Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/oCiCa7zwKiQQmx7RHBIvf4-z1Zk.roa
File: oCiCa7zwKiQQmx7RHBIvf4-z1Zk.roa (raw, json)
Hash identifier: jW0QiZjIcgNpc16IJRTiLX0aNqfthsGxNUursCbzojY=
Subject key identifier: A0:28:82:6B:BC:F0:2A:24:10:9B:1E:D1:1C:12:2F:7F:8F:B3:D5:99
Certificate issuer: /CN=5393ab93e85701a73ef4d5e00ed6eb9893937394
Certificate serial: 0181F288F22EF1EF78002F86EA9828C478A7
Authority key identifier: 53:93:AB:93:E8:57:01:A7:3E:F4:D5:E0:0E:D6:EB:98:93:93:73:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U5Ork-hXAac-9NXgDtbrmJOTc5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/oCiCa7zwKiQQmx7RHBIvf4-z1Zk.roa
Signing time: Tue 12 Jul 2022 13:11:10 +0000
ROA not before: Tue 12 Jul 2022 13:11:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31638
IP address blocks: 185.77.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f2:88:f2:2e:f1:ef:78:00:2f:86:ea:98:28:c4:78:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5393ab93e85701a73ef4d5e00ed6eb9893937394
Validity
Not Before: Jul 12 13:11:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a028826bbcf02a24109b1ed11c122f7f8fb3d599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:28:29:26:05:a1:b5:de:c7:23:2e:a8:c7:b1:
35:6f:61:f7:75:29:88:1a:64:f0:7e:b0:d1:36:47:
f4:5b:fc:cd:da:ae:79:48:34:53:f2:42:e3:33:4f:
3c:62:1f:c2:fe:56:39:b7:09:54:f7:56:66:ec:73:
db:a5:7c:ff:21:76:49:c0:45:80:74:15:20:0f:57:
7b:ac:2b:8f:d4:aa:87:ae:52:16:61:98:81:6f:35:
c0:9b:73:44:14:97:e3:a4:47:0d:28:d0:0e:39:81:
72:01:b8:bf:c3:1f:8d:9a:57:de:30:af:07:ac:f5:
a4:75:a1:d2:98:b6:11:0c:e2:28:c3:14:29:6c:da:
02:84:98:b4:e6:91:1a:7a:e0:72:5b:95:75:11:76:
f7:2d:7f:6b:c2:22:97:8c:eb:cc:62:72:1f:b4:a5:
dc:bd:9f:b6:8d:df:d5:a1:54:98:19:33:61:66:f6:
99:7a:9d:db:90:ce:6d:11:22:67:8d:35:2a:54:d3:
c4:b9:0d:ff:3c:61:eb:a1:22:0b:22:1a:f5:7e:82:
fa:d5:0d:9c:04:e9:26:af:0a:85:64:48:5e:6d:96:
33:86:bc:5c:84:42:c4:25:3b:cb:0e:a3:0e:8f:37:
53:82:77:88:98:8b:12:d4:c1:ea:57:6d:70:dc:06:
57:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:28:82:6B:BC:F0:2A:24:10:9B:1E:D1:1C:12:2F:7F:8F:B3:D5:99
X509v3 Authority Key Identifier:
keyid:53:93:AB:93:E8:57:01:A7:3E:F4:D5:E0:0E:D6:EB:98:93:93:73:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U5Ork-hXAac-9NXgDtbrmJOTc5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/oCiCa7zwKiQQmx7RHBIvf4-z1Zk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/U5Ork-hXAac-9NXgDtbrmJOTc5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.161.0/24
Signature Algorithm: sha256WithRSAEncryption
56:45:c7:18:03:c9:c6:8c:ad:63:82:12:8d:ad:27:29:a4:a0:
a4:2b:27:bd:66:7f:98:96:5e:34:17:7e:d9:f0:b4:0a:fa:ba:
aa:0e:5e:c8:f4:7a:4f:11:f8:8b:77:cc:ad:d6:c9:2a:06:66:
1e:9c:1e:2a:6a:28:93:95:1e:c4:de:18:7f:97:dd:f4:08:9e:
90:7e:e3:b5:ef:40:da:5f:29:5b:dc:e9:42:34:93:6b:b8:4b:
7f:af:34:f0:c9:2a:a8:7a:ee:46:98:4d:f1:e5:ec:62:53:20:
3b:dc:01:ce:83:d1:be:58:5c:8e:b7:37:11:6d:fd:e4:7e:97:
d7:e2:b9:90:f6:8b:32:ec:01:6a:dc:7b:ac:65:0f:77:aa:5c:
45:f4:59:71:3c:e8:ac:6c:bd:b9:30:43:a4:99:da:2c:71:32:
36:5d:3a:97:5e:48:46:ec:3a:5b:98:ef:d4:00:01:c9:4a:84:
10:3d:cc:af:12:c1:83:8a:55:c4:94:a6:1b:65:50:1e:8f:9d:
91:9d:27:ff:b0:61:76:50:97:b1:b5:24:22:88:7e:e2:b7:5c:
24:45:0b:57:d9:5f:c2:e8:79:5f:38:e4:eb:19:d2:ee:3b:fa:
eb:65:4d:31:f7:92:64:fa:e7:98:e8:05:7c:3b:7c:7e:0f:7b:
a1:cc:6a:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:28 2024 by rpki-client on console-ams.rpki-client.org