:
b6:4c:a5:39:c0:cd:1b:ed:d5:d1:16:15:10:fd:4b:
e2:ba:6c:80:be:e1:42:66:7c:6e:87:d5:89:df:28:
80:cc:49:4c:a9:1a:be:0a:d8:3a:5a:fc:c7:68:2d:
e2:b7:ae:ec:20:84:a9:89:34:57:6a:db:e4:9b:9a:
dc:26:b7:64:fe:9f:3f:5f:fb:8d:f4:81:b6:10:67:
af:8a:b7:5b:93:ca:c2:82:4e:65:bb:b1:93:86:f4:
6f:84:7e:53:eb:db:3d:c6:d7:80:78:21:74:8a:c1:
c1:d9:80:fe:75:45:eb:ab:f8:5c:db:ae:5a:a1:74:
11:48:ad:f1:57:bc:08:62:3c:9f:10:22:94:a7:54:
da:9f:cd:25:8d:34:e6:b4:3a:e2:5d:a5:7c:6b:b4:
7a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:22:0C:94:48:3F:EA:BD:9D:38:0F:12:85:0F:26:89:BA:D2:54:A4
X509v3 Authority Key Identifier:
keyid:28:41:26:2A:CD:62:C9:0E:68:08:1A:6F:77:73:75:DF:2C:37:13:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KEEmKs1iyQ5oCBpvd3N13yw3E8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/032276-25dc-4c30-8a7b-95a33e12a3ad/1/eCIMlEg_6r2dOA8ShQ8mibrSVKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/032276-25dc-4c30-8a7b-95a33e12a3ad/1/KEEmKs1iyQ5oCBpvd3N13yw3E8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.173.0.0/18
IPv6:
2a02:f740::/29
Signature Algorithm: sha256WithRSAEncryption
4e:46:e0:36:07:6a:59:d4:cd:6f:f1:32:47:62:b3:01:8c:9f:
ee:ed:75:83:68:89:db:95:85:e7:8e:a1:5c:4c:64:d8:3c:cc:
78:3b:75:bb:4b:ef:66:45:ca:5b:9a:33:3d:66:8d:bd:39:df:
0e:28:d6:6f:5f:c5:da:2d:c2:d4:b4:57:98:f6:53:5f:d2:84:
d2:00:7d:b2:ab:b8:a7:68:b0:e9:5c:0f:07:1a:f6:8d:a9:28:
a7:7e:19:af:d4:fd:1d:75:57:57:5c:ba:36:31:7c:7e:c9:62:
e1:d7:ac:c3:22:5b:80:3c:44:c4:67:78:ce:1b:72:69:a2:50:
e5:8e:aa:bf:07:d7:a9:df:02:3c:94:f2:8d:4a:12:73:29:da:
fa:33:aa:74:6f:8b:4e:1c:e3:e5:87:72:5c:72:0f:0b:c8:e9:
3c:2c:3b:ed:3a:2e:47:90:6f:bc:90:01:77:ae:50:3d:ad:b0:
56:7d:5e:6f:73:63:87:4c:6c:45:16:b6:84:63:7b:f9:8d:ad:
ed:75:20:fc:b4:07:9b:ff:ea:2a:ce:25:0f:ec:02:aa:ed:31:
c5:a2:b8:37:20:1c:5a:7d:cb:df:ad:3d:e9:74:32:06:01:fa:
96:a3:0f:a6:ad:26:84:1e:7d:78:a8:68:f0:5c:da:37:bd:03:
be:35:e0:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:47 2025 by rpki-client