Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/fb265f-bbb6-49d8-9b29-57b917ce4765/1/aKHqRFlc6QoeyE5lipSaaJP4FfU.roa
File: aKHqRFlc6QoeyE5lipSaaJP4FfU.roa (raw, json)
Hash identifier: aUegOLCKaMtMQZFYAX7k1FVzBhQ28CMjhueOU8oRTzQ=
Subject key identifier: 68:A1:EA:44:59:5C:E9:0A:1E:C8:4E:65:8A:94:9A:68:93:F8:15:F5
Certificate issuer: /CN=65da84dbb4c6a12d3c9b8e21b77304568a03db50
Certificate serial: 0D623D02
Authority key identifier: 65:DA:84:DB:B4:C6:A1:2D:3C:9B:8E:21:B7:73:04:56:8A:03:DB:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZdqE27TGoS08m44ht3MEVooD21A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/fb265f-bbb6-49d8-9b29-57b917ce4765/1/aKHqRFlc6QoeyE5lipSaaJP4FfU.roa
Signing time: Sat 01 Jan 2022 04:04:17 +0000
ROA not before: Sat 01 Jan 2022 04:04:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31251
IP address blocks: 79.143.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 224541954 (0xd623d02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65da84dbb4c6a12d3c9b8e21b77304568a03db50
Validity
Not Before: Jan 1 04:04:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68a1ea44595ce90a1ec84e658a949a6893f815f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:64:49:0f:18:f9:ba:82:6f:50:90:09:66:46:
ad:8a:ff:d9:2a:a8:25:08:52:db:5e:46:23:31:d7:
ac:d0:48:4c:f4:48:52:1b:0d:f9:db:3a:45:c4:37:
e2:26:a9:d6:c5:b2:1d:37:04:f2:84:1e:1b:14:5c:
c7:dc:e7:bc:cc:f9:29:b2:35:61:e7:4c:9a:9a:f8:
01:64:02:1b:99:9e:05:e3:bf:f7:79:20:bc:83:ed:
5a:95:8e:20:e0:db:de:53:df:a3:65:d5:77:6b:d0:
ba:54:56:5e:0f:9a:0b:92:5c:c1:ec:cb:3a:0a:07:
8e:4a:a5:17:f4:69:b8:82:d9:a7:71:07:a0:1b:67:
b9:f8:6b:f1:09:a4:60:1a:11:0f:b2:67:2d:dc:e3:
16:31:9b:11:c6:fc:f7:a8:0e:2b:ad:d9:76:5e:a1:
d7:71:56:88:0a:3e:68:98:bb:37:dd:06:42:85:e5:
77:80:dd:f7:c8:c1:7e:a9:1c:06:74:76:cf:c8:aa:
5b:77:36:b2:fb:38:6d:93:5b:b2:fb:2c:c6:e9:c4:
70:b6:ea:84:13:50:4f:4c:28:6c:3a:e4:55:ec:29:
ae:dc:50:21:71:14:dc:0a:fb:39:6f:88:17:fb:e5:
01:e5:fa:a8:6f:d7:18:8a:91:f1:c5:bd:e4:f6:53:
b3:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:A1:EA:44:59:5C:E9:0A:1E:C8:4E:65:8A:94:9A:68:93:F8:15:F5
X509v3 Authority Key Identifier:
keyid:65:DA:84:DB:B4:C6:A1:2D:3C:9B:8E:21:B7:73:04:56:8A:03:DB:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZdqE27TGoS08m44ht3MEVooD21A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/fb265f-bbb6-49d8-9b29-57b917ce4765/1/aKHqRFlc6QoeyE5lipSaaJP4FfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/fb265f-bbb6-49d8-9b29-57b917ce4765/1/ZdqE27TGoS08m44ht3MEVooD21A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.143.215.0/24
Signature Algorithm: sha256WithRSAEncryption
66:af:87:61:3f:f4:d5:99:82:d0:e7:84:ba:81:91:e2:fb:57:
e5:2c:ec:e1:f1:38:ad:50:46:b4:fe:14:ef:7d:89:bb:8f:f9:
bf:9e:4c:1b:03:c4:47:7e:01:df:4f:b2:73:20:00:67:c1:57:
c7:4a:ed:84:a7:62:87:76:65:e5:68:18:2b:1d:44:00:b9:3d:
94:21:32:20:e5:a6:01:26:fb:ca:d7:0f:73:3b:6b:89:e1:47:
9b:a9:ba:6c:21:ea:c5:c1:9b:ce:4f:98:68:6b:f9:bc:a9:61:
cb:37:95:7d:77:75:81:4a:3d:23:29:66:ea:a3:c1:4b:83:d0:
40:16:48:e3:85:34:a7:63:dc:1f:96:76:96:f1:ca:a4:b5:60:
10:c3:3b:c8:62:c3:57:73:19:2e:23:23:62:73:34:ce:87:2e:
2f:5a:76:01:6d:88:32:44:1a:35:99:7f:39:37:02:f4:21:c7:
a2:25:26:46:44:78:73:14:30:f5:6f:95:5c:8b:af:c5:d1:23:
0f:45:68:c8:55:f2:d7:19:55:03:0b:81:8d:09:06:a8:3a:b9:
e8:e4:68:e3:02:e7:68:c9:fa:d0:c1:70:3f:60:dd:30:fc:b9:
e3:8c:c0:e6:37:49:2e:5c:95:e3:e4:61:39:2a:e4:9e:3d:2b:
57:3a:28:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:20 2024 by rpki-client on console-ams.rpki-client.org