Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/bRYO8LEnxP7rvKqgjVIzxE53QfA.roa
File: bRYO8LEnxP7rvKqgjVIzxE53QfA.roa (raw, json)
Hash identifier: kQYRjMJQGDVMf8LY1o3WAXFDbqlJKFKimnhyIdU3NMs=
Subject key identifier: 6D:16:0E:F0:B1:27:C4:FE:EB:BC:AA:A0:8D:52:33:C4:4E:77:41:F0
Certificate issuer: /CN=46456579a5172fca08e043b02bb972fb7503aeaf
Certificate serial: 03E985F8
Authority key identifier: 46:45:65:79:A5:17:2F:CA:08:E0:43:B0:2B:B9:72:FB:75:03:AE:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RkVleaUXL8oI4EOwK7ly-3UDrq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/bRYO8LEnxP7rvKqgjVIzxE53QfA.roa
Signing time: Sat 01 Jan 2022 07:03:12 +0000
ROA not before: Sat 01 Jan 2022 07:03:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201346
IP address blocks: 185.77.132.0/24 maxlen: 24
185.77.135.0/24 maxlen: 24
185.77.133.0/24 maxlen: 24
185.77.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65635832 (0x3e985f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46456579a5172fca08e043b02bb972fb7503aeaf
Validity
Not Before: Jan 1 07:03:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d160ef0b127c4feebbcaaa08d5233c44e7741f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:13:39:78:8c:4a:01:2d:70:07:39:47:0a:79:
07:b4:74:af:e0:1b:e5:d9:0d:16:30:f6:f2:3c:f0:
a6:e3:ce:f3:74:3a:0f:94:70:70:35:39:2d:48:15:
3d:cb:16:ac:e1:0a:cf:8f:2e:d9:05:4a:dd:27:6c:
01:6c:57:00:7f:4f:d1:53:55:8f:5d:f6:9e:d1:05:
76:7b:29:ac:3d:6f:7b:23:01:4d:75:6f:8e:51:92:
0b:76:dc:0d:8d:d2:99:d6:95:3f:23:01:19:3b:bd:
e3:1d:bc:eb:70:78:e7:09:88:1c:22:90:c5:4a:4a:
2b:76:5d:95:b7:9a:86:9e:5d:82:dc:04:31:8d:60:
85:e8:04:95:27:19:b3:47:06:46:60:4f:f1:24:27:
cb:b3:45:d6:42:29:21:fb:c9:01:29:2d:04:28:d1:
61:8e:d3:3b:9c:66:d3:4f:98:81:2a:2b:e5:16:59:
9f:cb:92:74:fa:c5:8a:fb:5a:40:64:b7:d8:d2:fb:
1f:cf:cb:98:94:cd:e0:58:19:88:44:e1:a0:54:6f:
03:47:6d:c0:e0:a9:18:31:e3:f8:76:a4:b7:8e:86:
a9:f0:a5:01:07:0a:4d:42:73:67:66:96:10:83:fb:
5f:7d:ea:54:d5:f8:79:82:0a:b8:f8:91:d0:ad:d9:
5c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:16:0E:F0:B1:27:C4:FE:EB:BC:AA:A0:8D:52:33:C4:4E:77:41:F0
X509v3 Authority Key Identifier:
keyid:46:45:65:79:A5:17:2F:CA:08:E0:43:B0:2B:B9:72:FB:75:03:AE:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RkVleaUXL8oI4EOwK7ly-3UDrq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/bRYO8LEnxP7rvKqgjVIzxE53QfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.132.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:40:f2:7f:fd:49:98:1b:58:ff:6f:24:60:61:38:db:d4:19:
b6:69:26:37:28:86:c0:1f:a0:ad:f1:3f:e8:1f:7a:27:23:de:
0d:4f:be:ed:97:36:e3:15:a0:ea:d6:2b:40:4e:39:99:23:f4:
1d:8a:20:e6:d7:27:c8:3e:67:bd:1d:ad:02:75:e5:f7:46:df:
0b:1e:d3:3c:f4:2a:a1:ce:ce:5b:bb:16:42:bd:84:e2:d8:cd:
43:51:b7:3c:b2:de:7d:11:75:a6:74:b9:90:2e:65:ff:f1:f8:
f6:cb:0c:02:a5:38:03:d2:7f:0b:fb:04:97:a9:a4:21:4a:76:
68:63:9f:5d:bb:fe:1f:7d:6c:ed:c0:f4:f0:0d:79:11:5f:1a:
2d:be:8b:d3:0d:b1:15:78:8d:dd:e3:8c:54:05:5d:16:90:44:
99:75:09:ae:9f:67:31:96:07:01:8f:1b:20:7d:51:2b:26:4b:
42:41:97:cc:59:7e:f2:b6:89:42:56:e5:4c:01:9c:cc:de:88:
a1:bb:f8:00:9f:58:84:f9:96:f8:a0:b2:b4:af:f9:a9:1b:0d:
ee:1d:eb:53:88:6d:16:f5:07:08:8d:da:8c:c6:96:41:c5:24:
d9:83:31:95:c5:16:f4:0c:3c:4f:21:2b:db:ed:5a:12:08:a1:
98:c2:6b:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:49 2024 by rpki-client on console-fra.rpki-client.org