Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/794e80-e70a-4043-bb72-eca4545e178b/1/x595HWgYhCXhjcTzA8WSRmYaB6I.roa
File: x595HWgYhCXhjcTzA8WSRmYaB6I.roa (raw, json)
Hash identifier: msGSnYJAYTpRiNpZJE+KP+1720UCjsKuaUJ8sWiceo8=
Subject key identifier: C7:9F:79:1D:68:18:84:25:E1:8D:C4:F3:03:C5:92:46:66:1A:07:A2
Certificate issuer: /CN=0dde6317311fe6d538577c17fec982b82eea9abd
Certificate serial: 02841F47
Authority key identifier: 0D:DE:63:17:31:1F:E6:D5:38:57:7C:17:FE:C9:82:B8:2E:EA:9A:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dd5jFzEf5tU4V3wX_smCuC7qmr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/794e80-e70a-4043-bb72-eca4545e178b/1/x595HWgYhCXhjcTzA8WSRmYaB6I.roa
Signing time: Sat 01 Jan 2022 11:54:38 +0000
ROA not before: Sat 01 Jan 2022 11:54:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9144
IP address blocks: 79.99.92.0/24 maxlen: 24
79.99.93.0/24 maxlen: 24
79.99.95.0/24 maxlen: 24
79.99.94.0/24 maxlen: 24
195.5.179.0/24 maxlen: 24
2a0b:c4c6::/32 maxlen: 32
2a0b:c4c3::/32 maxlen: 32
2a0b:c4c0::/30 maxlen: 30
2a0b:c4c4::/30 maxlen: 30
2a0b:c4c7::/32 maxlen: 32
2a0b:c4c1::/32 maxlen: 32
2a0b:c4c4::/32 maxlen: 32
2a0b:c4c0::/32 maxlen: 32
2a0b:c4c2::/32 maxlen: 32
2a0b:c4c5::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42213191 (0x2841f47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dde6317311fe6d538577c17fec982b82eea9abd
Validity
Not Before: Jan 1 11:54:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c79f791d68188425e18dc4f303c59246661a07a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6d:82:7b:ab:d9:ab:86:6b:21:a6:f3:31:13:
00:58:19:63:70:e1:07:c6:74:91:e7:3a:23:cc:c5:
c3:2d:8f:18:9c:45:f3:49:a0:7c:9e:2f:fd:09:33:
9d:7c:f2:f4:bd:76:83:a3:1f:64:91:04:57:db:a9:
94:53:b4:a6:ef:ef:6c:df:9a:ce:1f:e1:6f:9f:d4:
8d:16:72:24:4a:a6:bd:83:97:d0:6d:ac:fb:d3:fa:
c9:2b:70:44:4b:c6:3c:e9:06:7c:f9:ee:05:7e:09:
4a:28:b2:97:81:8b:a6:85:69:f5:62:9f:f8:2c:a5:
01:24:84:4b:12:16:7f:be:d1:c7:54:fb:cc:45:eb:
91:3d:4b:2b:d8:36:d9:e8:6e:11:e8:3e:03:02:78:
ec:f6:42:e6:98:49:5d:08:80:4a:ba:91:47:73:bd:
5b:f5:7f:44:a8:4b:92:01:5b:5b:75:63:87:4b:7f:
64:a9:ee:d1:d0:65:ec:51:a7:95:9b:2a:21:54:26:
6d:94:24:4e:aa:80:a6:7c:ee:3e:25:7f:ef:00:0b:
59:30:35:c5:a7:44:de:d2:fa:bd:27:07:dc:bd:e1:
48:45:99:34:6c:f2:f4:da:56:ed:fa:30:3e:85:4f:
4e:89:8e:1b:ae:0b:53:9e:5f:2f:3b:ab:6c:d3:e6:
05:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:9F:79:1D:68:18:84:25:E1:8D:C4:F3:03:C5:92:46:66:1A:07:A2
X509v3 Authority Key Identifier:
keyid:0D:DE:63:17:31:1F:E6:D5:38:57:7C:17:FE:C9:82:B8:2E:EA:9A:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dd5jFzEf5tU4V3wX_smCuC7qmr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/794e80-e70a-4043-bb72-eca4545e178b/1/x595HWgYhCXhjcTzA8WSRmYaB6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/794e80-e70a-4043-bb72-eca4545e178b/1/Dd5jFzEf5tU4V3wX_smCuC7qmr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.99.92.0/22
195.5.179.0/24
IPv6:
2a0b:c4c0::/29
Signature Algorithm: sha256WithRSAEncryption
12:1c:48:11:cd:95:bf:c2:7e:44:3a:57:9c:81:6d:ae:47:c5:
0a:27:cd:80:90:c4:45:62:5a:4f:0f:64:a7:ff:11:22:d7:b8:
d8:d5:67:60:a3:81:35:aa:9e:7e:b3:b8:d0:f2:38:91:2a:06:
4a:a8:cb:a8:90:61:3e:f8:f0:0a:7d:3b:a7:a3:d0:d5:95:4c:
9b:87:a3:4b:88:77:f2:a1:e8:d6:06:8b:2a:5a:04:95:34:7c:
3d:62:22:ca:c6:29:3f:7d:e6:04:57:46:c0:71:ff:18:5b:7a:
16:40:8d:ed:10:93:84:e8:aa:0a:6b:a7:3d:31:21:44:f3:b3:
74:25:ea:9b:4f:df:91:8a:b4:0a:f9:69:1d:a7:38:1c:ba:f1:
99:6e:1e:7b:e5:15:1f:c1:8e:3b:39:f2:04:9c:e6:32:f6:d7:
71:a3:5b:36:a1:b3:64:1f:1f:9b:65:25:75:1c:fc:b4:11:d8:
ee:a2:1e:04:59:e5:9e:4c:0a:76:ae:90:c3:31:c5:e0:fb:38:
c3:c8:8e:31:f5:51:db:24:3a:33:36:ba:f2:63:84:be:db:81:
cc:0d:e7:12:35:e9:e9:d4:a3:15:1e:60:60:e4:15:51:ec:f8:
81:1a:11:9a:ac:b5:d1:52:6f:21:35:88:b2:4d:25:57:07:90:
fc:19:62:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:07 2024 by rpki-client on console-ams.rpki-client.org