Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/a0b605-56fb-4cba-8ddc-b585417910eb/1/uTWYmrTz4xien2bc5dakVLiGCf0.roa
File: uTWYmrTz4xien2bc5dakVLiGCf0.roa (raw, json)
Hash identifier: yw+ixy1iR3ypbhWWg85z31zpidPyVsA+2YYsELzSG28=
Subject key identifier: B9:35:98:9A:B4:F3:E3:18:9E:9F:66:DC:E5:D6:A4:54:B8:86:09:FD
Certificate issuer: /CN=07a19f46a17b9d4869df66493cfb05d7d82894a6
Certificate serial: 34E74747
Authority key identifier: 07:A1:9F:46:A1:7B:9D:48:69:DF:66:49:3C:FB:05:D7:D8:28:94:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6GfRqF7nUhp32ZJPPsF19golKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/a0b605-56fb-4cba-8ddc-b585417910eb/1/uTWYmrTz4xien2bc5dakVLiGCf0.roa
Signing time: Sat 01 Jan 2022 09:59:42 +0000
ROA not before: Sat 01 Jan 2022 09:59:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44065
IP address blocks: 217.29.0.0/20 maxlen: 20
79.98.152.0/21 maxlen: 21
2a02:3c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 887572295 (0x34e74747)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a19f46a17b9d4869df66493cfb05d7d82894a6
Validity
Not Before: Jan 1 09:59:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b935989ab4f3e3189e9f66dce5d6a454b88609fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:5a:9f:55:5f:3e:62:f0:65:df:ac:b2:d7:f8:
0f:7a:65:7f:dd:92:ef:ec:56:14:f0:08:67:f2:86:
f3:aa:e3:36:cc:dd:6f:0b:47:61:d3:69:17:56:e6:
78:81:3f:42:e3:ab:f3:27:5c:b0:c6:99:fd:b6:7d:
b4:a3:a8:1c:a7:3f:4f:55:fd:ad:d5:a9:b3:3b:9b:
a8:d4:e7:0f:15:33:da:a3:1d:31:6a:6c:22:f7:a5:
4d:22:b4:37:3f:87:b5:9a:a3:a0:fd:2b:70:40:ab:
46:55:fe:b2:d1:04:fa:29:1b:99:fc:f4:ad:4d:bc:
79:b2:72:16:9b:0d:59:80:fa:04:cf:a8:7c:4a:e5:
d8:b0:a3:d9:cd:6a:a9:f2:ac:95:a3:c3:bd:5d:77:
2e:f0:6b:b3:73:92:6a:9e:09:f1:50:b2:6a:1b:26:
85:bb:a3:44:0c:04:77:e1:28:d5:55:19:9a:93:a9:
d0:31:27:e6:5f:8b:be:e6:8c:ab:a4:3f:52:40:e2:
ca:80:45:6c:d3:30:45:bd:fd:2a:7a:dc:51:1d:c1:
31:8c:fe:ba:52:c2:cf:68:7f:65:69:b5:88:8e:51:
9f:da:8e:7f:a8:df:51:db:49:f2:8a:06:fa:df:30:
8f:9b:a8:e0:a3:69:01:47:c6:89:a8:19:eb:69:de:
89:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:35:98:9A:B4:F3:E3:18:9E:9F:66:DC:E5:D6:A4:54:B8:86:09:FD
X509v3 Authority Key Identifier:
keyid:07:A1:9F:46:A1:7B:9D:48:69:DF:66:49:3C:FB:05:D7:D8:28:94:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6GfRqF7nUhp32ZJPPsF19golKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/a0b605-56fb-4cba-8ddc-b585417910eb/1/uTWYmrTz4xien2bc5dakVLiGCf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/a0b605-56fb-4cba-8ddc-b585417910eb/1/B6GfRqF7nUhp32ZJPPsF19golKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.152.0/21
217.29.0.0/20
IPv6:
2a02:3c0::/29
Signature Algorithm: sha256WithRSAEncryption
39:92:0e:a4:a9:ee:29:26:0f:3e:48:af:6e:f7:3c:01:55:db:
48:72:f2:ec:ae:c0:22:48:ec:16:ec:ce:93:75:61:e9:6d:06:
01:64:c2:c3:2a:3e:71:3d:f5:4e:47:dd:28:2a:19:b6:66:b0:
e4:bc:d8:9a:77:c5:73:72:4b:a9:94:2f:50:d7:3b:9b:8d:12:
a7:5a:49:c8:d9:38:0a:e7:a9:dd:ee:a0:88:2a:9c:0e:aa:bb:
b2:69:b2:06:be:60:1c:7f:52:3c:7b:ca:d7:27:79:3e:b5:cb:
6b:e0:f8:f5:a0:9f:98:f5:4d:e5:7d:19:4d:4b:fb:37:36:ee:
5e:59:48:17:27:1d:10:e4:d2:27:9e:82:f8:bb:cb:4f:e6:10:
2a:7a:7d:35:b0:af:66:66:85:71:a9:e6:9f:c1:c0:56:ef:63:
b5:8f:92:f2:2c:df:a5:74:1f:fe:4d:74:21:66:9b:e0:a9:a6:
2f:12:cf:60:f3:cc:fe:17:2d:68:e4:33:85:4c:5b:73:a6:70:
52:5b:e1:17:73:45:8f:01:cc:31:b2:69:ff:8a:86:bc:23:a1:
e5:7d:34:ad:25:4a:8f:d4:24:a2:0a:7f:75:6b:99:99:5e:e3:
2f:b6:94:83:ea:55:75:77:c0:87:e0:1b:d9:a2:db:92:7c:15:
dd:ca:70:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:48 2023 by rpki-client on console-fra.rpki-client.org