Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/83QzGgJuUGt66KWvmJRvXUuWPOc.roa
File: 83QzGgJuUGt66KWvmJRvXUuWPOc.roa (raw, json)
Hash identifier: 517BwVpuYXHzpm7qJk4eVkXD3Nr6hB5SIozxj6OhcFI=
Subject key identifier: F3:74:33:1A:02:6E:50:6B:7A:E8:A5:AF:98:94:6F:5D:4B:96:3C:E7
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B2295F8
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/83QzGgJuUGt66KWvmJRvXUuWPOc.roa
Signing time: Sat 01 Jan 2022 13:58:18 +0000
ROA not before: Sat 01 Jan 2022 13:58:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210866
IP address blocks: 77.65.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 723686904 (0x2b2295f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f374331a026e506b7ae8a5af98946f5d4b963ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c4:45:5c:05:40:fc:75:f2:c2:c9:81:cc:27:
48:26:91:d0:9a:4a:c0:8a:bd:de:67:72:9b:69:9b:
f9:27:32:1e:f1:ac:c2:de:b5:5d:9d:b6:f6:ae:b0:
3a:3f:65:c8:11:c3:a1:c2:2e:2a:10:5f:99:b4:e3:
76:dd:42:a0:be:1d:04:bf:59:f4:6d:c0:c1:62:b6:
09:f0:3f:72:7a:54:df:55:23:59:4a:35:d3:f9:6f:
ca:fe:23:95:a3:04:aa:d9:95:0e:eb:17:7d:d0:c7:
cf:42:21:b2:24:25:8e:ef:bc:12:2f:23:2b:e3:00:
92:72:43:a4:fb:5b:04:b4:4a:f1:8f:d0:53:5b:58:
78:ef:fe:b3:2a:ad:a2:80:a2:be:41:bd:d1:b8:33:
8b:b4:62:7d:2a:a9:24:5c:54:d8:88:05:7c:1f:eb:
1f:22:57:65:72:97:97:c7:8e:a0:c4:b4:59:ef:6a:
c0:4b:ff:4d:60:7a:85:8b:d0:1a:a4:8e:bd:84:24:
53:87:87:20:4f:21:a6:11:7f:b0:fb:1d:60:6b:7c:
c6:2b:68:5a:8b:60:5c:c5:86:d7:f1:04:d4:dd:d3:
68:4a:a6:39:00:df:cf:51:fc:fd:82:a7:62:21:06:
7f:3e:31:66:53:93:03:48:ed:cb:a0:10:3e:e0:ec:
1b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:74:33:1A:02:6E:50:6B:7A:E8:A5:AF:98:94:6F:5D:4B:96:3C:E7
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/83QzGgJuUGt66KWvmJRvXUuWPOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.208.0/24
Signature Algorithm: sha256WithRSAEncryption
83:c6:9e:e5:25:99:b8:73:5f:d3:ac:03:8f:bc:84:e0:e5:58:
1c:f0:bf:92:62:69:37:ea:da:b3:d4:2b:ae:94:d5:11:e0:ac:
05:e2:19:a2:e9:43:25:df:5e:8c:34:68:f1:2a:3b:fe:df:c5:
b2:76:0c:b8:96:0c:71:c7:55:6e:2f:9b:0f:3b:93:b7:ea:98:
a6:d8:20:08:12:90:09:32:43:e0:60:56:72:e9:df:96:ad:8b:
d5:ac:5f:ac:f4:01:2e:44:83:33:7a:bc:37:d8:ff:a2:2a:45:
f1:20:f9:c6:80:f2:77:73:25:70:5c:38:55:4c:35:f2:46:7f:
10:67:dc:cc:ab:1e:89:64:47:ac:85:f5:a7:8a:93:d7:91:ff:
72:77:a2:bf:fc:7c:24:53:ee:3e:02:86:54:ea:cb:58:c4:4f:
b0:62:ec:c6:99:d3:19:0b:f3:22:f4:19:f3:52:30:ef:da:c6:
d4:b3:9b:8b:4b:0e:bd:45:83:23:f2:c3:36:da:4e:b3:eb:43:
3d:ec:a0:ab:94:bf:2d:d8:00:eb:93:b2:68:85:92:6f:c1:13:
65:4d:50:6f:e5:78:a0:5a:43:a0:98:f5:11:80:45:17:2a:33:
44:d0:e5:bd:ac:25:fc:1d:f6:0b:45:5e:ef:b8:e1:a1:cf:9f:
be:f9:76:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org