Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/fb265f-bbb6-49d8-9b29-57b917ce4765/1/EgfZJ3J5aWJEXj9oHHLbXPo38kI.roa
File: EgfZJ3J5aWJEXj9oHHLbXPo38kI.roa (raw, json)
Hash identifier: 56Lew5o67X4TrF2p2xFu1nRzm2a1+R7yam8kUzrwZDo=
Subject key identifier: 12:07:D9:27:72:79:69:62:44:5E:3F:68:1C:72:DB:5C:FA:37:F2:42
Certificate issuer: /CN=65da84dbb4c6a12d3c9b8e21b77304568a03db50
Certificate serial: 0D62689C
Authority key identifier: 65:DA:84:DB:B4:C6:A1:2D:3C:9B:8E:21:B7:73:04:56:8A:03:DB:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZdqE27TGoS08m44ht3MEVooD21A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/fb265f-bbb6-49d8-9b29-57b917ce4765/1/EgfZJ3J5aWJEXj9oHHLbXPo38kI.roa
Signing time: Sat 01 Jan 2022 04:04:18 +0000
ROA not before: Sat 01 Jan 2022 04:04:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44858
IP address blocks: 79.143.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 224553116 (0xd62689c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65da84dbb4c6a12d3c9b8e21b77304568a03db50
Validity
Not Before: Jan 1 04:04:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1207d92772796962445e3f681c72db5cfa37f242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:22:df:10:44:7f:9f:1e:38:f0:82:03:a3:be:
0d:a3:1b:5b:5c:3c:d4:10:bc:6b:df:24:18:c6:82:
5a:4a:0d:2d:31:46:61:74:31:36:b3:50:f8:86:91:
e5:e8:49:d6:b8:3b:7e:5d:86:9b:fa:1d:8b:20:26:
b0:84:e8:35:f1:ee:20:a9:d8:2f:42:98:fc:bc:8b:
39:41:be:ca:66:58:ec:22:26:95:61:8a:d3:4a:85:
96:ae:f6:71:7d:f0:b0:4d:8a:9d:07:cc:fc:6b:c9:
22:9d:a8:fa:32:af:cf:24:68:74:f8:4c:cf:ae:7d:
b7:28:39:bb:c9:aa:a4:c5:08:fd:3a:56:9f:ef:36:
cf:ae:9d:ef:b5:1d:8e:4a:c2:20:d8:59:7d:09:06:
54:b2:e4:b5:86:36:db:cd:be:f9:d6:c7:ec:da:f4:
7f:80:d7:17:ba:15:bf:88:36:3d:9b:c4:c4:97:67:
bc:02:4a:6c:9b:c5:57:3c:01:e8:bd:28:ce:61:24:
3d:e4:97:fb:ee:7d:f1:c7:7e:69:f6:0e:43:75:89:
55:5d:18:f2:2d:43:fb:14:89:c6:08:ad:99:5c:7d:
98:f0:da:e5:d5:69:1c:a7:f3:a2:6c:5e:c7:c0:fb:
3e:f6:61:e7:ae:a3:4c:6d:ba:41:3c:b6:16:88:af:
2a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:07:D9:27:72:79:69:62:44:5E:3F:68:1C:72:DB:5C:FA:37:F2:42
X509v3 Authority Key Identifier:
keyid:65:DA:84:DB:B4:C6:A1:2D:3C:9B:8E:21:B7:73:04:56:8A:03:DB:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZdqE27TGoS08m44ht3MEVooD21A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/fb265f-bbb6-49d8-9b29-57b917ce4765/1/EgfZJ3J5aWJEXj9oHHLbXPo38kI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/fb265f-bbb6-49d8-9b29-57b917ce4765/1/ZdqE27TGoS08m44ht3MEVooD21A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.143.215.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:12:80:ec:41:31:d0:e1:91:5f:ad:8f:36:98:7f:6c:ee:24:
8c:07:60:a7:ed:38:cf:fc:82:1b:cf:47:ff:b2:68:42:a1:2d:
29:1c:b8:c5:8a:ce:14:d6:6d:2a:cb:03:31:82:c0:60:30:0a:
51:43:01:ff:dd:ab:49:24:e0:0c:09:bb:d9:7a:81:70:8c:db:
ef:70:0a:99:f9:23:4d:3f:59:b7:c5:80:87:11:1c:30:0c:64:
1d:2f:b5:d3:b7:0f:df:06:90:d4:27:f4:3b:c4:4e:53:ea:d5:
03:7c:ee:fa:1d:70:23:83:22:0c:94:b3:27:58:88:8b:c7:32:
bf:71:18:3a:d5:8c:c5:a8:e0:f6:fe:e9:9c:4f:f8:10:54:42:
ad:75:55:a6:e9:7f:bb:b4:8a:d3:4a:48:a9:76:03:a4:47:fe:
d4:1e:43:99:b9:87:9c:f8:60:16:98:1a:f5:e2:6f:b2:9a:b6:
f3:ec:e8:18:05:1e:96:72:4b:89:f7:af:97:1c:9f:2a:a7:f7:
27:8f:a5:81:38:73:02:27:f8:03:a9:90:0d:87:d7:60:d6:e7:
fd:59:2a:76:e0:23:89:67:e1:c6:6e:06:e0:77:0e:a7:41:6d:
5d:82:bb:22:3f:55:4e:ab:60:1f:2e:93:bf:2b:12:37:ba:b6:
a4:71:99:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:20 2024 by rpki-client on console-ams.rpki-client.org