Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/rHQVuLkSI7WMRmX53thMKwKijGY.roa
File: rHQVuLkSI7WMRmX53thMKwKijGY.roa (raw, json)
Hash identifier: 7hX3fbmNzpufBtqDLaPl+jBjF6in8tk51gdaRYYcaLQ=
Subject key identifier: AC:74:15:B8:B9:12:23:B5:8C:46:65:F9:DE:D8:4C:2B:02:A2:8C:66
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 018552C15CDA2A062B419B2EFD76E058AB45
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/rHQVuLkSI7WMRmX53thMKwKijGY.roa
Signing time: Tue 27 Dec 2022 08:44:41 +0000
ROA not before: Tue 27 Dec 2022 08:44:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60484
IP address blocks: 79.173.77.0/24 maxlen: 24
185.159.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:52:c1:5c:da:2a:06:2b:41:9b:2e:fd:76:e0:58:ab:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Dec 27 08:44:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac7415b8b91223b58c4665f9ded84c2b02a28c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:29:67:d5:b8:97:11:c5:d4:ef:d4:0b:c3:99:
3d:7d:e6:59:5e:d0:d5:f9:ff:aa:ae:e6:c1:4d:d5:
bb:41:aa:90:45:ee:85:ee:1b:5e:9b:22:c0:db:94:
41:5f:fc:ac:ff:88:6f:22:8c:08:b1:41:b2:fc:02:
0b:92:ac:b7:82:9b:d6:97:c8:30:84:10:4b:4b:6c:
68:78:33:c5:57:90:e3:a0:80:fd:b9:d2:b1:2a:93:
ea:b3:59:d6:09:57:90:4a:90:62:10:ea:f2:f7:0f:
26:eb:3b:bd:38:f4:64:9d:6f:d9:a8:34:1f:58:31:
2c:07:4f:07:5c:41:2d:5d:d1:ec:33:0f:56:fd:75:
ee:93:94:e0:9a:97:a4:bf:4a:44:45:d0:2c:4d:0c:
b9:64:97:2d:e6:19:f4:95:b6:6e:4d:a5:0c:eb:01:
bc:d5:f1:18:5f:ef:bd:d5:ef:fc:68:ff:6f:2c:b4:
ee:53:36:9e:18:b6:79:fa:b9:28:f4:aa:8d:47:41:
21:e9:b6:c8:98:5f:0b:1b:99:cd:14:ed:31:85:f2:
c3:f8:de:f4:1c:01:97:22:ef:a1:b1:f9:87:7d:ae:
fc:1d:84:0f:8e:c4:2e:c0:7e:c7:0c:8b:0b:00:59:
23:23:5a:64:5b:d5:54:29:56:da:f8:ee:20:1f:98:
dd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:74:15:B8:B9:12:23:B5:8C:46:65:F9:DE:D8:4C:2B:02:A2:8C:66
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/rHQVuLkSI7WMRmX53thMKwKijGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.173.77.0/24
185.159.172.0/22
Signature Algorithm: sha256WithRSAEncryption
36:20:3d:a7:df:3f:b8:68:1b:a9:83:d7:e0:b8:6a:51:23:b7:
37:af:e9:a9:c0:db:84:8b:92:9a:23:f7:3c:c5:11:9b:3f:00:
e4:3e:31:8b:de:27:4c:ac:5c:81:46:e4:27:3f:2d:3a:a9:ac:
5b:cd:38:ed:f5:65:df:c5:e2:cc:fd:e0:29:78:fc:31:e8:58:
97:8d:3d:8f:86:99:36:58:0f:be:ed:8c:3b:e2:74:2a:74:4c:
78:b3:26:f5:44:e4:56:44:46:19:fb:a3:48:5a:85:d6:52:f0:
91:11:7f:be:1e:2f:05:57:02:58:1d:23:27:a0:13:bc:c0:fd:
ba:54:e6:39:ee:87:a7:dc:99:21:06:07:e5:f4:64:68:ec:4c:
9b:6c:64:ec:77:ce:d0:e8:05:e2:ec:91:db:16:30:95:3c:2c:
98:59:40:bc:d3:4c:8b:25:b4:76:fe:7d:e8:d4:fc:ac:4f:eb:
59:10:d4:8f:3f:52:e1:41:72:7d:4c:f7:89:c2:f7:26:c7:e4:
8a:2a:7d:9f:07:67:99:8a:0d:2b:53:c5:21:7e:aa:13:a4:0f:
4a:ef:a6:b2:cf:5a:de:09:7a:82:5a:f6:9e:89:05:e3:57:f0:
83:f4:e9:e4:1d:93:77:e9:2a:e0:ae:65:61:f4:48:ef:fd:92:
03:36:05:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:56 2023 by rpki-client on console-fra.rpki-client.org