Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/7fac44-610f-485c-ae11-18ea1d5fef2d/1/49rsOVlyQ1SBecrxsgp1ORAvyvo.roa
File: 49rsOVlyQ1SBecrxsgp1ORAvyvo.roa (raw, json)
Hash identifier: wSIGRDhOKbZ33J5tA2njqK5DXa9phLGQwDrEWij/Ieg=
Subject key identifier: E3:DA:EC:39:59:72:43:54:81:79:CA:F1:B2:0A:75:39:10:2F:CA:FA
Certificate issuer: /CN=d8ba20120ec6dc80fd351a533d2c85ca0d983299
Certificate serial: 02038D8C
Authority key identifier: D8:BA:20:12:0E:C6:DC:80:FD:35:1A:53:3D:2C:85:CA:0D:98:32:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2LogEg7G3ID9NRpTPSyFyg2YMpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/7fac44-610f-485c-ae11-18ea1d5fef2d/1/49rsOVlyQ1SBecrxsgp1ORAvyvo.roa
Signing time: Sat 01 Jan 2022 12:05:37 +0000
ROA not before: Sat 01 Jan 2022 12:05:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44210
IP address blocks: 185.79.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33787276 (0x2038d8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8ba20120ec6dc80fd351a533d2c85ca0d983299
Validity
Not Before: Jan 1 12:05:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3daec39597243548179caf1b20a7539102fcafa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8b:b7:ca:cb:45:5a:2e:df:77:ee:98:04:34:
31:16:6b:00:61:7b:3f:24:ad:2a:60:5d:49:a4:70:
5f:ef:c2:4b:f8:54:0a:aa:b3:23:7d:df:98:db:66:
06:f2:76:7e:0d:af:b5:9b:c5:08:6a:1f:0d:f9:12:
dc:91:02:1b:fb:e6:61:86:81:41:31:77:b5:9f:1a:
df:f2:4d:44:0b:3e:65:6d:f6:22:62:02:c1:d2:31:
2e:f7:d8:35:87:1e:0c:aa:d4:37:43:54:67:48:8b:
f4:ab:47:d1:eb:a7:5d:98:dc:c4:1c:a6:b5:9c:6b:
be:3a:e0:0a:e7:59:e8:92:3b:c9:bf:c1:79:4b:0a:
4a:75:82:a2:6b:c5:99:c2:68:a0:f8:2a:a9:7d:e4:
88:00:8c:c1:bf:ff:64:ef:8a:4a:e4:9c:ab:d4:e6:
d4:a6:a6:aa:5f:fe:76:94:aa:59:60:bc:0b:2e:ac:
e4:8e:d5:75:89:fc:a8:dd:f0:de:b8:23:a6:22:ec:
79:22:cc:ff:21:20:03:19:75:72:d5:c8:1c:6f:0d:
08:85:41:a6:89:0d:1d:a5:cf:eb:da:f5:ee:dd:aa:
64:df:b4:c2:28:76:1b:65:d5:0c:0a:7d:6b:6f:c0:
aa:93:08:b0:d2:10:78:9e:61:eb:d8:8b:65:18:f5:
ec:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:DA:EC:39:59:72:43:54:81:79:CA:F1:B2:0A:75:39:10:2F:CA:FA
X509v3 Authority Key Identifier:
keyid:D8:BA:20:12:0E:C6:DC:80:FD:35:1A:53:3D:2C:85:CA:0D:98:32:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2LogEg7G3ID9NRpTPSyFyg2YMpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/7fac44-610f-485c-ae11-18ea1d5fef2d/1/49rsOVlyQ1SBecrxsgp1ORAvyvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/7fac44-610f-485c-ae11-18ea1d5fef2d/1/2LogEg7G3ID9NRpTPSyFyg2YMpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.16.0/22
Signature Algorithm: sha256WithRSAEncryption
42:35:a4:3a:de:57:13:e3:43:59:bd:16:ad:5b:e4:0a:e4:c1:
65:c0:a3:f5:c4:0e:01:47:46:1a:5d:37:f9:7f:d0:53:08:16:
02:02:b9:85:9f:36:af:2c:0e:80:9e:30:9a:1e:2b:bf:8b:52:
62:1b:45:d7:9b:5d:f4:ef:5b:14:53:11:a9:41:58:04:05:f0:
9a:dd:70:4e:71:80:64:db:b0:d4:63:58:b0:81:a2:85:6f:1d:
55:40:f4:41:09:11:3a:31:9f:36:27:07:40:56:d3:86:c8:46:
82:4d:6c:37:cf:c9:a9:9f:46:8e:31:44:10:a9:3c:2b:0e:e6:
f2:93:b1:05:55:26:7e:a7:f6:e9:da:47:3c:e3:73:bb:f3:8b:
d5:63:93:b8:62:ff:dc:5b:c2:d5:92:fa:70:78:02:6f:e7:b2:
6d:5d:76:04:68:36:5f:bc:4e:41:16:7f:56:6d:4c:4c:d9:54:
63:70:c9:82:30:73:52:bb:21:3b:0d:be:cb:f0:49:3e:e6:a5:
32:c2:f3:a3:c8:6d:d0:c3:37:cb:ea:c9:55:08:bf:f5:5e:3b:
4c:fe:5a:f5:86:92:91:43:d5:22:a0:cb:58:67:81:67:52:b4:
f2:0b:12:7c:31:c2:92:c4:41:28:37:0c:9d:3d:31:79:e4:1e:
6c:a8:f3:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:01 2023 by rpki-client on console-fra.rpki-client.org