Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/Z3RrTDQYi47BcjaHJ-m5UjtFCbU.roa
File: Z3RrTDQYi47BcjaHJ-m5UjtFCbU.roa (raw, json)
Hash identifier: JdecZDbetiTpjZwF637sA2NJDdqlFxPlx5XuF7eSdsM=
Subject key identifier: 67:74:6B:4C:34:18:8B:8E:C1:72:36:87:27:E9:B9:52:3B:45:09:B5
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B25A02E
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/Z3RrTDQYi47BcjaHJ-m5UjtFCbU.roa
Signing time: Sat 01 Jan 2022 13:58:21 +0000
ROA not before: Sat 01 Jan 2022 13:58:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213147
IP address blocks: 77.65.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 723886126 (0x2b25a02e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67746b4c34188b8ec172368727e9b9523b4509b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b8:bd:eb:63:d1:d7:29:b3:f0:96:a5:00:f8:
96:ea:e7:fe:69:01:39:f9:87:4b:a2:0c:d2:60:25:
ae:8a:10:00:b6:cb:f4:53:87:82:1e:ec:be:e7:23:
81:37:a7:9b:d9:5b:28:fc:3a:67:6a:dd:d3:5e:c9:
54:21:88:1b:ef:c9:56:3f:2f:56:0a:14:c3:8d:db:
30:d2:68:80:2b:0f:55:2c:65:bf:9a:8a:a3:5d:be:
d2:0d:21:70:7f:af:58:ab:71:d7:2e:f8:6d:ab:7c:
95:10:1c:a0:99:a6:76:1a:a0:7c:85:22:a3:3d:67:
a5:95:75:89:96:a9:39:3c:b0:ac:7d:cf:8f:1f:03:
71:62:6a:de:ec:eb:53:6e:af:08:9b:68:46:84:4c:
15:72:e3:23:71:b4:e9:c8:be:18:a2:17:d1:bd:36:
33:b2:b0:92:c2:56:85:0e:91:6f:d8:32:d0:6a:04:
65:d5:56:fc:22:58:82:eb:60:90:dc:1c:6c:52:af:
ab:6f:d5:e7:56:65:10:a8:44:b7:bb:d0:03:78:30:
93:b9:52:d4:0d:d7:97:c8:13:8f:43:7b:e8:58:a0:
66:a8:91:ff:19:a9:c0:92:e4:0f:69:0a:75:e3:bd:
e4:5d:84:0c:1f:23:d6:9d:73:3a:bb:88:7a:a0:f4:
03:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:74:6B:4C:34:18:8B:8E:C1:72:36:87:27:E9:B9:52:3B:45:09:B5
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/Z3RrTDQYi47BcjaHJ-m5UjtFCbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.151.0/24
Signature Algorithm: sha256WithRSAEncryption
19:5a:54:0c:e6:79:0e:7c:63:6f:a9:58:91:2e:41:6e:02:9c:
b6:fa:99:f6:ca:a3:e5:9f:e0:62:5b:2a:aa:60:ab:a2:98:7f:
e1:ec:41:bf:2c:55:03:f9:27:e7:d9:d7:75:d8:b2:74:02:b0:
00:0f:91:fd:42:ed:b4:fa:84:03:6c:5f:58:24:fc:8f:17:a7:
72:d2:61:ec:fa:94:9e:6f:a6:ef:d5:92:78:f1:fe:15:0c:93:
79:49:08:10:df:e3:38:e5:c4:93:88:57:26:13:f1:80:94:78:
d0:da:05:f2:ff:ad:c0:88:b8:88:94:b2:4d:4c:48:43:d6:7b:
bb:ea:45:fc:83:54:b3:8c:9f:01:8e:f5:bc:b5:5b:c2:38:ed:
75:8d:76:02:31:22:5a:1f:55:c5:6d:17:ea:1f:89:d5:8a:1d:
85:5c:4d:eb:58:a2:ef:ee:fc:66:ad:bb:a6:6f:73:d3:fc:4c:
3b:50:a4:14:14:a4:c6:91:80:ef:85:01:5d:4a:8f:d6:b2:92:
8f:8c:f1:c9:02:cc:bf:53:ac:6f:c1:f0:78:65:3a:2b:a6:a3:
78:45:06:ca:31:7b:95:ed:1d:fd:63:c1:f7:6f:86:c6:1a:f0:
1f:80:2b:bf:05:e5:0b:6c:da:e2:ad:42:b5:81:32:1a:56:7c:
72:3e:c5:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org