Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/H5ljZEN0-d9tIh-D-6Ci-F5ldhs.roa
File: H5ljZEN0-d9tIh-D-6Ci-F5ldhs.roa (raw, json)
Hash identifier: HiVyqrFyINZjpTWwQmuxNqhxiKdFsg5uixwDalTZzPQ=
Subject key identifier: 1F:99:63:64:43:74:F9:DF:6D:22:1F:83:FB:A0:A2:F8:5E:65:76:1B
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B2A003B
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/H5ljZEN0-d9tIh-D-6Ci-F5ldhs.roa
Signing time: Mon 03 Jan 2022 06:21:17 +0000
ROA not before: Mon 03 Jan 2022 06:21:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210379
IP address blocks: 77.65.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 724172859 (0x2b2a003b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 3 06:21:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f9963644374f9df6d221f83fba0a2f85e65761b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f3:1f:60:91:8e:3b:7c:53:88:4d:5b:ce:f4:
9c:df:2c:d1:a5:27:33:57:20:ee:fb:38:db:b4:eb:
67:ad:60:d6:cf:30:22:3d:1e:b7:b6:62:bb:c9:bf:
a0:9e:af:f4:4c:0e:9e:44:a3:c5:10:59:2e:78:8d:
a1:61:61:9f:ab:a8:dc:59:aa:00:e1:47:3b:75:87:
21:ad:85:88:41:8a:17:90:75:98:96:5c:58:f8:7f:
c1:32:25:f5:3c:19:e9:76:a2:a5:32:e0:ea:20:8c:
7a:f4:d4:73:56:d1:03:55:ee:ac:d9:72:b5:25:55:
ec:f1:de:a0:22:30:a6:be:46:a2:9c:df:b6:d1:1e:
97:57:ca:7e:7f:8e:c7:05:9e:ca:7d:14:a9:63:d5:
1a:dc:99:d1:ee:dd:18:ab:3c:bc:73:bf:c3:27:70:
bc:ff:39:9f:65:59:dd:a9:20:73:c4:3c:1d:4a:5d:
fc:a9:92:e3:8a:94:5c:00:fd:21:b2:a0:8b:fc:00:
be:ba:2c:84:56:b7:1d:8f:5f:ab:79:06:17:09:f2:
25:70:a6:ec:e2:23:c8:4d:6c:9d:23:89:6a:32:fc:
f8:46:30:aa:b8:86:f1:72:82:c6:a7:6f:d9:24:d6:
f3:e5:e4:4d:d1:48:61:06:fd:fa:0e:69:25:f6:a5:
65:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:99:63:64:43:74:F9:DF:6D:22:1F:83:FB:A0:A2:F8:5E:65:76:1B
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/H5ljZEN0-d9tIh-D-6Ci-F5ldhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.212.0/22
Signature Algorithm: sha256WithRSAEncryption
95:65:dd:05:f2:0b:4f:ab:06:5f:4f:e6:3a:53:e9:04:cf:41:
1b:36:23:69:35:17:bd:ef:95:ee:40:cc:47:d1:8c:ee:6a:95:
5f:40:e1:91:04:cf:d3:8f:2b:ac:d6:31:df:71:70:1f:b1:f7:
d4:eb:1f:d8:cd:e1:77:b9:9b:b0:fd:14:7d:87:59:0f:fb:96:
af:d1:71:5e:6d:69:94:7e:c5:d4:0c:40:1c:f3:f9:a2:a5:c5:
43:36:63:93:e7:05:5c:a6:a5:79:d4:b8:37:94:93:9f:ea:ba:
8e:9b:55:d2:aa:ac:5a:66:4f:a9:55:2c:ce:ca:2a:eb:83:e0:
ad:b2:2a:1f:42:a2:80:70:93:1d:53:85:d2:26:24:d9:15:e9:
d3:b4:5e:d9:85:ec:7c:61:77:46:36:c3:24:82:60:28:1d:e7:
23:01:2a:73:db:a2:08:d2:3a:12:6f:be:79:e3:91:4e:8b:0a:
bb:f0:30:a8:98:8b:2c:57:bb:64:16:1d:27:4c:06:9e:43:ae:
2f:80:8e:08:fe:fd:d4:25:fc:cf:14:04:35:64:80:ab:91:2e:
05:07:07:75:d6:61:d9:1b:c3:6a:66:31:f8:ec:d5:5c:d7:d0:
ee:47:bd:5b:6d:c5:de:b7:4a:4c:17:c1:5a:01:82:ab:71:6f:
1a:68:1a:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org