Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/ibkqfcRzKQGnHIGNblY8S6PJ7-g.roa
File: ibkqfcRzKQGnHIGNblY8S6PJ7-g.roa (raw, json)
Hash identifier: C0Vwq+c/xUQtmk6qd3IO9+50jSjs0+wnZe8Fxwg04Fg=
Subject key identifier: 89:B9:2A:7D:C4:73:29:01:A7:1C:81:8D:6E:56:3C:4B:A3:C9:EF:E8
Certificate issuer: /CN=2983841bc09f1fd4fe3de991016c0b7126fba52e
Certificate serial: 0184D315BF2FFCA1D8A006BDB606A1EA3D06
Authority key identifier: 29:83:84:1B:C0:9F:1F:D4:FE:3D:E9:91:01:6C:0B:71:26:FB:A5:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYOEG8CfH9T-PemRAWwLcSb7pS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/ibkqfcRzKQGnHIGNblY8S6PJ7-g.roa
Signing time: Fri 02 Dec 2022 13:45:28 +0000
ROA not before: Fri 02 Dec 2022 13:45:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 79.110.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d3:15:bf:2f:fc:a1:d8:a0:06:bd:b6:06:a1:ea:3d:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2983841bc09f1fd4fe3de991016c0b7126fba52e
Validity
Not Before: Dec 2 13:45:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89b92a7dc4732901a71c818d6e563c4ba3c9efe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d9:19:d0:b3:a9:46:a4:51:58:a1:6b:d4:0a:
45:2f:fb:09:6f:0e:79:92:ee:35:ac:80:91:74:c9:
31:75:4b:22:45:ab:2b:01:b5:2f:8d:e3:1b:d2:54:
4f:7c:39:b8:e2:f6:f5:69:af:29:bc:03:37:6c:c5:
20:ad:e5:e6:8c:24:96:30:96:19:0f:d8:e4:c0:26:
21:10:ac:9d:7b:53:2a:0d:9d:a9:49:9c:5f:68:e3:
92:6f:be:c3:8d:c9:f1:66:19:93:b2:05:16:78:6a:
de:41:e3:2f:a8:71:f9:b5:13:a3:3d:2f:fb:40:1c:
6f:49:c5:a0:b2:2b:02:ef:11:5b:d8:cf:60:a6:40:
59:91:d8:38:fc:bf:41:2a:72:e1:e4:a0:e1:84:a1:
4b:2d:82:a7:4a:e7:f3:23:99:f8:2b:65:cd:d8:05:
26:7d:b8:e0:e4:19:6f:15:4d:f2:50:c0:f4:f8:96:
9b:d7:96:6f:34:42:af:15:26:26:ca:01:33:e7:f9:
06:b7:70:4d:45:75:7f:ff:91:a3:bb:94:f8:3d:83:
f9:07:e8:c8:10:d1:b6:a3:ac:39:6a:4b:bb:a8:b7:
ba:7b:63:4a:c6:d4:2a:80:ae:78:78:6f:0f:6c:87:
50:39:8a:81:75:68:63:8b:32:45:10:d2:a2:18:82:
f9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B9:2A:7D:C4:73:29:01:A7:1C:81:8D:6E:56:3C:4B:A3:C9:EF:E8
X509v3 Authority Key Identifier:
keyid:29:83:84:1B:C0:9F:1F:D4:FE:3D:E9:91:01:6C:0B:71:26:FB:A5:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYOEG8CfH9T-PemRAWwLcSb7pS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/ibkqfcRzKQGnHIGNblY8S6PJ7-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/KYOEG8CfH9T-PemRAWwLcSb7pS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.166.0/24
Signature Algorithm: sha256WithRSAEncryption
17:7d:7c:ca:ff:87:db:d7:52:7a:6f:b3:71:fc:2d:7a:78:07:
a1:e2:6a:2c:bf:10:ed:b6:24:e3:31:93:fe:80:5e:f7:1b:a9:
6d:cb:90:b5:c6:8c:d4:10:8e:00:cd:f4:44:e3:7e:cf:07:79:
99:6f:84:4a:ba:25:bb:74:be:3c:c2:96:bb:33:2a:2c:9e:79:
41:5b:9a:04:b7:c1:b2:a2:e1:e9:8d:5d:48:e0:1a:64:24:11:
f1:ce:5a:94:b1:b5:d7:ad:b7:c5:2c:91:a8:d6:75:cc:ce:8d:
ba:fb:2e:f7:ca:6f:9e:cb:91:05:02:1d:2d:8a:0c:9c:ad:d8:
eb:81:fd:0a:e8:6a:0d:3d:f9:bf:52:3f:d6:1a:c4:c3:18:77:
dd:9c:8d:e7:a4:41:8e:e9:03:d7:ca:5a:31:f4:9d:c5:b9:72:
06:71:f3:86:50:07:c4:f8:2f:e2:53:89:76:18:5a:f0:80:e5:
da:99:64:d6:12:88:ac:96:13:6f:71:8f:99:89:9b:83:f2:59:
2b:91:01:e7:66:d9:3e:6f:7c:77:e4:97:a9:b6:a8:67:e9:4e:
bd:7c:dc:82:44:05:ed:e4:d1:65:ea:cc:a7:36:06:d7:51:57:
ef:94:d2:27:c2:27:e3:30:bf:26:4f:7e:0e:bf:02:57:2c:93:
33:b5:5f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:44 2024 by rpki-client on console-ams.rpki-client.org