Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/H69tbG7us9YXO6DH_ex3Ltd45iM.roa
File: H69tbG7us9YXO6DH_ex3Ltd45iM.roa (raw, json)
Hash identifier: zr20cG/L4hQ/USq8uX5Tj6NPi9mc72FK/0R/8Yec1Uo=
Subject key identifier: 1F:AF:6D:6C:6E:EE:B3:D6:17:3B:A0:C7:FD:EC:77:2E:D7:78:E6:23
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 0187223AE01B790F9509EDF0A538002B1898
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/H69tbG7us9YXO6DH_ex3Ltd45iM.roa
Signing time: Mon 27 Mar 2023 08:41:36 +0000
ROA not before: Mon 27 Mar 2023 08:41:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25446
IP address blocks: 77.106.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:22:3a:e0:1b:79:0f:95:09:ed:f0:a5:38:00:2b:18:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Mar 27 08:41:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1faf6d6c6eeeb3d6173ba0c7fdec772ed778e623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:de:2e:6f:0f:02:97:53:27:a9:e2:67:58:f8:
fa:e6:9f:6d:b4:cc:26:0e:77:7d:d3:5e:6d:0e:d0:
1f:92:1f:29:fa:4e:fe:c4:a9:81:43:bf:1e:47:52:
9b:43:cc:ba:d6:ed:26:42:6d:34:8a:9f:8a:bd:07:
b8:09:f1:43:ec:aa:4f:f7:05:fd:56:86:e5:73:ac:
e7:aa:ac:3b:c5:25:89:ef:5f:85:a6:e2:55:1b:af:
77:83:74:5d:a5:64:b4:bd:58:32:e2:91:04:15:67:
a4:38:6d:f2:b4:6e:a1:e7:ea:78:5b:13:27:14:53:
b9:b1:cb:08:67:52:08:a0:00:9c:79:33:6d:92:3d:
79:a7:fe:84:d3:88:23:e0:7d:2d:74:f8:89:d5:7a:
86:fd:d9:32:e9:83:de:8f:8b:88:cf:22:17:63:9b:
71:ad:2d:4c:d5:56:59:df:87:8b:18:c6:b1:cf:0b:
c8:0e:01:d2:31:72:c7:b5:d0:11:33:2d:3a:5f:ee:
e6:20:9b:62:ab:fe:ae:0d:07:90:da:77:4c:73:a9:
4b:08:64:9f:af:0e:dc:5c:07:2f:6a:f9:01:a7:8e:
01:f2:6b:99:a0:e6:24:89:97:ff:7f:8b:05:89:a7:
71:0b:e2:de:e3:13:dc:6f:70:c7:ec:f0:00:3c:9b:
2c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:AF:6D:6C:6E:EE:B3:D6:17:3B:A0:C7:FD:EC:77:2E:D7:78:E6:23
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/H69tbG7us9YXO6DH_ex3Ltd45iM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.106.68.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:0f:1f:38:80:07:15:6f:48:02:16:23:e8:b3:c7:d4:50:03:
71:67:b0:75:8c:f9:84:cd:fc:26:fd:d8:cf:88:b8:a9:18:f1:
43:af:62:bf:fe:70:66:d7:fd:f0:4a:b7:49:10:56:b0:1d:06:
64:d9:68:f7:0e:6b:bd:b0:90:0a:10:23:b2:c0:50:99:c6:46:
82:06:3b:71:83:39:31:c1:69:90:0f:f7:5b:6c:d6:13:22:cd:
19:6c:42:cc:4b:a9:8b:ca:e6:23:50:83:32:bc:64:89:c7:70:
14:0a:61:9b:ff:12:62:43:74:14:00:b0:93:28:e4:f2:fe:6c:
ab:64:46:3a:38:a1:3b:f6:ba:59:02:79:65:0d:9d:52:a5:72:
3e:e1:75:92:2a:5b:13:fa:0a:07:33:83:68:06:f3:c2:98:a8:
7a:2d:e6:9e:59:33:ea:46:fc:a2:a7:d1:a3:ab:c4:2d:f5:88:
b9:54:e3:7b:3a:9d:7c:65:84:24:61:a7:54:de:bc:c4:ac:28:
1f:1e:b5:36:cc:96:7f:18:61:e8:c2:fe:7f:88:1d:08:a1:c9:
7f:04:fd:b3:d6:c7:04:c5:83:46:03:55:02:dd:d3:93:44:58:
85:aa:10:c6:15:58:8f:d7:be:b3:16:2d:ff:5b:75:ac:ed:53:
74:57:1d:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:36:29 2025 by rpki-client