Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/PjH6ntZFkpmFBTAHVq1MKwf7Jy0.roa
File: PjH6ntZFkpmFBTAHVq1MKwf7Jy0.roa (raw, json)
Hash identifier: kArtJrmlFEloH+duju3A5pz5SDpDujMbITLAfH+a8Ys=
Subject key identifier: 3E:31:FA:9E:D6:45:92:99:85:05:30:07:56:AD:4C:2B:07:FB:27:2D
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 0D636214
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/PjH6ntZFkpmFBTAHVq1MKwf7Jy0.roa
Signing time: Sat 01 Jan 2022 13:04:18 +0000
ROA not before: Sat 01 Jan 2022 13:04:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43966
IP address blocks: 79.173.80.0/20 maxlen: 24
94.243.192.0/20 maxlen: 24
94.243.224.0/20 maxlen: 24
79.173.64.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 224616980 (0xd636214)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Jan 1 13:04:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e31fa9ed64592998505300756ad4c2b07fb272d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a3:3c:71:39:05:fb:c9:ba:95:3a:e6:62:40:
ad:de:2f:30:57:3a:81:49:2f:e6:c8:ee:ff:e2:21:
95:7d:a6:71:0d:fb:b1:09:39:d5:a1:19:64:ee:4e:
28:42:2a:4c:e5:d2:35:f3:b9:5b:dd:4e:a9:a4:ea:
4c:89:d4:f6:ff:8e:5d:c6:d3:18:20:32:dd:37:76:
e6:97:c4:67:1f:58:d8:39:ad:c0:92:f9:23:78:bf:
23:7b:86:82:11:95:0f:ac:1e:53:e8:21:97:cb:66:
18:5b:8d:4d:d7:cb:7a:b1:d5:4a:c1:5d:0a:8a:e6:
db:5f:7e:32:54:f0:de:00:0c:ca:83:43:c2:bc:7a:
5e:79:e6:c4:68:ac:83:99:20:14:3d:1c:96:13:eb:
1a:59:f0:a7:71:0a:e7:28:70:6b:2d:37:12:99:3c:
ed:41:1f:f8:f0:c5:eb:6c:8e:3c:09:54:e2:20:09:
fd:40:76:a3:16:76:55:b5:3a:9b:cb:00:6a:23:96:
d4:50:39:46:4f:3f:ca:37:64:17:05:30:4f:0f:be:
ef:00:2b:a7:00:22:a0:c6:df:40:29:59:48:aa:2d:
9e:1e:c5:8d:8c:29:d5:f8:1d:3e:e1:6e:14:4d:ac:
c4:56:ee:7e:cc:ae:5e:6e:41:40:9e:a1:bd:09:2e:
0e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:31:FA:9E:D6:45:92:99:85:05:30:07:56:AD:4C:2B:07:FB:27:2D
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/PjH6ntZFkpmFBTAHVq1MKwf7Jy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.173.64.0/23
79.173.80.0/20
94.243.192.0/20
94.243.224.0/20
Signature Algorithm: sha256WithRSAEncryption
92:8f:79:c2:8b:8b:a8:f3:24:f9:de:9e:7b:c0:f4:62:79:dc:
a7:52:51:78:bd:ad:58:58:15:cc:fb:c2:0a:49:04:3f:b8:82:
1a:58:58:09:e6:5c:6d:8b:b1:28:c8:1f:56:de:6e:85:69:1a:
09:3f:e4:93:f5:f5:8c:b9:c6:ff:01:16:15:f7:79:b1:b8:5c:
e2:63:d3:b4:ea:66:a4:3d:59:4e:a8:e8:25:37:96:69:7b:6b:
ca:ec:0d:d6:32:bb:5d:cc:2f:e7:a2:68:b2:3d:a0:c3:ce:cd:
19:c2:98:1f:09:60:5b:96:b9:9c:2e:0f:2e:61:c8:27:58:c4:
50:1d:9f:c3:a4:98:86:35:2d:50:9b:dc:61:23:42:b7:b3:cb:
13:e3:3c:b6:14:f5:08:cc:5f:8d:cd:c9:14:23:95:b1:7e:9d:
0e:9b:73:44:80:7c:09:ed:36:31:da:0b:46:07:bc:bb:04:26:
9c:15:71:13:19:a6:8f:6f:d6:20:38:a2:f7:dc:d8:52:d5:0b:
b1:0b:50:d4:3a:cc:d5:e8:4d:f4:31:bf:a2:c8:2f:46:87:1a:
da:a3:49:38:e2:73:07:e3:ce:dd:89:ff:d6:ff:1d:ff:9f:4a:
26:14:24:f1:d4:b9:50:c2:91:ae:dc:d1:41:16:9a:aa:e9:40:
c0:8b:00:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:56 2023 by rpki-client on console-fra.rpki-client.org