Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/KRgfOtzuaZb8CYYk6GaWYTxUD0w.roa
File: KRgfOtzuaZb8CYYk6GaWYTxUD0w.roa (raw, json)
Hash identifier: I3nKjyBTsZPeUk0ItBmQTmfNCTcKf0IZ/GFaBU1AmXc=
Subject key identifier: 29:18:1F:3A:DC:EE:69:96:FC:09:86:24:E8:66:96:61:3C:54:0F:4C
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 0D64A375
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/KRgfOtzuaZb8CYYk6GaWYTxUD0w.roa
Signing time: Sat 01 Jan 2022 13:04:19 +0000
ROA not before: Sat 01 Jan 2022 13:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44270
IP address blocks: 79.173.112.0/20 maxlen: 21
94.243.240.0/20 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 224699253 (0xd64a375)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Jan 1 13:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29181f3adcee6996fc098624e86696613c540f4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:81:8e:ac:77:93:af:a9:99:b0:61:2b:c0:09:
5e:20:33:39:d3:32:c2:0c:14:09:e6:58:49:4a:32:
70:c7:0a:ad:95:f7:df:0c:3e:8d:fa:3a:88:af:93:
dc:b8:0c:04:74:4a:74:46:48:59:31:2c:4b:49:e4:
29:e2:c4:14:13:7b:40:81:9c:9e:9a:32:bd:a5:24:
78:39:4a:a0:05:52:b1:26:bc:3f:ba:7b:97:a3:90:
6c:2c:79:9b:65:47:72:8f:ea:96:c7:ab:9e:f9:9c:
94:e3:4a:52:cf:bd:48:0e:45:10:ed:0b:d2:32:e8:
52:8f:d4:a7:e7:d0:1a:c6:12:a8:1a:85:ca:ba:67:
3b:2b:56:0f:29:b9:09:01:02:0d:a7:2b:e0:74:6a:
41:d8:c8:93:5c:f8:7f:70:f9:e3:dd:33:80:67:78:
af:70:17:fb:6d:61:6d:3e:ae:a8:36:ba:ae:59:8f:
54:d8:d0:5a:96:4b:cc:78:b8:a6:4f:d4:44:95:1a:
e7:dc:1e:1d:e6:38:16:c9:df:ca:2d:eb:98:18:35:
fd:fe:c8:3d:1f:e2:b8:3d:11:fd:9d:83:69:bf:10:
26:04:3e:bc:59:18:67:91:14:91:23:b6:f9:85:d5:
b3:ac:ee:3c:ff:51:f1:79:1e:f1:3b:4c:34:56:56:
a1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:18:1F:3A:DC:EE:69:96:FC:09:86:24:E8:66:96:61:3C:54:0F:4C
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/KRgfOtzuaZb8CYYk6GaWYTxUD0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.173.112.0/20
94.243.240.0/20
Signature Algorithm: sha256WithRSAEncryption
84:b3:89:64:cf:48:ca:8c:50:e5:a3:0d:4b:ca:e9:4c:b2:48:
70:75:8a:d7:50:f4:97:27:4b:4e:70:f6:a0:57:a2:c0:b9:27:
e8:b7:67:e4:b6:23:ab:a1:8b:68:da:66:3f:b7:b5:4c:6f:16:
3a:fb:fa:26:57:72:fc:9f:d0:11:1d:15:45:77:aa:51:25:04:
a2:d3:93:bd:32:c5:00:fe:ab:da:91:af:88:72:f6:37:13:1a:
c0:04:51:6a:b7:76:38:24:43:e1:08:04:52:5e:a4:cc:a8:13:
72:3e:42:fe:2f:06:3d:f4:b5:bb:7b:31:5f:db:f0:f0:6d:67:
7e:a5:ed:d4:ec:84:23:c4:1f:80:0e:0b:4a:b5:57:e9:0c:6e:
44:b1:5f:63:6a:d5:26:fc:6b:25:09:52:29:34:df:cc:c4:6c:
38:c2:4d:4e:2f:1f:e5:68:39:f1:7e:14:bd:7f:f0:7c:52:93:
22:4b:2c:d6:14:ad:01:7b:7f:ad:df:f2:d8:24:bd:ad:0d:d5:
c9:7d:af:86:1b:e2:8d:24:74:2e:b2:56:50:4a:19:82:9c:93:
8d:25:49:58:ba:ec:89:37:f4:12:b8:3e:18:44:f7:78:b5:3b:
a9:c7:77:33:e4:12:b7:25:11:e4:22:ef:09:91:7a:c5:19:0e:
96:fc:6a:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:59 2024 by rpki-client on console-fra.rpki-client.org