Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/f0dd5f-b972-410b-9907-166fb9db6db3/1/skDgYlDYBhV7ZWOS6D1Rl0nQG3Y.roa
File: skDgYlDYBhV7ZWOS6D1Rl0nQG3Y.roa (raw, json)
Hash identifier: LX++4fMbL4fUgAc8dMlXB/sOlROd2dpk8vUKhL79Ur8=
Subject key identifier: B2:40:E0:62:50:D8:06:15:7B:65:63:92:E8:3D:51:97:49:D0:1B:76
Certificate issuer: /CN=4d302a2dd517a61a3b952746f2ee9fbe436d6349
Certificate serial: 35595AD4
Authority key identifier: 4D:30:2A:2D:D5:17:A6:1A:3B:95:27:46:F2:EE:9F:BE:43:6D:63:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTAqLdUXpho7lSdG8u6fvkNtY0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/f0dd5f-b972-410b-9907-166fb9db6db3/1/skDgYlDYBhV7ZWOS6D1Rl0nQG3Y.roa
Signing time: Sat 01 Jan 2022 05:54:40 +0000
ROA not before: Sat 01 Jan 2022 05:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43950
IP address blocks: 79.98.32.0/21 maxlen: 21
79.98.33.0/24 maxlen: 24
79.98.32.0/24 maxlen: 24
79.98.35.0/24 maxlen: 24
79.98.39.0/24 maxlen: 24
2a01:568::/32 maxlen: 32
2a01:568:5000::/36 maxlen: 36
2a01:568:4000::/36 maxlen: 36
2a01:568:3000::/36 maxlen: 36
2a01:568::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 895048404 (0x35595ad4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d302a2dd517a61a3b952746f2ee9fbe436d6349
Validity
Not Before: Jan 1 05:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b240e06250d806157b656392e83d519749d01b76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:49:4a:e4:06:c9:88:b0:3b:aa:89:87:2c:8f:
94:a5:bc:ba:10:84:75:7d:b1:18:41:b8:a2:16:35:
ea:b9:92:b7:b3:53:8e:f5:0e:82:0c:63:03:2d:2a:
ac:3f:da:63:24:85:6b:bc:91:f9:79:27:86:e7:f9:
ca:1a:cd:ca:2c:7d:eb:78:8c:42:15:a5:03:79:87:
c6:1f:f2:09:a6:58:94:d0:ef:33:97:43:45:70:7e:
b0:b7:bb:62:b6:b8:a0:ae:47:b0:70:94:5f:d2:c6:
91:91:0d:c8:f1:a0:07:63:1a:53:fa:2d:7c:ea:46:
48:a8:c5:e7:24:82:0a:23:95:3a:0b:1e:e5:4b:7e:
83:77:71:93:d0:a8:4c:58:26:fb:8b:23:6e:fb:a9:
3f:41:d2:7d:e6:be:72:50:6a:eb:75:b0:b7:8e:f8:
9e:86:76:f5:dd:a4:99:27:95:59:76:44:59:f7:1b:
d4:81:c8:bd:cd:8c:b9:d8:a0:81:d8:3b:62:b9:34:
94:df:d8:8b:f0:90:d4:a0:43:12:d7:bd:7d:46:2a:
a1:31:07:04:e5:b6:4e:57:6f:a0:c0:5f:2a:b7:4c:
8e:db:06:d9:7f:ba:01:0a:90:89:f6:08:b4:72:63:
00:d7:9e:57:d8:e5:d4:2e:35:3f:71:c7:2a:4b:ce:
3b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:40:E0:62:50:D8:06:15:7B:65:63:92:E8:3D:51:97:49:D0:1B:76
X509v3 Authority Key Identifier:
keyid:4D:30:2A:2D:D5:17:A6:1A:3B:95:27:46:F2:EE:9F:BE:43:6D:63:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTAqLdUXpho7lSdG8u6fvkNtY0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f0dd5f-b972-410b-9907-166fb9db6db3/1/skDgYlDYBhV7ZWOS6D1Rl0nQG3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f0dd5f-b972-410b-9907-166fb9db6db3/1/TTAqLdUXpho7lSdG8u6fvkNtY0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.32.0/21
IPv6:
2a01:568::/32
Signature Algorithm: sha256WithRSAEncryption
b6:00:66:81:b3:bd:e9:d2:d8:1a:67:30:eb:bf:8e:bc:45:83:
2f:ff:d2:2c:69:80:0a:d9:3b:f6:fd:83:ca:59:a5:1d:8f:63:
7c:76:c1:58:9b:0a:81:d4:72:4f:f9:32:82:60:64:4d:e1:6d:
7b:7f:da:42:ec:b0:20:49:89:35:1c:2c:73:e4:50:ad:f1:9c:
cc:fc:55:da:f4:1a:4b:5a:33:59:9d:4a:63:83:e0:dd:f5:7d:
1f:c2:87:fb:7d:4c:fe:ac:34:cc:68:68:f6:f1:9a:1f:a8:19:
56:19:03:57:ef:b2:8c:4c:59:2b:a2:bf:3d:68:c8:2a:aa:8e:
06:ac:8d:52:e2:93:63:ab:60:fe:74:2f:25:49:24:de:3e:34:
ac:f4:79:6c:1b:4b:e4:6c:41:c2:fd:a3:62:1b:40:0a:a1:d4:
82:13:6b:fc:03:3f:22:cc:16:d5:67:d9:ea:72:39:2d:ca:09:
3f:50:a1:b6:06:d1:75:27:d5:5f:d1:4f:4c:63:e0:93:f0:b0:
80:e2:19:d1:1d:a0:19:b8:d7:19:6f:c1:03:47:af:a1:7c:5b:
82:b0:a4:ce:cb:8d:db:f9:cf:a9:7c:67:80:7a:61:d5:00:93:
1b:b1:fd:0a:76:0e:ce:87:48:78:4c:08:d6:60:b3:54:4c:d4:
ff:6a:7e:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:04 2024 by rpki-client on console-ams.rpki-client.org