Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/RmgEAsM7W8XR399eKcm_WRnUOD0.roa
File: RmgEAsM7W8XR399eKcm_WRnUOD0.roa (raw, json)
Hash identifier: StnlpDmIJnFUQBaBkiMyoKUaJIuV1mDaC1KUSJn+keA=
Subject key identifier: 46:68:04:02:C3:3B:5B:C5:D1:DF:DF:5E:29:C9:BF:59:19:D4:38:3D
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2AF2AA81
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/RmgEAsM7W8XR399eKcm_WRnUOD0.roa
Signing time: Sat 01 Jan 2022 13:57:54 +0000
ROA not before: Sat 01 Jan 2022 13:57:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42402
IP address blocks: 77.65.136.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 720546433 (0x2af2aa81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:57:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46680402c33b5bc5d1dfdf5e29c9bf5919d4383d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:da:d1:21:fb:c1:7a:8e:59:86:dd:31:8f:b3:
d2:4f:b3:41:06:81:dc:52:65:4d:88:6b:0f:f9:7f:
db:2d:9c:5c:8a:eb:00:9e:03:bb:5e:e4:b0:24:de:
e5:e5:46:96:83:cc:e7:b5:1f:11:a7:b4:fa:42:b7:
f1:ba:6d:a6:d5:4e:f4:42:25:7b:5a:19:a3:fc:e2:
5d:67:01:3e:9b:62:45:12:9b:b7:6a:8e:1c:66:71:
47:90:b0:2e:de:a1:86:32:40:58:62:e1:5a:7b:8f:
4a:e0:dc:67:ae:7a:a6:eb:88:7b:28:1d:5e:67:0f:
2b:f1:58:a3:67:ce:ee:4c:3b:59:df:af:cc:d6:b1:
50:f0:d4:3a:b4:51:bf:67:ba:e8:53:6b:c4:f4:83:
df:3e:d3:c6:6c:91:57:c8:18:7b:ae:bd:36:f7:58:
05:18:d4:30:f6:8d:85:44:7e:4c:d8:0b:37:35:53:
a1:1e:55:94:e8:9b:ed:a2:52:65:8c:4e:8f:84:37:
a1:01:86:44:83:24:67:de:7a:ee:15:29:70:23:7f:
51:ff:a1:9b:94:e9:a4:a4:e7:cd:be:4f:03:d2:d2:
f6:2c:29:b1:4d:ab:8f:86:19:b5:94:02:4f:fe:7e:
94:37:03:7d:cc:10:8e:86:0b:78:ca:26:70:28:e4:
9e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:68:04:02:C3:3B:5B:C5:D1:DF:DF:5E:29:C9:BF:59:19:D4:38:3D
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/RmgEAsM7W8XR399eKcm_WRnUOD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.136.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:3b:19:96:36:a4:b2:6a:f4:d7:78:12:10:93:a3:71:5a:91:
75:f8:a4:ea:db:5a:9c:80:02:3b:dd:d4:9d:00:b6:5e:e8:fe:
fc:15:ad:a7:37:f7:36:a9:71:0a:78:27:9d:51:21:13:b7:a1:
04:81:fc:c4:23:f7:b3:9b:fa:a8:db:13:ae:5a:57:cb:76:ae:
59:05:e0:bf:9c:42:c4:a7:57:35:3f:94:d5:3a:ce:e7:55:75:
30:65:78:bd:73:65:9f:c7:1e:da:af:34:76:8d:7c:07:d0:ef:
8e:9a:1a:67:07:f2:7f:83:a5:c9:19:66:d1:f1:dd:89:21:4a:
47:ba:5c:9a:81:a3:34:1f:74:0b:9f:a7:1f:c4:58:dd:b5:19:
93:f7:d6:84:3f:8c:94:4e:de:8d:c0:03:f0:7d:93:38:76:38:
ad:4f:6f:3a:c2:55:0d:6d:7f:d6:37:79:14:4d:db:cc:f2:a4:
24:9a:12:aa:9c:cc:8a:e9:79:1a:a9:7f:41:3a:0f:ca:02:1e:
2a:7a:34:6d:47:20:bb:3a:3a:79:69:4a:2f:ee:5b:a3:1f:e0:
bc:0e:0b:2e:2b:28:84:30:1b:14:e4:67:e9:af:ed:e1:cb:09:
15:e6:47:47:a0:2f:16:0c:35:6b:d9:00:59:99:6c:4e:35:7d:
b4:57:d7:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org