Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/958fef-0d55-4c00-be8a-cc580521d00f/1/s7I1fcWPmi7MO08WUrs7XUn_9Eo.roa
File: s7I1fcWPmi7MO08WUrs7XUn_9Eo.roa (raw, json)
Hash identifier: m7EDqK98qt8x0slj5MKujXGZSfA4Zu1xWx2w39w7t10=
Subject key identifier: B3:B2:35:7D:C5:8F:9A:2E:CC:3B:4F:16:52:BB:3B:5D:49:FF:F4:4A
Certificate issuer: /CN=87943cb86e3a703813778fab790d65f0da21615a
Certificate serial: 0181F8F7FA42E90DC558C9E6C4441ED20B10
Authority key identifier: 87:94:3C:B8:6E:3A:70:38:13:77:8F:AB:79:0D:65:F0:DA:21:61:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5Q8uG46cDgTd4-reQ1l8NohYVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/958fef-0d55-4c00-be8a-cc580521d00f/1/s7I1fcWPmi7MO08WUrs7XUn_9Eo.roa
Signing time: Wed 13 Jul 2022 19:10:09 +0000
ROA not before: Wed 13 Jul 2022 19:10:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43882
IP address blocks: 79.133.160.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f8:f7:fa:42:e9:0d:c5:58:c9:e6:c4:44:1e:d2:0b:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87943cb86e3a703813778fab790d65f0da21615a
Validity
Not Before: Jul 13 19:10:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3b2357dc58f9a2ecc3b4f1652bb3b5d49fff44a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c3:a7:89:ba:11:4b:c5:77:36:d0:ac:51:ae:
6d:32:ef:8b:5c:3e:03:75:de:0e:d5:4c:6a:2c:e0:
26:af:45:f2:76:17:66:11:a0:81:7a:ce:32:a8:b2:
b0:bb:17:d8:d7:22:46:d1:7b:38:4b:60:59:cf:1b:
ad:7d:bb:83:59:d0:3b:55:b0:a4:9a:83:a2:4e:22:
51:d4:77:2f:a3:9c:62:e7:a5:ba:6d:3b:c5:6c:cc:
22:da:e0:5f:d2:bc:12:1c:8a:37:97:d3:d1:9d:08:
cd:8a:4e:e0:bb:0f:34:55:1b:ba:5c:a5:f9:e1:ad:
96:63:69:ad:c7:f9:f7:73:47:a6:6c:9f:da:ca:21:
21:da:0f:ab:c6:57:8f:7a:99:e9:7f:0c:4e:42:b3:
6e:be:6f:e5:2d:34:d4:f6:91:08:6f:aa:c4:1b:51:
7b:71:2a:e2:2a:a4:d0:46:b5:74:96:91:9f:51:59:
2d:2a:06:88:2e:1f:b5:71:06:b6:9b:a4:bf:ab:da:
a4:06:db:90:3f:80:3e:15:13:95:23:a7:ad:ea:92:
69:93:05:9e:38:72:9e:af:41:36:ce:7d:8b:35:08:
9f:ac:04:f4:93:23:d0:85:dd:f2:69:d6:41:1a:d3:
1c:d6:94:a7:e9:fd:14:60:30:f5:27:be:a4:06:c1:
2d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:B2:35:7D:C5:8F:9A:2E:CC:3B:4F:16:52:BB:3B:5D:49:FF:F4:4A
X509v3 Authority Key Identifier:
keyid:87:94:3C:B8:6E:3A:70:38:13:77:8F:AB:79:0D:65:F0:DA:21:61:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5Q8uG46cDgTd4-reQ1l8NohYVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/958fef-0d55-4c00-be8a-cc580521d00f/1/s7I1fcWPmi7MO08WUrs7XUn_9Eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/958fef-0d55-4c00-be8a-cc580521d00f/1/h5Q8uG46cDgTd4-reQ1l8NohYVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.133.160.0/20
Signature Algorithm: sha256WithRSAEncryption
5c:c6:dd:30:78:6f:e3:8e:22:e9:11:80:df:0f:7d:35:22:12:
65:41:16:52:8f:3c:d8:ed:a4:e6:29:75:d6:4e:84:b2:b6:12:
64:ba:9f:a4:65:ad:45:36:14:66:ce:35:ef:2e:50:15:fe:e0:
3c:e9:58:b5:83:0c:be:18:56:5c:9d:df:aa:f1:f5:de:a1:bc:
5f:25:9d:de:41:0c:0f:48:ec:06:5f:dc:20:da:45:6d:6e:5c:
9c:9c:46:15:5d:d2:1d:99:04:a1:df:2a:bb:45:91:c1:6e:24:
ee:be:61:30:06:4e:2f:48:8f:32:be:35:76:40:8e:52:eb:a8:
a7:f3:2e:1a:bc:5e:51:e4:da:0b:3e:1b:84:71:ea:d0:96:52:
10:bf:90:10:31:9b:49:55:2f:18:c1:ec:c8:6a:56:ea:da:22:
1f:bd:f0:7f:66:3c:99:d2:84:43:d7:f3:51:25:19:7b:9d:ad:
a9:61:bd:d4:2d:f7:d3:b1:fc:c9:32:75:40:d6:c5:23:e4:b7:
8b:5c:e9:93:49:52:bc:88:c2:95:92:20:a8:8c:df:ed:30:c4:
c4:bd:ec:81:79:7b:18:19:f7:72:c4:b8:9c:e0:3e:3c:34:c1:
8e:25:47:60:43:52:2a:59:c4:af:84:9a:5a:eb:d2:fe:91:30:
e7:22:59:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:11 2024 by rpki-client on console-fra.rpki-client.org