Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/79pK6SMJjAsLLw1EAJU-M4qzME4.roa
File: 79pK6SMJjAsLLw1EAJU-M4qzME4.roa (raw, json)
Hash identifier: p8u5ipe/7oJbTtNQybv4JJvW8Ip9NpJntM3mc+Tjp5I=
Subject key identifier: EF:DA:4A:E9:23:09:8C:0B:0B:2F:0D:44:00:95:3E:33:8A:B3:30:4E
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018341E8259FDD4A8DAB6CF5FEA20EB942EB
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/79pK6SMJjAsLLw1EAJU-M4qzME4.roa
Signing time: Thu 15 Sep 2022 16:07:56 +0000
ROA not before: Thu 15 Sep 2022 16:07:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57428
IP address blocks: 164.215.100.0/24 maxlen: 24
164.215.101.0/24 maxlen: 24
109.205.215.0/24 maxlen: 24
88.151.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:41:e8:25:9f:dd:4a:8d:ab:6c:f5:fe:a2:0e:b9:42:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Sep 15 16:07:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=efda4ae923098c0b0b2f0d4400953e338ab3304e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c8:7b:45:17:9b:f6:f8:83:5e:c3:fc:be:1c:
a8:eb:33:85:43:dd:70:f3:be:14:26:79:b0:5d:2d:
2c:6a:4f:fa:63:05:5d:b1:e7:61:da:8d:59:74:88:
92:7b:9d:24:cb:43:8a:3c:5e:f0:e0:75:95:ce:88:
f1:e9:48:ed:77:c2:42:da:f9:80:43:3c:41:35:93:
9e:98:69:4c:7b:08:03:59:db:26:8b:e9:5c:55:77:
4f:b4:1f:24:4f:c2:00:4c:a9:11:ce:5c:ed:01:88:
ad:14:16:4a:dd:90:4c:ed:08:31:ac:7d:24:84:02:
3c:61:d1:db:ce:6f:bc:c0:c4:7a:5c:af:e2:41:93:
ff:b7:f5:96:c8:f7:be:62:28:11:db:c4:bc:f4:c3:
3b:83:15:a1:bd:6f:31:9f:7e:dd:1b:d8:e9:f6:05:
83:f8:8f:57:a7:ad:77:9b:bd:6b:63:ff:b7:d5:8e:
a2:73:9b:6e:fe:63:b3:05:40:50:09:3d:b6:d1:b4:
e0:8a:62:ee:53:0d:d6:70:52:7f:a0:2e:75:6f:9a:
0b:e4:69:31:9f:da:cf:4f:2a:c2:f6:d8:30:cb:e2:
fa:63:f8:4c:92:b6:cc:d9:a2:d8:f0:d3:8d:52:be:
39:e5:d0:78:11:07:23:fe:17:40:26:18:55:3a:21:
5e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:DA:4A:E9:23:09:8C:0B:0B:2F:0D:44:00:95:3E:33:8A:B3:30:4E
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/79pK6SMJjAsLLw1EAJU-M4qzME4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.199.0/24
109.205.215.0/24
164.215.100.0/23
Signature Algorithm: sha256WithRSAEncryption
d4:87:06:7c:24:54:25:b0:6e:10:25:4f:13:29:52:9c:6c:39:
2e:a2:64:0e:fe:1a:61:c0:66:df:73:fc:15:7a:a5:3a:61:c1:
d1:be:44:4d:30:1a:78:ef:96:5c:d6:f6:2c:b8:47:a7:0f:fd:
aa:cb:ca:77:c7:93:cd:4b:75:66:30:16:b2:f4:13:3d:4b:82:
93:b5:ca:4e:97:b0:3f:fe:de:f4:78:6c:f6:d9:45:05:11:af:
40:0e:e8:06:7e:6c:a0:68:a2:f0:ed:5d:d2:7a:e4:95:c1:f9:
44:06:66:51:e1:37:5e:93:72:e9:1f:30:d8:2e:6e:bf:a5:97:
bf:24:1d:7b:e9:ca:30:23:e8:2c:70:63:32:d7:10:38:ae:57:
0b:31:ac:1b:4b:58:2e:10:b3:48:9b:57:83:7f:02:48:84:a0:
5e:ee:03:b0:a4:71:9f:6a:27:95:ef:14:e9:c7:f8:c2:91:04:
b5:40:e1:14:40:4e:ad:20:29:6d:b3:2e:4b:6d:61:ae:a8:2b:
6d:03:d5:9c:34:ef:8e:81:8d:11:9f:3e:7e:c0:79:cf:ce:01:
d5:77:7f:08:d8:24:25:2b:4f:51:df:14:98:85:99:67:77:07:
98:83:65:dd:3a:ad:7e:eb:62:db:09:a1:8e:41:01:9b:36:21:
84:51:8e:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:50 2023 by rpki-client on console-ams.rpki-client.org