Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/40Qv7mtDBS0aE5kZAMdkgJN79YE.roa
File: 40Qv7mtDBS0aE5kZAMdkgJN79YE.roa (raw, json)
Hash identifier: DG2AxKHyJ8o1CgR6yza0yNB7bYdG0C8pxHhome/IWFU=
Subject key identifier: E3:44:2F:EE:6B:43:05:2D:1A:13:99:19:00:C7:64:80:93:7B:F5:81
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 18145F8A
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/40Qv7mtDBS0aE5kZAMdkgJN79YE.roa
Signing time: Sat 01 Jan 2022 04:00:43 +0000
ROA not before: Sat 01 Jan 2022 04:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208579
IP address blocks: 77.85.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403988362 (0x18145f8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3442fee6b43052d1a13991900c76480937bf581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:38:b7:64:57:3c:7f:27:d2:7e:7c:c6:f8:43:
61:d3:c5:ec:f8:47:90:9b:f7:73:0a:1c:ef:36:d3:
0f:56:33:a6:ef:2e:3b:88:87:3c:83:da:e6:f7:2f:
44:ea:e0:a6:96:65:28:ca:a0:86:48:dc:17:ef:bc:
86:b5:df:80:94:40:0b:b4:d1:f1:82:4d:8d:54:35:
9b:6c:b4:7e:e4:85:ea:a5:44:0c:28:90:02:eb:b4:
4d:f4:97:80:04:7d:f3:03:a9:c4:98:db:79:da:d8:
d9:f6:60:15:b7:09:04:74:f4:d2:e9:8d:8d:3e:22:
92:3e:82:a7:6e:7d:4f:36:41:ff:2d:01:cc:31:b1:
43:2e:0a:4e:f9:a6:7a:fa:30:e2:63:c9:15:6e:ae:
53:cb:fb:07:60:13:cd:0b:d5:2b:0b:13:89:0c:ad:
b7:0a:b4:60:98:23:ab:34:cd:74:0e:4d:ec:61:e0:
1f:e4:40:1a:cb:53:8a:13:3a:38:2a:d2:e1:69:5d:
55:92:cc:75:f6:d6:06:4e:c5:a6:d7:dd:2a:10:74:
3d:c8:1b:6d:0b:d0:7b:1c:68:b1:ed:81:cf:ae:7e:
a3:ab:a8:af:f6:b6:50:60:09:4c:3f:e4:bb:f0:f0:
03:5b:9f:e1:15:e4:37:db:2c:ef:fe:c6:18:f3:da:
95:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:44:2F:EE:6B:43:05:2D:1A:13:99:19:00:C7:64:80:93:7B:F5:81
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/40Qv7mtDBS0aE5kZAMdkgJN79YE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.85.206.0/24
Signature Algorithm: sha256WithRSAEncryption
30:f3:2a:94:5e:e0:22:02:2a:be:bb:e9:d7:ef:4f:b7:f5:b3:
5f:1f:5f:fc:90:b4:3a:76:05:96:a8:8d:6a:eb:88:06:44:f1:
84:3f:52:9f:74:6b:09:34:c4:15:19:17:b9:63:53:41:f3:b3:
bd:9b:ee:f2:81:78:48:04:5f:65:3f:39:70:ff:66:34:28:2a:
fc:35:e2:99:fa:12:19:b3:0e:9d:09:32:cb:a8:37:dc:8f:57:
80:7c:77:aa:51:f1:b6:64:9b:54:72:bb:e1:f3:d2:a2:61:b1:
7a:89:42:93:97:a8:1c:33:62:f8:b3:23:c4:01:c5:7c:00:8b:
44:ba:a9:1b:7d:ac:42:fb:6f:72:0a:98:ed:32:e2:25:eb:af:
00:6d:78:d8:27:b0:56:ab:c3:6e:00:04:99:1e:d7:f0:fe:ee:
f3:73:6a:3e:8f:ee:d3:e1:8a:b2:d5:3c:be:a8:c5:d5:34:5e:
02:34:c4:5e:82:3f:99:ac:01:dd:11:1e:77:d9:43:de:35:75:
e1:42:56:37:c7:3f:79:28:78:5c:4c:70:80:62:d8:8b:b7:99:
79:7f:ec:c5:03:cb:53:cf:d8:74:10:c3:c0:d0:d3:40:a9:6c:
05:2b:f1:f3:e0:94:3e:d5:47:94:9c:d5:07:cf:2e:74:44:c9:
37:32:22:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org