Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/aH8H95DemFgQCgL6HillOwH0F6Q.roa
File: aH8H95DemFgQCgL6HillOwH0F6Q.roa (raw, json)
Hash identifier: eWjZLR9LfyQtj35kZNhR3NDQ5I4HhQCGXLzaR8xyxBM=
Subject key identifier: 68:7F:07:F7:90:DE:98:58:10:0A:02:FA:1E:29:65:3B:01:F4:17:A4
Certificate issuer: /CN=2983841bc09f1fd4fe3de991016c0b7126fba52e
Certificate serial: 0184D315C07524E2B2D8EBFE9093B7361716
Authority key identifier: 29:83:84:1B:C0:9F:1F:D4:FE:3D:E9:91:01:6C:0B:71:26:FB:A5:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYOEG8CfH9T-PemRAWwLcSb7pS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/aH8H95DemFgQCgL6HillOwH0F6Q.roa
Signing time: Fri 02 Dec 2022 13:45:28 +0000
ROA not before: Fri 02 Dec 2022 13:45:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211936
IP address blocks: 79.110.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d3:15:c0:75:24:e2:b2:d8:eb:fe:90:93:b7:36:17:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2983841bc09f1fd4fe3de991016c0b7126fba52e
Validity
Not Before: Dec 2 13:45:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=687f07f790de9858100a02fa1e29653b01f417a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b8:19:96:34:26:24:11:a2:76:c2:31:01:ea:
78:a9:1d:59:36:ce:4c:b9:5c:b8:1e:79:09:ae:ba:
51:1d:8b:55:2a:16:9c:0e:30:71:d8:48:b3:6d:52:
33:64:d0:55:da:42:ab:4b:41:2a:6b:2f:ea:98:db:
ee:5c:83:2a:1f:37:0e:e6:4a:2f:05:b5:1c:ff:74:
53:77:1e:e0:66:0a:14:65:82:54:a1:e3:04:28:10:
87:2d:52:56:70:4f:11:f0:dd:17:ff:53:f2:5c:0b:
be:4d:c4:41:9c:8e:2b:2d:98:c6:8b:c8:80:11:13:
0b:23:88:18:00:e9:e3:66:c0:de:18:2a:c7:7b:bf:
35:78:73:86:38:f1:11:7f:e9:fb:6b:31:a4:ab:49:
c3:27:3c:3e:98:2e:28:66:d0:56:2d:a9:05:19:f1:
d4:6c:90:ff:03:89:4c:6b:48:1e:a0:26:e1:b1:44:
1f:60:b1:0b:e7:02:e4:6c:b7:ed:83:1f:ca:90:7f:
bf:71:98:bc:b7:f4:bd:db:7b:e5:26:8f:bc:a5:16:
b4:99:4f:34:84:60:c9:43:73:ce:b2:52:ca:64:15:
d9:bb:5f:60:57:c0:f2:4a:9d:a6:71:85:06:f6:5d:
42:bd:36:32:af:75:7c:e9:47:6d:0e:d2:3a:9d:be:
12:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:7F:07:F7:90:DE:98:58:10:0A:02:FA:1E:29:65:3B:01:F4:17:A4
X509v3 Authority Key Identifier:
keyid:29:83:84:1B:C0:9F:1F:D4:FE:3D:E9:91:01:6C:0B:71:26:FB:A5:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYOEG8CfH9T-PemRAWwLcSb7pS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/aH8H95DemFgQCgL6HillOwH0F6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/KYOEG8CfH9T-PemRAWwLcSb7pS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.166.0/24
Signature Algorithm: sha256WithRSAEncryption
39:70:4f:95:cf:ff:cf:ca:f6:fb:c7:02:6a:9b:49:15:f0:3d:
5c:66:de:01:74:da:a7:e5:42:5f:7c:94:fc:9e:29:36:c5:05:
8f:74:b0:33:e5:8b:b0:38:c1:5d:9d:ce:8c:00:6b:ab:b6:fa:
6f:0f:28:e6:7b:6f:ef:6f:ba:22:4f:c4:47:bc:26:fa:ab:6e:
dc:cc:dc:41:55:ff:b7:cf:d1:5e:ca:46:ac:d6:28:97:51:28:
63:41:f9:ba:71:88:a8:62:02:3e:25:a1:30:de:fa:11:20:3b:
fb:0d:1a:27:e3:2f:ee:dd:24:9f:0b:7f:31:f8:16:bf:57:e8:
86:31:ae:98:8d:9d:6f:3e:fe:d3:bc:29:dd:c7:aa:2f:10:48:
56:df:29:ee:5b:fc:79:81:de:e4:f9:a1:8b:88:31:6b:45:11:
3e:46:3c:e1:ed:d0:4c:e3:be:8b:0c:f4:0d:be:61:ae:0a:a0:
33:6d:be:13:a4:c1:6a:77:a5:0d:9d:17:55:4d:74:24:e4:b4:
30:1b:37:dd:d3:97:2f:b1:55:b0:a8:72:1c:6a:ae:e2:9e:93:
9a:7a:91:35:dd:a2:a3:41:18:db:db:51:d2:c6:4a:4f:eb:4e:
f9:cd:fa:3a:89:0a:86:8d:b0:59:5f:28:f1:b3:85:5f:55:e6:
21:80:d9:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:44 2024 by rpki-client on console-ams.rpki-client.org