Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/qacEcyjkmnhWKTQQrntGH1Rkoos.roa
File: qacEcyjkmnhWKTQQrntGH1Rkoos.roa (raw, json)
Hash identifier: f2F+1bQyuJ7XB8MRlI5GE/V/xkAU4vtIJ51jNqHUwA4=
Subject key identifier: A9:A7:04:73:28:E4:9A:78:56:29:34:10:AE:7B:46:1F:54:64:A2:8B
Certificate issuer: /CN=baaa7b4c01e929c38923981ab51c9727a1f9f07e
Certificate serial: 309263
Authority key identifier: BA:AA:7B:4C:01:E9:29:C3:89:23:98:1A:B5:1C:97:27:A1:F9:F0:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqp7TAHpKcOJI5gatRyXJ6H58H4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/qacEcyjkmnhWKTQQrntGH1Rkoos.roa
Signing time: Sat 01 Jan 2022 01:54:37 +0000
ROA not before: Sat 01 Jan 2022 01:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54103
IP address blocks: 79.143.137.0/24 maxlen: 24
79.143.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183203 (0x309263)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaa7b4c01e929c38923981ab51c9727a1f9f07e
Validity
Not Before: Jan 1 01:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9a7047328e49a7856293410ae7b461f5464a28b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a9:c5:41:d7:e8:da:c9:d5:b3:77:c5:76:fc:
1a:c5:bd:c4:af:41:8d:af:1e:b5:7b:e0:4d:2a:59:
95:b3:49:94:e9:4c:fe:4a:7f:b8:ee:f6:d2:a7:54:
d7:9b:3c:b1:44:55:91:22:76:9e:35:15:ad:4b:62:
bb:b6:05:7c:00:13:3e:93:39:fd:74:40:c0:83:8c:
f0:3e:47:d9:40:b5:b9:44:e4:66:55:c3:38:ca:f1:
3e:cf:9b:e0:76:ec:35:66:0d:2e:f4:d3:50:2d:01:
6f:05:e9:50:ad:29:ad:51:af:0a:a9:f8:17:07:c9:
2c:92:2a:38:ab:d7:60:a6:42:9c:ec:5d:42:ac:44:
69:fd:ad:3f:1c:e5:a0:cc:bf:0d:65:70:78:fe:0b:
68:4f:92:01:80:cb:d9:0a:2a:1c:44:9f:44:a0:cc:
d5:98:bd:5c:0c:51:47:17:58:5b:91:44:db:da:be:
ea:fa:52:3d:69:bd:1d:05:ea:44:f2:5f:f0:6b:c3:
9f:48:ef:d9:ba:b4:44:5c:a1:d9:75:b9:55:71:ff:
89:a7:53:08:31:62:e1:a7:2e:60:aa:5c:1e:e7:32:
92:10:ca:88:db:47:85:51:19:ef:34:13:5e:7e:30:
51:35:d9:d8:d9:66:91:6d:42:90:25:1b:76:c6:ce:
22:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A7:04:73:28:E4:9A:78:56:29:34:10:AE:7B:46:1F:54:64:A2:8B
X509v3 Authority Key Identifier:
keyid:BA:AA:7B:4C:01:E9:29:C3:89:23:98:1A:B5:1C:97:27:A1:F9:F0:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqp7TAHpKcOJI5gatRyXJ6H58H4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/qacEcyjkmnhWKTQQrntGH1Rkoos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/uqp7TAHpKcOJI5gatRyXJ6H58H4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.143.137.0/24
79.143.139.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:36:44:66:a8:37:ba:82:46:64:d2:58:6c:64:2b:dc:ef:24:
c0:74:85:3e:66:fb:96:55:4b:61:c0:91:6b:94:c3:64:df:91:
b5:f7:69:d4:82:20:ad:18:1f:f2:78:60:2f:69:13:a4:28:37:
5e:e9:c2:e5:d1:62:89:2f:fe:34:d3:5d:55:42:19:eb:bc:d4:
6f:4d:d2:58:d3:68:cb:52:de:73:d4:00:40:00:19:c7:07:6d:
2e:17:ff:ea:90:44:ad:36:42:23:f9:3e:43:d9:08:52:25:7f:
1b:fc:3d:27:70:9e:7a:75:bf:77:04:1d:12:ab:36:51:2c:57:
d6:8b:cc:77:65:ed:a1:b7:e1:f3:39:dc:29:c3:3c:67:87:7d:
79:d7:c4:3e:66:57:e2:87:98:9a:a7:0e:52:7a:cd:39:ba:6d:
30:b7:28:db:19:10:78:ae:17:70:11:c6:48:7c:77:b5:f3:a5:
15:7e:81:bf:d8:c8:40:ba:26:e0:e8:72:88:3b:1f:f5:96:4b:
cd:59:36:d0:8c:a8:71:c4:7b:95:d8:5e:ca:df:78:eb:c7:fc:
fc:9c:d6:18:03:68:b7:85:40:81:e3:5e:7e:ec:dc:e8:44:b2:
44:0d:6d:b5:71:60:2d:3c:fb:d6:52:68:6c:d2:1c:21:51:d1:
e8:a7:0a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:31 2024 by rpki-client on console-ams.rpki-client.org