Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/d7HNY1H_OmT2u66DPiAxd565GUU.roa
File: d7HNY1H_OmT2u66DPiAxd565GUU.roa (raw, json)
Hash identifier: UqaSdpqNDAEmV1g5PTnTHfwe+6f3hHqTla8f9aKRpTk=
Subject key identifier: 77:B1:CD:63:51:FF:3A:64:F6:BB:AE:83:3E:20:31:77:9E:B9:19:45
Certificate issuer: /CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Certificate serial: 0A3444AF
Authority key identifier: 75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/d7HNY1H_OmT2u66DPiAxd565GUU.roa
Signing time: Sat 01 Jan 2022 15:02:38 +0000
ROA not before: Sat 01 Jan 2022 15:02:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61003
IP address blocks: 185.177.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171197615 (0xa3444af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Validity
Not Before: Jan 1 15:02:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77b1cd6351ff3a64f6bbae833e2031779eb91945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0b:0a:65:4f:c6:ed:2e:a1:00:f3:5e:26:4d:
0c:24:d9:06:48:92:8e:a5:2e:76:f2:8d:19:45:41:
4b:45:34:40:de:01:da:0d:31:33:a8:42:b5:a2:2d:
c5:a6:11:87:f3:ff:84:0d:fd:92:d4:62:51:f6:ff:
51:b6:a1:44:1a:18:c8:3f:bf:b8:1c:fc:80:d4:f3:
7a:97:b4:61:4f:c8:6f:13:14:3a:ae:19:c0:f6:b2:
8d:c3:56:c8:4f:bc:36:77:85:f5:2c:f8:10:b7:ee:
1e:49:16:f2:cb:79:8c:21:e2:b5:d9:53:4b:10:b5:
38:36:be:1c:a6:1f:c0:98:fd:a0:53:7d:aa:3f:37:
26:4e:a8:85:51:90:f1:2e:75:9b:dd:ca:62:47:6c:
d7:a8:41:64:f6:1b:0f:82:97:f6:f4:76:bd:9c:dd:
57:fc:6e:14:f2:b8:86:05:83:d1:10:2a:4a:b1:ca:
1e:fe:c8:6e:22:e9:84:1e:63:03:4d:30:95:3c:9e:
10:78:12:14:0e:a8:c2:2f:ce:0c:87:9e:49:ab:a5:
94:ac:ef:53:1c:c9:6b:0b:69:73:43:40:c8:1a:87:
4d:0d:8a:55:24:9d:4d:a1:3b:b3:3f:dc:4f:74:1a:
6e:53:e5:27:7b:e3:e0:94:33:87:95:14:bb:5c:50:
d8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:B1:CD:63:51:FF:3A:64:F6:BB:AE:83:3E:20:31:77:9E:B9:19:45
X509v3 Authority Key Identifier:
keyid:75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/d7HNY1H_OmT2u66DPiAxd565GUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/dVSsTH9FHFu5OC-81G1wxMD53lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.229.0/24
Signature Algorithm: sha256WithRSAEncryption
96:5c:c9:f2:c4:ad:2c:0c:1d:29:ac:fb:60:9b:ab:36:d0:97:
a7:dc:75:4a:5d:7d:78:0a:34:46:62:8c:cf:6e:ab:21:63:86:
1e:59:23:01:29:b1:e7:5d:99:ee:22:19:b5:cd:28:bf:9f:e5:
37:2c:7e:ed:6e:30:95:3c:dd:2c:15:bf:87:09:05:47:f0:9f:
53:bd:13:7e:31:25:75:03:20:16:8d:2a:06:f4:6d:51:6f:25:
ec:f8:c8:41:5c:69:8b:97:83:b9:4c:35:40:d8:b9:61:88:82:
c0:67:b7:57:11:7d:14:31:67:52:08:f1:d4:c8:14:f1:a6:57:
43:72:6e:40:fd:0c:da:36:46:ca:c7:54:54:37:19:20:d3:c1:
b5:00:6d:f5:53:4b:ce:4f:bd:02:f0:6c:bf:63:b4:9a:b6:bb:
9c:90:b3:aa:2a:66:ea:50:75:1d:56:79:e8:34:87:50:83:68:
c5:6f:7f:a2:c5:e6:17:b8:a7:bb:59:76:29:42:20:2a:b3:c0:
58:9a:10:44:91:79:43:d4:bb:b7:7c:84:d6:e8:48:b8:a4:07:
c7:5b:62:a2:f7:4c:d5:fb:c9:e8:2e:87:a1:74:1c:92:27:df:
71:41:19:bf:10:cb:fc:22:4c:21:91:1b:24:f5:7d:51:b3:b1:
36:d0:3e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:30 2024 by rpki-client on console-ams.rpki-client.org