Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/OVgEGZyeN0Sy4jkpzMIQYR0JQlA.roa
File: OVgEGZyeN0Sy4jkpzMIQYR0JQlA.roa (raw, json)
Hash identifier: 9TQR8U5ajXJoENi/4hYUGdKM/eABWOpfuNg++c/Eh6M=
Subject key identifier: 39:58:04:19:9C:9E:37:44:B2:E2:39:29:CC:C2:10:61:1D:09:42:50
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0183C1FAB56A10132E30343BE936EA06832E
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/OVgEGZyeN0Sy4jkpzMIQYR0JQlA.roa
Signing time: Mon 10 Oct 2022 12:59:36 +0000
ROA not before: Mon 10 Oct 2022 12:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 77.83.39.0/24 maxlen: 24
45.144.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c1:fa:b5:6a:10:13:2e:30:34:3b:e9:36:ea:06:83:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Oct 10 12:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=395804199c9e3744b2e23929ccc210611d094250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ec:7d:2b:12:7a:14:5a:79:92:11:2f:b8:8d:
62:47:2e:22:8d:ea:71:58:a8:d2:22:f9:5d:6e:b8:
52:02:9c:14:b0:ad:7c:07:d1:99:f8:40:a7:35:1e:
10:f0:ed:e6:08:bf:b8:e3:c5:fc:19:a6:94:cc:09:
19:9c:c5:56:17:72:36:14:c3:2a:6b:8f:90:c1:fd:
51:25:ff:15:fa:da:d5:4d:0d:8b:d3:97:95:37:41:
56:dc:ff:26:f1:de:bd:ed:5c:5b:1d:1d:f4:b8:2a:
80:20:d0:8b:32:0c:2a:b6:49:55:49:a2:0c:3e:8f:
2f:6c:38:97:52:6b:5b:0c:fb:aa:82:56:75:45:5e:
5b:f2:cf:ba:20:ab:cd:6b:42:7b:23:c3:cc:34:79:
1f:ea:f7:d2:37:73:54:d0:6f:86:39:5c:2a:b1:f5:
38:fd:93:59:77:49:70:58:06:69:aa:a2:28:30:ec:
cb:60:ea:e5:f4:31:9f:8d:da:43:30:21:01:36:d5:
85:9d:78:48:28:38:89:df:b0:52:d9:11:37:c6:61:
82:63:82:1e:ba:6b:ee:55:5f:83:ee:43:c8:31:b6:
d0:0f:b3:43:62:1b:1a:81:48:34:fa:72:08:f5:7a:
aa:39:ec:65:1d:ea:28:ec:bf:08:e2:15:45:d5:19:
76:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:58:04:19:9C:9E:37:44:B2:E2:39:29:CC:C2:10:61:1D:09:42:50
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/OVgEGZyeN0Sy4jkpzMIQYR0JQlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.213.0/24
77.83.39.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:f2:51:bf:22:0f:d9:8a:c6:95:fc:91:dc:97:ba:db:b4:1b:
6a:ce:12:20:ea:e5:a5:ab:5b:af:20:a7:98:12:ab:ff:67:9b:
ce:01:49:eb:2a:59:0d:4f:8f:33:0a:9b:18:c5:da:12:63:06:
9c:5e:09:ad:4e:16:b8:d9:17:5c:8d:f0:75:fc:c6:c1:6a:d9:
a3:24:da:95:29:8f:8f:38:24:35:1a:ee:71:ca:34:72:21:3b:
32:e0:78:53:7e:20:70:7c:e9:08:df:21:f6:31:69:d2:d0:40:
b1:ca:fe:d5:f6:38:ca:16:5d:d6:b1:9b:95:99:63:21:eb:4b:
dc:00:a8:19:ef:bf:aa:10:2b:b9:ff:0c:57:71:ad:f4:c4:97:
15:b9:78:5b:eb:91:d4:1d:97:3d:25:ab:28:de:5b:4c:65:b9:
d9:de:31:3f:d1:6e:6c:e0:35:46:01:22:fc:24:b5:31:15:2e:
da:ef:1c:b4:e5:2c:c8:35:2f:b0:74:3e:c7:38:0c:2b:c3:0b:
fe:a6:99:45:c0:41:ea:b5:b7:76:17:e7:ab:a4:1e:b0:b4:84:
f8:57:3c:fa:bd:ae:60:fb:2a:81:75:b3:69:37:aa:58:a6:95:
00:81:a5:7d:93:c2:f3:1c:a8:c5:d5:71:e7:38:ac:9a:3a:a9:
88:59:1f:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:32 2023 by rpki-client on console-fra.rpki-client.org