Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/e2RvJNzyEUemtG9Cd8jC2nYR2ok.roa
File: e2RvJNzyEUemtG9Cd8jC2nYR2ok.roa (raw, json)
Hash identifier: zopnC81MfmP4Zh42NlNra+nu6eiUyfrQj2xpwtWuzLE=
Subject key identifier: 7B:64:6F:24:DC:F2:11:47:A6:B4:6F:42:77:C8:C2:DA:76:11:DA:89
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 0E314297
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/e2RvJNzyEUemtG9Cd8jC2nYR2ok.roa
Signing time: Wed 30 Mar 2022 14:11:16 +0000
ROA not before: Wed 30 Mar 2022 14:11:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43966
IP address blocks: 79.173.80.0/20 maxlen: 24
94.243.192.0/20 maxlen: 24
94.243.232.0/21 maxlen: 24
79.173.64.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 238109335 (0xe314297)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Mar 30 14:11:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b646f24dcf21147a6b46f4277c8c2da7611da89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a1:45:c9:65:71:0c:93:06:b0:f0:0b:ba:94:
1b:ab:e0:8f:d4:4c:e4:f8:89:d7:b3:03:5f:f4:bf:
1e:01:f2:eb:c6:ad:67:37:70:3d:42:c9:f6:0a:bc:
c1:2d:d1:9b:24:da:ed:1c:a3:b1:32:d5:3b:1a:bb:
49:30:be:37:e0:58:f5:83:ef:c7:91:ba:95:b8:91:
5f:ba:33:06:b1:a6:67:ec:3a:1c:28:be:20:e2:fe:
01:27:d2:64:ea:cb:4d:0e:bb:f8:36:d8:a2:63:a6:
c3:af:22:22:db:b2:26:0e:27:73:d8:44:f3:6e:bb:
a3:ff:df:0c:1c:34:bf:90:c8:5c:b9:49:51:16:80:
d4:0f:c2:b2:17:57:15:00:dc:f4:7e:51:04:0a:fc:
0f:ad:86:55:3d:e3:5a:7f:e7:ec:08:91:a4:de:2b:
af:1e:73:b7:3a:be:cb:e1:cd:ac:d4:15:d3:ec:1f:
c9:05:f4:7e:69:5d:a3:01:a8:94:bd:08:a7:a0:69:
92:c5:b7:56:75:0d:df:b5:bd:d4:78:8c:ee:71:7c:
a1:40:48:cf:db:21:ed:18:46:9f:61:11:31:b1:d4:
41:72:ea:32:e5:bc:65:37:4f:d1:75:44:30:a2:c8:
9f:1c:bb:e3:eb:82:f6:44:d5:09:9a:47:30:31:2c:
29:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:64:6F:24:DC:F2:11:47:A6:B4:6F:42:77:C8:C2:DA:76:11:DA:89
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/e2RvJNzyEUemtG9Cd8jC2nYR2ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.173.64.0/23
79.173.80.0/20
94.243.192.0/20
94.243.232.0/21
Signature Algorithm: sha256WithRSAEncryption
89:b1:dd:cf:1a:fd:b6:b4:0e:25:88:81:89:be:05:fc:c4:5e:
ea:a0:d8:3f:a6:83:0f:f6:3e:a0:c4:46:32:5e:8f:66:8e:70:
9f:b5:d5:41:e4:02:25:4e:ef:8c:c0:cc:0f:c3:33:4d:38:a3:
c5:70:d4:4d:15:d1:33:fd:04:52:66:90:47:56:c3:fc:29:e0:
6f:90:f6:11:20:84:85:30:dd:82:ee:d6:34:cd:0d:df:30:7b:
23:03:49:6a:8e:2a:6a:1b:49:11:e7:30:f0:b2:da:8a:2a:c1:
51:6a:b3:0f:62:99:44:9e:6f:0e:ae:7a:85:f8:db:7e:a1:49:
a6:f0:aa:d4:cc:26:2f:c0:0e:49:a7:1d:61:b7:d0:b8:83:cb:
5a:4a:88:d2:85:fe:a2:8a:65:a8:53:3b:14:be:5e:f0:b0:42:
ff:34:b4:1c:13:41:c0:41:02:42:7e:5c:7c:27:88:77:65:4f:
02:f0:42:06:01:69:51:be:11:80:a8:de:a4:2b:7b:1b:ae:bf:
fd:15:87:c1:5d:01:45:bf:04:d1:2e:da:ac:35:d1:45:af:ec:
49:b0:19:ce:ed:82:0a:79:48:6b:69:3e:76:f2:92:68:12:fa:
b3:ea:b4:b1:17:72:f3:39:61:2d:ff:96:17:ae:a8:b4:d3:03:
bf:d8:35:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:42 2023 by rpki-client on console.sobornost.net