Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/AgfmQ9Ty7a2KE-4TVRUFBjgRv5M.roa
File: AgfmQ9Ty7a2KE-4TVRUFBjgRv5M.roa (raw, json)
Hash identifier: doYSn6Q875ec2ESgIdPIQpmgB/XajOGVUtZ4K9wQcCc=
Subject key identifier: 02:07:E6:43:D4:F2:ED:AD:8A:13:EE:13:55:15:05:06:38:11:BF:93
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 07D4E4A2
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/AgfmQ9Ty7a2KE-4TVRUFBjgRv5M.roa
Signing time: Sat 01 Jan 2022 10:56:58 +0000
ROA not before: Sat 01 Jan 2022 10:56:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42898
IP address blocks: 185.73.243.0/24 maxlen: 24
45.155.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131392674 (0x7d4e4a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jan 1 10:56:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0207e643d4f2edad8a13ee13551505063811bf93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:90:0c:af:9d:d2:c4:d7:b5:c6:75:8f:16:22:
d1:17:9c:07:fa:ec:3d:20:a4:27:a1:e4:78:7b:5c:
29:b0:ee:ef:7c:50:b1:f7:c2:55:d4:0d:67:7b:7f:
8c:9e:a0:a6:c9:8e:7a:18:bd:7e:8e:3c:e7:69:d1:
1a:e5:b3:7b:e0:65:b8:93:49:aa:af:80:d1:0f:ff:
ed:52:be:4f:4d:1f:68:3d:76:6c:58:03:8a:b8:5c:
ab:f3:9f:b5:28:5b:53:b6:fd:7c:e0:e7:6a:1c:65:
99:11:fc:91:b6:d2:0a:70:48:57:eb:27:99:21:1b:
cf:9c:79:82:ca:ca:f0:ee:6b:42:03:94:5f:f6:98:
2b:96:ae:ce:9f:49:d1:5a:b6:c5:2a:94:07:c7:be:
14:be:a6:db:aa:2e:ee:e3:26:83:aa:b8:b6:65:71:
f9:9d:2f:c0:91:47:8b:43:a6:0f:3b:80:2a:89:ca:
cf:dd:c9:e5:0a:86:5d:da:91:3e:99:8a:a5:23:b9:
8d:5f:d7:c6:c7:8b:4e:e0:ca:3b:e7:49:8a:51:4d:
19:36:66:74:34:c6:e9:c1:29:66:37:5d:f3:a4:fa:
a8:1d:eb:56:44:e7:b0:b8:14:fe:37:e1:b4:f5:14:
53:c1:bc:d4:28:da:72:24:0f:ff:82:bc:ca:ed:f2:
21:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:07:E6:43:D4:F2:ED:AD:8A:13:EE:13:55:15:05:06:38:11:BF:93
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/AgfmQ9Ty7a2KE-4TVRUFBjgRv5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.79.0/24
185.73.243.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:89:0a:f7:3b:98:34:db:22:1d:5c:4e:6d:aa:c4:97:35:bb:
28:d7:c5:a2:d7:11:01:26:56:b8:5f:1e:8b:fe:fe:bf:c7:82:
83:19:8a:f8:fb:7d:3b:89:6c:9a:08:ff:7b:72:0a:22:c7:3a:
2a:69:3f:69:4a:00:d3:0d:f9:af:2c:24:4d:2e:ba:86:32:18:
6f:2b:78:a8:d8:d4:4e:bf:ca:f5:6d:ae:1d:8a:1a:12:5f:20:
08:a8:c4:74:68:e1:18:36:2c:a3:94:00:4d:68:13:19:f7:07:
c1:88:a6:16:9f:61:21:f0:08:d7:55:cf:e1:54:84:b9:9e:a5:
a6:90:82:45:4e:7a:37:68:29:49:cc:89:4d:55:a7:f6:9d:53:
2a:03:9e:20:98:fe:f6:cd:58:86:df:a7:8a:ef:98:10:f3:3d:
53:09:ec:31:43:ae:2b:b3:35:f0:32:90:83:ca:72:f0:10:01:
be:0c:31:ab:13:a2:f2:ab:7e:a1:a4:0c:26:8f:0f:b8:e5:99:
9b:f9:2c:a1:2a:92:5e:64:77:b1:1c:04:93:55:9f:98:51:6e:
17:5f:8f:bc:ca:f0:ed:62:bb:79:d4:9c:c4:86:bc:f0:cb:ce:
7e:a4:d9:af:da:de:ca:55:ef:74:a7:51:01:34:41:a1:4a:71:
c0:c2:0d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:06 2023 by rpki-client on console-fra.rpki-client.org