Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/s26UDOTOocFD-nwnZ1kwFI94Cmc.roa
File: s26UDOTOocFD-nwnZ1kwFI94Cmc.roa (raw, json)
Hash identifier: kPZz++5sNJN+XmSRWR4FCE5Wz3Nt70GXBZuatk3/h4Q=
Subject key identifier: B3:6E:94:0C:E4:CE:A1:C1:43:FA:7C:27:67:59:30:14:8F:78:0A:67
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B20EEC0
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/s26UDOTOocFD-nwnZ1kwFI94Cmc.roa
Signing time: Sat 01 Jan 2022 13:58:17 +0000
ROA not before: Sat 01 Jan 2022 13:58:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210220
IP address blocks: 77.65.176.0/22 maxlen: 24
77.65.184.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 723578560 (0x2b20eec0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b36e940ce4cea1c143fa7c27675930148f780a67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:42:06:e5:14:eb:60:16:79:0e:71:4e:9c:34:
29:02:9c:a6:5d:c2:2d:46:c1:54:11:a8:92:8f:5c:
4e:f6:87:d3:10:90:38:b5:b8:80:64:3b:db:85:ea:
2e:04:1d:c0:3e:d5:e3:3a:9f:08:61:2c:71:ba:41:
84:84:64:8b:91:54:ee:b7:90:e4:0b:e7:53:8e:6b:
85:33:af:25:da:f9:ac:fa:9c:f3:1a:4a:56:2b:a9:
e5:e6:7f:16:3e:8d:c7:88:ec:c0:6f:24:cb:54:20:
74:ab:d4:00:7c:2a:d8:52:87:16:6e:33:46:23:76:
96:01:3b:a9:85:2b:b4:74:e6:96:85:5c:ad:da:fb:
d6:2b:c3:cc:af:dd:93:a8:18:7f:de:0a:a3:02:ab:
97:9a:55:0b:23:63:26:eb:a6:3a:93:88:df:2f:5f:
cb:07:30:a8:86:5c:3d:c0:4c:2d:ec:0b:45:12:f8:
b3:bf:b6:12:dd:8e:39:49:b7:d4:b0:67:7e:6d:8d:
cb:f9:3c:7e:4a:43:b6:47:63:89:09:fd:e6:00:7f:
c5:bb:66:dc:f5:21:dd:ad:f2:4a:3f:20:bd:f0:13:
6f:33:a2:e6:2c:81:13:9e:ea:6b:6a:cd:7e:7c:7e:
b9:dc:ef:a5:12:c6:c1:79:73:64:01:95:21:31:7d:
94:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:6E:94:0C:E4:CE:A1:C1:43:FA:7C:27:67:59:30:14:8F:78:0A:67
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/s26UDOTOocFD-nwnZ1kwFI94Cmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.176.0/22
77.65.184.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:2e:01:ea:1d:3d:64:41:7d:e1:18:0d:13:96:62:94:72:c0:
2e:6e:8d:39:98:ab:b1:e2:50:47:e9:74:f4:9b:58:99:91:89:
ce:2c:72:4f:67:9c:f3:71:4f:57:da:f8:18:b7:6f:7a:9e:93:
08:d8:5a:10:77:f7:70:d8:6b:35:1e:0a:4c:b7:18:6b:f8:e0:
09:c3:39:4f:f6:17:8c:8f:a9:8e:34:8e:66:29:58:2a:2f:41:
0f:b4:f7:85:84:2b:56:f3:6c:71:85:8b:db:6f:a0:5e:a1:ff:
35:c6:4a:0d:4e:72:25:0b:0e:7e:1f:4e:5b:63:df:92:44:20:
be:49:29:df:39:d4:4b:50:4f:bb:49:f1:e0:85:c0:f0:66:da:
89:5d:4b:79:7e:1c:f0:be:48:1b:2c:72:54:49:5f:31:70:85:
51:e7:74:fb:4d:e8:06:dc:e0:cc:ce:4e:bc:11:08:89:90:9d:
2b:0e:f4:93:c4:0d:5d:cc:7f:b8:c5:02:b1:0a:5b:08:04:75:
dc:79:57:cd:bc:16:23:1b:5e:79:91:3b:00:02:e0:5f:46:9f:
44:29:2f:3f:19:c2:98:f5:52:a6:18:bc:8b:9e:5c:cc:45:85:
9a:96:39:7a:0f:5a:7d:b9:4e:0a:06:60:5f:47:d4:ed:35:50:
c9:6a:fd:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org