Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/akV0bvX8K_NBr2cV3Dzom0HuaXo.roa
File: akV0bvX8K_NBr2cV3Dzom0HuaXo.roa (raw, json)
Hash identifier: pwwmLnxCWhkIZ+teW0aw2sDJTPNstTMe8gUrWtNxEh4=
Subject key identifier: 6A:45:74:6E:F5:FC:2B:F3:41:AF:67:15:DC:3C:E8:9B:41:EE:69:7A
Certificate issuer: /CN=2983841bc09f1fd4fe3de991016c0b7126fba52e
Certificate serial: 0183E0B251767308DAAD1C0610D8CA2CE383
Authority key identifier: 29:83:84:1B:C0:9F:1F:D4:FE:3D:E9:91:01:6C:0B:71:26:FB:A5:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYOEG8CfH9T-PemRAWwLcSb7pS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/akV0bvX8K_NBr2cV3Dzom0HuaXo.roa
Signing time: Sun 16 Oct 2022 12:08:46 +0000
ROA not before: Sun 16 Oct 2022 12:08:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210439
IP address blocks: 79.110.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e0:b2:51:76:73:08:da:ad:1c:06:10:d8:ca:2c:e3:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2983841bc09f1fd4fe3de991016c0b7126fba52e
Validity
Not Before: Oct 16 12:08:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a45746ef5fc2bf341af6715dc3ce89b41ee697a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4d:34:74:ae:4d:45:ad:0e:1a:b4:81:33:e0:
05:1e:92:bd:ff:52:bf:9e:87:b7:10:ee:9d:f0:16:
38:bc:03:a4:7f:df:6e:f0:f2:75:55:84:48:b5:87:
a0:2c:c9:87:2f:4a:bc:42:52:03:70:87:3b:27:63:
bb:e0:2b:a3:08:c0:d5:ec:37:b1:9f:01:2e:21:87:
b8:a6:1b:ef:09:d5:93:f0:66:65:56:8d:a4:01:3d:
89:06:35:b7:14:51:97:01:07:20:43:f2:5d:b5:cd:
66:4b:1c:82:95:87:33:6e:af:43:6b:fd:aa:36:fe:
ae:d6:1f:6d:ce:97:d9:16:ce:e0:0c:29:69:01:76:
f0:02:ba:21:80:2f:47:d9:3f:17:85:d4:98:99:76:
96:b6:5a:bd:ef:85:26:f9:20:48:9b:40:59:98:78:
af:fb:aa:50:e0:e9:cd:0d:f3:73:49:70:53:51:86:
5b:b2:8a:ff:f6:2f:cb:ba:96:12:b3:30:45:b3:be:
d1:2c:33:2f:8d:3f:29:88:6d:f3:fd:28:68:1a:5a:
c8:b5:d9:9f:3f:42:33:25:f2:61:d2:55:56:e4:e2:
79:64:42:37:f6:11:25:75:a9:33:c3:79:92:b5:9d:
fd:47:9d:c8:4c:aa:32:c9:cf:2a:d4:d4:3a:8a:3b:
7e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:45:74:6E:F5:FC:2B:F3:41:AF:67:15:DC:3C:E8:9B:41:EE:69:7A
X509v3 Authority Key Identifier:
keyid:29:83:84:1B:C0:9F:1F:D4:FE:3D:E9:91:01:6C:0B:71:26:FB:A5:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYOEG8CfH9T-PemRAWwLcSb7pS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/akV0bvX8K_NBr2cV3Dzom0HuaXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/KYOEG8CfH9T-PemRAWwLcSb7pS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.166.0/24
Signature Algorithm: sha256WithRSAEncryption
57:42:58:c7:99:8a:78:c3:8e:1a:9c:a7:06:54:e3:fe:0b:0f:
ce:61:c1:9a:da:91:10:92:b9:ba:78:8e:c2:25:9c:f5:9b:1a:
9f:e1:90:82:45:d1:d7:17:a6:3b:f1:cc:82:9d:ae:f9:86:6c:
08:0e:d9:54:50:dc:9f:d5:33:43:75:fc:32:75:ec:a2:38:17:
c0:c7:bb:5c:46:5c:dd:77:e2:59:16:ea:f5:23:d3:79:4d:e7:
7a:88:8b:40:f7:1b:60:50:fc:84:82:9a:92:4c:15:ca:7a:66:
6e:f4:33:2f:f4:ab:8d:f5:34:44:b7:b8:ac:c3:64:67:ac:80:
dd:9e:d6:f3:ce:b4:4c:42:bf:0c:af:80:4b:c8:2f:2a:b3:55:
0b:43:b7:42:e6:2c:74:81:ee:64:64:5a:db:a4:85:87:12:7c:
27:39:d7:92:9c:5c:2d:8a:22:11:40:4c:9a:2e:be:22:85:3a:
cc:31:f7:ad:db:32:86:e4:be:5a:4c:7e:33:94:b9:14:6b:94:
85:9b:19:ed:cf:ec:29:ff:84:77:25:49:91:3e:8f:ab:12:ea:
fc:ab:f7:3d:a2:32:d8:eb:5a:08:c5:84:ff:3e:dd:4c:d2:09:
aa:5e:28:3f:23:28:21:9c:72:70:86:9a:c1:47:6d:98:3d:68:
35:dc:78:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:11 2023 by rpki-client on console-fra.rpki-client.org