Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/e0f9e6-d655-4377-8d09-ea86509c3b30/1/74JjNc7VKOY5Cv86fHrUvsn7IUU.roa
File: 74JjNc7VKOY5Cv86fHrUvsn7IUU.roa (raw, json)
Hash identifier: E6ISK3TALkhm2Bkg4E+q3O02IM4dKll6GNm7LOy0Hc4=
Subject key identifier: EF:82:63:35:CE:D5:28:E6:39:0A:FF:3A:7C:7A:D4:BE:C9:FB:21:45
Certificate issuer: /CN=ef0efd5de78f93bcaead15e14c006edbbd1b5955
Certificate serial: 01828C390DE3D06103750269CF200338CC98
Authority key identifier: EF:0E:FD:5D:E7:8F:93:BC:AE:AD:15:E1:4C:00:6E:DB:BD:1B:59:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7w79XeePk7yurRXhTABu270bWVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/e0f9e6-d655-4377-8d09-ea86509c3b30/1/74JjNc7VKOY5Cv86fHrUvsn7IUU.roa
Signing time: Thu 11 Aug 2022 09:25:25 +0000
ROA not before: Thu 11 Aug 2022 09:25:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47159
IP address blocks: 94.248.176.0/21 maxlen: 21
91.147.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8c:39:0d:e3:d0:61:03:75:02:69:cf:20:03:38:cc:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef0efd5de78f93bcaead15e14c006edbbd1b5955
Validity
Not Before: Aug 11 09:25:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef826335ced528e6390aff3a7c7ad4bec9fb2145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4e:0d:b3:75:a5:c9:c9:5c:f3:33:08:5d:10:
ee:2d:91:aa:c9:89:e7:12:99:dc:d6:6c:14:f3:01:
ac:6f:dd:6b:db:7d:aa:aa:4d:ae:e7:46:c0:cb:d1:
5a:d4:cb:b6:54:a5:72:13:0e:c4:4d:69:7e:e4:92:
ef:52:73:20:35:02:e9:c4:50:b2:1a:4e:8f:29:b9:
50:fa:2b:51:f4:47:35:4e:d1:3c:8e:1a:d7:d4:b1:
70:96:81:70:de:91:01:69:45:aa:ac:fd:8b:6b:56:
61:ca:52:07:54:b2:2a:7f:fb:be:c8:e8:fd:a6:68:
d1:8d:84:55:0b:70:71:82:5d:fc:f2:11:01:42:1b:
f2:1c:2f:ee:99:e8:a4:22:76:09:50:dc:f6:7b:bf:
f5:06:9f:17:b8:01:cd:fa:8f:56:b6:ea:2a:e2:ec:
fc:5c:0a:fc:41:26:82:09:51:9a:d3:29:2e:ec:4e:
1b:0d:ab:93:4b:ca:2e:12:ce:15:bf:16:00:47:24:
1d:6f:98:09:77:36:52:98:c0:df:8c:df:6a:12:ab:
af:6c:ac:58:67:9f:63:d5:72:4f:71:22:55:84:68:
ac:31:33:7b:35:94:15:3e:9d:b9:c3:a7:2a:0f:25:
d6:4d:ac:49:a0:74:a4:f8:b1:98:35:e9:de:56:53:
db:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:82:63:35:CE:D5:28:E6:39:0A:FF:3A:7C:7A:D4:BE:C9:FB:21:45
X509v3 Authority Key Identifier:
keyid:EF:0E:FD:5D:E7:8F:93:BC:AE:AD:15:E1:4C:00:6E:DB:BD:1B:59:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7w79XeePk7yurRXhTABu270bWVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/e0f9e6-d655-4377-8d09-ea86509c3b30/1/74JjNc7VKOY5Cv86fHrUvsn7IUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/e0f9e6-d655-4377-8d09-ea86509c3b30/1/7w79XeePk7yurRXhTABu270bWVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.147.216.0/21
94.248.176.0/21
Signature Algorithm: sha256WithRSAEncryption
a6:7e:1b:4c:63:3a:94:3a:3b:86:fd:75:f2:23:c9:61:93:f7:
18:88:43:9e:26:ec:7d:46:24:d4:d3:dd:cb:bf:c7:77:6c:8b:
dc:e4:17:b7:46:2b:4d:9e:d8:5f:4e:8f:15:95:dc:4d:34:e4:
1a:d4:39:23:79:f6:58:98:cc:66:66:24:9e:87:e9:24:2c:8a:
02:10:30:9d:62:1a:46:91:2e:a7:8d:c5:3e:6a:1d:c9:92:65:
6e:b0:57:0e:1f:ea:b2:6f:c0:14:4f:85:55:d4:fd:3c:cf:8c:
f6:74:27:ae:ae:2f:2c:aa:b1:cd:76:c3:f5:29:d8:e9:ae:5c:
24:39:24:79:f5:c1:d4:fb:fe:88:1f:4a:27:f3:0f:70:f0:0b:
5d:b4:5b:9f:24:9d:ba:9e:b9:85:1d:e3:31:d6:bd:a1:0a:d7:
5b:cb:70:61:7c:fa:2c:2f:ea:23:c3:5c:10:63:5c:59:33:c2:
5e:0b:f0:f8:39:94:49:12:a2:31:41:5d:d8:6d:c7:be:22:e3:
1d:88:4d:a8:5b:0c:6d:86:6b:62:2a:41:69:c5:48:46:24:f8:
a5:63:be:29:56:05:47:34:30:b9:50:9e:a0:c2:11:6e:77:54:
bb:8c:b1:25:84:7a:b2:da:fa:06:2b:b7:ea:d2:07:8e:37:47:
07:de:aa:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:34 2023 by rpki-client on console.sobornost.net