Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/FoD9ld1DvB0fhPG1enVDHfeYVpU.roa
File: FoD9ld1DvB0fhPG1enVDHfeYVpU.roa (raw, json)
Hash identifier: 2ayO4juSV9MX+Yxy6iUexWn49tVu3u8YC3KRdZue260=
Subject key identifier: 16:80:FD:95:DD:43:BC:1D:1F:84:F1:B5:7A:75:43:1D:F7:98:56:95
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B0328A3
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/FoD9ld1DvB0fhPG1enVDHfeYVpU.roa
Signing time: Sat 01 Jan 2022 13:58:01 +0000
ROA not before: Sat 01 Jan 2022 13:58:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199896
IP address blocks: 77.65.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 721627299 (0x2b0328a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1680fd95dd43bc1d1f84f1b57a75431df7985695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ad:58:b8:aa:5b:f7:d5:f8:1e:ef:99:74:93:
bb:9d:9f:17:63:97:70:6e:89:a0:c2:58:e4:2f:df:
8e:95:30:9b:6b:19:ae:ce:10:90:8a:29:2f:27:51:
6b:53:17:cf:b2:ea:eb:47:25:6a:63:36:94:1a:e0:
f9:61:c5:af:5d:f0:c6:46:0f:55:47:54:08:40:f0:
98:f5:7f:96:53:32:bd:36:62:7e:d5:aa:c7:d6:8d:
25:3f:e1:4e:61:e2:ed:54:0b:91:61:12:95:22:84:
bd:e6:15:1b:60:2d:da:73:79:0f:2c:b3:07:13:ed:
b9:f9:28:40:a7:a8:47:8c:14:f0:d7:cc:a1:cf:0d:
40:c1:c4:d4:5c:ac:6f:0b:d9:91:dd:18:c8:1b:72:
e0:4f:75:ec:f6:c0:4d:cf:00:9f:65:d3:e3:73:eb:
de:4f:47:f2:b3:53:f4:77:59:cb:e3:d1:17:82:49:
9a:0c:3d:f5:06:59:d5:58:53:90:c1:23:e2:79:7a:
b4:59:99:32:cb:1b:fa:35:7b:cc:31:1a:33:60:77:
42:07:a9:57:90:f4:6e:44:a6:3d:ff:3a:1a:4d:9c:
90:ef:b8:5d:88:fd:e9:d2:a5:71:78:ce:f4:12:78:
12:60:39:7e:34:3e:5b:68:95:7a:3a:ae:d2:fb:6f:
4e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:80:FD:95:DD:43:BC:1D:1F:84:F1:B5:7A:75:43:1D:F7:98:56:95
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/FoD9ld1DvB0fhPG1enVDHfeYVpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.135.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:b2:b1:a9:62:a6:cc:fa:c4:cf:f5:3b:26:19:e1:70:aa:7a:
25:48:74:aa:38:66:48:fb:4e:da:41:c6:aa:83:70:36:94:cc:
4e:54:8a:ab:2d:40:40:0a:b7:84:7c:96:c8:b3:3d:77:4c:74:
b6:0a:1f:40:9b:1e:75:4f:8c:05:44:91:b1:0a:97:7e:7b:f4:
ad:af:f0:f8:28:e2:13:d0:ce:63:64:25:8c:74:1f:13:67:e6:
42:ab:37:41:39:3b:30:d3:dc:e2:c4:68:cb:12:08:12:57:77:
91:64:7c:61:74:d1:ec:ac:1e:f3:ca:13:51:aa:23:a5:ee:5e:
d9:1d:dd:9a:b9:bd:e1:12:9e:14:a2:14:bd:fc:23:3f:e7:1e:
04:b5:bd:8c:59:f4:7a:c5:d2:51:cb:27:39:ba:bd:2e:a0:e1:
a5:dd:9f:40:32:88:6c:13:e4:e4:ff:d7:91:16:55:8e:70:51:
5c:80:51:57:e6:24:1c:2a:85:8f:21:76:b0:6c:06:64:ed:80:
60:b9:36:e8:5a:c8:61:0a:8a:03:c4:06:5c:a4:0a:7a:cd:a3:
ea:f4:90:28:0b:73:98:9d:5f:e2:2d:9f:8b:10:3f:f9:04:2a:
70:16:2d:f2:14:56:85:e3:90:8f:20:fd:c4:38:fe:19:22:46:
70:8f:d2:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org