Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/1-C2649x0ShZSjreXPvRUrevIhKM.roa
File: 1-C2649x0ShZSjreXPvRUrevIhKM.roa (raw, json)
Hash identifier: 98DZQ5KC8j1qfeCUuz/CaZCoP/mAntYRvwoTBqj5+NQ=
Subject key identifier: F8:2D:BA:E3:DC:74:4A:16:52:8E:B7:97:3E:F4:54:AD:EB:C8:84:A3
Certificate issuer: /CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Certificate serial: 07827B8F
Authority key identifier: BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/1-C2649x0ShZSjreXPvRUrevIhKM.roa
Signing time: Sat 01 Jan 2022 11:59:46 +0000
ROA not before: Sat 01 Jan 2022 11:59:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47385
IP address blocks: 79.174.64.0/19 maxlen: 20
79.174.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125991823 (0x7827b8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Validity
Not Before: Jan 1 11:59:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f82dbae3dc744a16528eb7973ef454adebc884a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:70:8c:86:04:be:7e:01:ff:c8:b1:6e:f6:04:
a5:0c:f2:f0:51:bd:16:c6:af:96:86:5e:e0:8d:c9:
bb:ac:b1:59:00:25:4d:7b:83:99:2e:14:d6:59:a8:
23:e7:c6:a0:5d:af:8a:24:55:fb:73:ad:89:89:91:
03:8f:99:6c:51:24:b9:3c:d4:f9:1a:5c:08:fe:74:
9d:a3:16:15:bb:80:b8:73:58:27:11:ca:f1:48:68:
ed:a1:9e:c4:47:6d:d4:ba:86:67:79:03:45:6b:fe:
35:cf:c2:7e:d8:16:05:97:e1:74:b8:23:de:40:1e:
cf:56:22:96:e4:5e:73:c2:30:31:6d:fb:18:7a:12:
71:eb:fb:ad:8a:61:25:86:ae:17:29:d6:19:38:86:
4d:52:02:79:d2:84:10:5b:b5:8d:f7:31:5e:9c:3d:
8b:8d:98:ef:f9:ed:92:94:cc:4c:b8:93:e6:88:e4:
b6:d1:65:1e:e5:ef:ed:e5:cc:b5:35:47:bd:79:70:
18:c0:3f:a3:bf:44:63:ea:02:13:f4:6f:1d:37:46:
8e:70:50:ce:48:4d:38:ce:9b:d7:2e:76:67:28:79:
a7:73:3c:35:b4:58:5a:16:f9:d3:1d:6b:f1:e7:45:
05:34:fc:36:be:fc:67:87:de:ba:45:75:fb:81:be:
15:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:2D:BA:E3:DC:74:4A:16:52:8E:B7:97:3E:F4:54:AD:EB:C8:84:A3
X509v3 Authority Key Identifier:
keyid:BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/1-C2649x0ShZSjreXPvRUrevIhKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.174.64.0/19
Signature Algorithm: sha256WithRSAEncryption
75:9a:7b:85:45:31:72:03:0b:8d:59:08:4b:31:87:2f:0c:51:
6b:93:6f:5d:b7:ae:82:90:8a:31:b9:d3:d0:ff:83:52:f4:27:
87:f4:a3:0b:e2:f9:ee:b6:96:d4:2a:45:2e:c1:9f:d5:9b:34:
03:b8:22:69:f2:c3:fa:de:7b:9a:97:93:64:40:f6:91:2b:b9:
3d:cb:ef:3c:22:80:f4:77:31:d5:f3:23:52:03:65:00:03:ef:
96:f5:ff:ef:6a:ed:35:b7:7e:de:71:cf:2c:63:04:e5:c5:30:
9d:4e:0e:9d:0b:25:ed:a7:fd:8e:43:c7:7b:d2:5a:24:1e:99:
a9:b6:2d:9c:4d:9d:4a:38:11:20:de:58:78:95:6d:dd:9b:75:
10:55:93:93:4b:e9:b9:ea:3e:06:be:29:5d:69:cf:ca:a2:5d:
8e:b4:dd:58:05:c9:5b:20:ab:ce:eb:5a:09:6c:06:42:d1:a6:
00:59:1c:cf:c6:db:b8:8d:21:30:72:ac:b8:d8:ed:9c:d8:72:
ec:ce:9c:51:0a:40:f9:5a:05:60:a9:24:01:dd:05:07:1d:c7:
97:99:f0:7b:a8:81:f6:fc:61:6a:cc:e2:9e:04:01:74:34:70:
d4:6c:37:92:34:0f:21:47:7c:46:fc:8d:08:1b:02:07:4b:59:
a7:b4:5d:f5
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEB4J7jzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZGZhZDIzZTExY2YwZDI0YTQ3NzU5NGViYTA5Zjk5YWNjNmYxZmZmMB4XDTIyMDEw
MTExNTk0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjgyZGJhZTNkYzc0
NGExNjUyOGViNzk3M2VmNDU0YWRlYmM4ODRhMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMRwjIYEvn4B/8ixbvYEpQzy8FG9FsavloZe4I3Ju6yxWQAl
TXuDmS4U1lmoI+fGoF2viiRV+3OtiYmRA4+ZbFEkuTzU+RpcCP50naMWFbuAuHNY
JxHK8Uho7aGexEdt1LqGZ3kDRWv+Nc/CftgWBZfhdLgj3kAez1YiluRec8IwMW37
GHoScev7rYphJYauFynWGTiGTVICedKEEFu1jfcxXpw9i42Y7/ntkpTMTLiT5ojk
ttFlHuXv7eXMtTVHvXlwGMA/o79EY+oCE/RvHTdGjnBQzkhNOM6b1y52Zyh5p3M8
NbRYWhb50x1r8edFBTT8Nr78Z4feukV1+4G+Ff8CAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT4Lbrj3HRKFlKOt5c+9FSt68iEozAfBgNVHSMEGDAWgBS9+tI+Ec8NJKR3
WU66CfmazG8f/zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZmclNQaEhQRFNTa2QxbE91Z241bXN4dkhfOC5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDMvZTI1MjM5LTZhYjAtNDkxOS1hNzZhLTRmNGU3MWUzMjA4NC8x
LzEtQzI2NDl4MFNoWlNqcmVYUHZSVXJldkloS00ucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Qz
L2UyNTIzOS02YWIwLTQ5MTktYTc2YS00ZjRlNzFlMzIwODQvMS92ZnJTUGhIUERT
U2tkMWxPdWduNW1zeHZIXzguY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAVPrkAwDQYJKoZIhvcNAQELBQAD
ggEBAHWae4VFMXIDC41ZCEsxhy8MUWuTb123roKQijG509D/g1L0J4f0owvi+e62
ltQqRS7Bn9WbNAO4Imnyw/ree5qXk2RA9pEruT3L7zwigPR3MdXzI1IDZQAD75b1
/+9q7TW3ft5xzyxjBOXFMJ1ODp0LJe2n/Y5Dx3vSWiQemam2LZxNnUo4ESDeWHiV
bd2bdRBVk5NL6bnqPga+KV1pz8qiXY603VgFyVsgq87rWglsBkLRpgBZHM/G27iN
ITByrLjY7ZzYcuzOnFEKQPlaBWCpJAHdBQcdx5eZ8Huogfb8YWrM4p4EAXQ0cNRs
N5I0DyFHfEb8jQgbAgdLWae0XfU=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:23 2023 by rpki-client on console-ams.rpki-client.org