Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/mc9DTbpXt3gNHIUvoFpKMgvohDI.roa
File: mc9DTbpXt3gNHIUvoFpKMgvohDI.roa (raw, json)
Hash identifier: ZISRspoqPHeqTpQjWGTxGxFFqL/4qnH3L22Gm0vIcbc=
Subject key identifier: 99:CF:43:4D:BA:57:B7:78:0D:1C:85:2F:A0:5A:4A:32:0B:E8:84:32
Certificate issuer: /CN=8f78963b3c4f2dd187c20437df1d7d9c168cab81
Certificate serial: 087BF20E
Authority key identifier: 8F:78:96:3B:3C:4F:2D:D1:87:C2:04:37:DF:1D:7D:9C:16:8C:AB:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j3iWOzxPLdGHwgQ33x19nBaMq4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/mc9DTbpXt3gNHIUvoFpKMgvohDI.roa
Signing time: Sat 01 Jan 2022 07:52:55 +0000
ROA not before: Sat 01 Jan 2022 07:52:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 79.143.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142340622 (0x87bf20e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f78963b3c4f2dd187c20437df1d7d9c168cab81
Validity
Not Before: Jan 1 07:52:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99cf434dba57b7780d1c852fa05a4a320be88432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:64:3b:4e:d4:11:aa:8f:02:0f:e7:0a:e1:ac:
5f:b3:b6:f3:b7:b0:fb:8c:af:b1:b5:33:66:47:32:
8b:42:f2:db:30:3f:b6:48:6c:93:82:b8:89:1a:e8:
dc:0d:47:79:90:cb:cb:17:fa:39:ec:cd:e2:7c:9d:
04:41:05:81:30:7b:e9:ac:3c:fe:de:57:4a:85:e6:
e2:d9:1e:79:1f:e9:0f:94:ee:26:c7:30:d4:3c:f7:
9d:00:2b:fe:a8:0f:ba:a6:ef:39:45:a4:7e:86:e5:
9f:5d:b1:de:3c:73:97:60:f0:8c:74:a4:37:42:52:
b7:4d:69:b2:cd:45:bf:04:4c:b8:53:64:03:ee:62:
bf:d5:4a:28:25:f5:57:9e:87:78:4c:c5:43:e3:2b:
00:1d:a5:ec:71:76:4b:1d:cd:b8:59:8f:a8:21:6d:
b2:32:02:99:34:d7:f3:ef:85:24:56:09:3e:95:85:
b7:77:41:9c:82:12:26:0d:00:a7:14:e4:34:d7:94:
70:44:1e:b2:f3:a2:ad:50:6e:e3:d1:49:52:68:83:
95:ad:6a:66:0d:99:61:73:aa:4c:37:65:7d:8e:7f:
9c:67:58:f5:54:c5:18:a4:b5:bd:66:0e:3e:58:42:
5a:44:08:0f:4b:57:62:63:70:d1:70:c9:e8:a1:6c:
31:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:CF:43:4D:BA:57:B7:78:0D:1C:85:2F:A0:5A:4A:32:0B:E8:84:32
X509v3 Authority Key Identifier:
keyid:8F:78:96:3B:3C:4F:2D:D1:87:C2:04:37:DF:1D:7D:9C:16:8C:AB:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j3iWOzxPLdGHwgQ33x19nBaMq4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/mc9DTbpXt3gNHIUvoFpKMgvohDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/j3iWOzxPLdGHwgQ33x19nBaMq4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.143.156.0/24
Signature Algorithm: sha256WithRSAEncryption
29:e9:94:94:ea:52:55:f3:92:52:4a:00:6d:57:95:88:f3:bd:
7f:c6:2c:16:c8:e8:37:2b:bc:4b:68:2f:5a:4b:40:1d:ee:48:
0f:88:7d:8c:38:ea:33:b6:dc:fc:f7:8b:1a:88:25:ce:81:c6:
3f:43:41:74:d8:a3:a5:df:71:78:42:e4:10:b7:8d:21:2b:eb:
69:b7:26:94:8b:08:ee:85:56:5a:e3:46:7b:e2:e7:61:27:5f:
23:a9:a5:28:b8:fb:ad:f4:01:2f:ca:a2:ac:21:e2:41:15:c8:
5c:b2:f7:02:1c:d5:5c:4e:5a:ed:29:3f:ee:5a:5e:75:d1:b6:
da:f5:85:4e:2e:74:3e:1c:e2:4e:69:d5:1c:b6:5c:86:b4:18:
d3:72:e4:96:e4:c2:3f:00:54:f8:d0:cc:38:2e:44:c2:04:cc:
4e:5f:06:c4:82:64:a4:b4:53:7b:bf:54:c6:6a:2a:f0:bc:21:
93:6f:98:af:42:f4:b8:ae:72:74:fd:b3:9a:c0:d5:90:7b:52:
9e:f8:55:2c:c5:d4:4b:4b:4a:d7:aa:85:bc:1d:00:a9:05:0b:
63:2f:1f:57:ce:bf:87:27:bb:24:56:06:48:ad:eb:97:d6:7d:
f5:da:6b:8a:a0:98:83:5a:17:37:6e:0d:55:9e:89:74:35:dd:
48:b8:9b:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:04 2025 by rpki-client