Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/75a920-2a3a-4129-800e-af2ec5d8dc3c/1/pE79Shqo07JK37VSAHnf4lyaMcg.roa
File: pE79Shqo07JK37VSAHnf4lyaMcg.roa (raw, json)
Hash identifier: RNYNQ+4AMOaI1vNU9HokdHVmC5YDfPDrVUHvHxvCt0I=
Subject key identifier: A4:4E:FD:4A:1A:A8:D3:B2:4A:DF:B5:52:00:79:DF:E2:5C:9A:31:C8
Certificate issuer: /CN=97f4674e8236bddc3d2327a02b0abfba79a5483c
Certificate serial: 11878398
Authority key identifier: 97:F4:67:4E:82:36:BD:DC:3D:23:27:A0:2B:0A:BF:BA:79:A5:48:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_RnToI2vdw9IyegKwq_unmlSDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/75a920-2a3a-4129-800e-af2ec5d8dc3c/1/pE79Shqo07JK37VSAHnf4lyaMcg.roa
Signing time: Sat 01 Jan 2022 09:56:42 +0000
ROA not before: Sat 01 Jan 2022 09:56:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48618
IP address blocks: 91.209.29.0/24 maxlen: 24
185.55.176.0/22 maxlen: 22
2a04:d500::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 294093720 (0x11878398)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97f4674e8236bddc3d2327a02b0abfba79a5483c
Validity
Not Before: Jan 1 09:56:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a44efd4a1aa8d3b24adfb5520079dfe25c9a31c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:dc:f2:3a:ce:91:39:18:57:f1:dd:77:58:33:
57:58:00:f5:e1:d9:39:65:aa:68:9d:c0:22:ea:81:
1a:64:22:1e:0a:e2:86:76:7f:e2:e5:47:45:b4:1c:
1f:fb:57:01:e6:bd:d2:f1:2e:f7:83:7f:ab:c1:5c:
0d:33:6f:2d:02:28:fa:c3:88:ba:e5:03:16:bb:63:
6a:3a:50:a2:b6:d6:c6:01:e2:f3:6e:2a:78:49:0e:
a5:8e:17:f8:5a:4d:12:f7:2a:bf:6a:c3:5d:1d:ba:
eb:90:99:59:b3:e0:82:c9:a2:1b:19:39:df:2b:b1:
76:0d:3e:d0:dc:ea:2b:a5:30:00:f1:64:c6:a2:92:
50:38:62:f6:30:ec:a9:89:8a:89:10:dd:48:7a:d3:
44:62:3b:7a:e5:85:83:a3:d4:f9:b0:bf:5f:ce:86:
5c:ff:5e:b0:41:a3:75:2d:c9:31:ad:a2:21:d3:62:
ef:90:40:09:ae:4d:bf:64:10:5f:6a:ea:4e:f7:99:
b5:97:c9:6f:d8:bb:b3:2d:8d:d4:93:35:be:3b:b6:
2a:a6:96:ff:49:08:0a:0b:fc:69:55:53:a7:d6:70:
c7:15:84:96:60:2c:b1:b9:3d:f9:4d:b8:2a:cf:6b:
72:42:d3:bf:38:a1:0d:2f:87:43:f4:61:33:0c:43:
d9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:4E:FD:4A:1A:A8:D3:B2:4A:DF:B5:52:00:79:DF:E2:5C:9A:31:C8
X509v3 Authority Key Identifier:
keyid:97:F4:67:4E:82:36:BD:DC:3D:23:27:A0:2B:0A:BF:BA:79:A5:48:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_RnToI2vdw9IyegKwq_unmlSDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/75a920-2a3a-4129-800e-af2ec5d8dc3c/1/pE79Shqo07JK37VSAHnf4lyaMcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/75a920-2a3a-4129-800e-af2ec5d8dc3c/1/l_RnToI2vdw9IyegKwq_unmlSDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.29.0/24
185.55.176.0/22
IPv6:
2a04:d500::/29
Signature Algorithm: sha256WithRSAEncryption
4b:e4:07:be:48:78:7b:a1:17:2e:c3:af:9a:73:77:37:bd:02:
6f:a4:d6:a8:d2:1c:bb:1e:72:e1:18:e5:94:08:3b:44:19:6e:
4c:0b:b3:d8:79:78:a1:f5:c8:40:b0:ea:14:27:f6:4e:db:50:
dd:3c:8a:17:7c:de:c8:84:21:d1:39:d3:dc:01:ae:26:43:91:
65:de:35:cb:7f:e3:49:40:f8:98:16:45:da:ce:dd:04:9a:51:
93:dc:1b:63:f1:ea:26:30:86:3c:3c:a2:1d:64:32:38:ef:ed:
7d:de:60:b4:85:9a:74:e2:d3:46:08:ae:f5:1e:02:7f:86:cc:
fa:f5:29:4c:0c:13:fb:4f:07:45:09:06:70:1d:a4:fd:ca:a3:
03:81:5d:56:82:cf:45:c5:1b:7e:4e:77:f0:d1:c7:6a:3b:48:
5a:28:37:94:cf:55:06:eb:35:3b:dd:6b:df:5e:c7:07:41:7d:
f7:43:48:8e:b3:fa:fe:90:06:91:19:8f:62:9f:85:bc:f8:1b:
1b:20:f0:44:dd:54:f0:c4:f4:a5:47:9e:ae:eb:a3:aa:7a:41:
b9:8f:7a:1c:5e:80:c1:f2:bf:f5:df:e8:48:26:18:84:d7:61:
b6:75:28:fe:93:c5:46:c1:27:e5:e5:91:76:af:e4:82:e1:90:
b2:bb:7a:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:38 2024 by rpki-client on console-ams.rpki-client.org