Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/CUvtPuGUig-gNrWed0HqW8bjCow.roa
File: CUvtPuGUig-gNrWed0HqW8bjCow.roa (raw, json)
Hash identifier: kZB2pBTA2Tm6Qg8koxwoe8EjEKOBT0Gx4rpih+baOEY=
Subject key identifier: 09:4B:ED:3E:E1:94:8A:0F:A0:36:B5:9E:77:41:EA:5B:C6:E3:0A:8C
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0972FFCA
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/CUvtPuGUig-gNrWed0HqW8bjCow.roa
Signing time: Fri 21 Jan 2022 13:40:25 +0000
ROA not before: Fri 21 Jan 2022 13:40:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7759
IP address blocks: 77.83.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158531530 (0x972ffca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 21 13:40:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=094bed3ee1948a0fa036b59e7741ea5bc6e30a8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8f:cb:ff:96:d9:a6:fd:8b:44:b2:21:7c:93:
39:98:fa:a7:e3:d5:c9:48:ff:94:97:85:3a:a2:19:
8f:05:a4:64:ad:95:38:e1:18:27:2e:2d:b0:9b:19:
46:5e:ba:32:a1:1e:11:88:64:9d:59:12:26:69:d0:
42:f9:15:36:40:29:5b:2c:d9:d0:d2:a7:70:4c:d5:
c9:6d:49:71:d6:82:e3:3d:84:a2:13:f6:2f:64:a8:
10:27:fa:bb:42:b1:0e:7b:fa:2d:fd:ab:bc:12:60:
1c:25:64:93:b5:4f:95:55:d4:36:18:d0:52:aa:6c:
ef:b6:ec:ac:a5:4a:b0:01:91:45:f9:89:b4:0b:b1:
f1:4c:b9:a1:79:7c:85:50:e3:bc:3a:bd:4e:98:50:
3a:78:8f:64:f6:60:c6:26:fc:ae:8f:7d:fe:1c:ae:
c3:24:c4:40:3a:65:ad:8a:32:70:8e:07:e8:76:8c:
65:7f:59:fd:00:da:b5:db:b8:87:4e:0d:a3:b3:6d:
12:d2:48:3f:24:b8:3f:08:1a:d8:07:bb:e1:f7:00:
8c:3d:dc:b5:96:af:39:60:0e:3b:99:79:e1:7d:35:
fc:89:15:c9:84:d2:61:c5:c5:42:ee:9a:b0:9a:9b:
0e:9b:93:f6:4e:98:d6:af:6f:de:95:7c:47:06:e9:
3c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:4B:ED:3E:E1:94:8A:0F:A0:36:B5:9E:77:41:EA:5B:C6:E3:0A:8C
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/CUvtPuGUig-gNrWed0HqW8bjCow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.240.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:a4:e5:53:f4:e4:cb:ca:d4:6d:a2:18:01:84:02:b6:9c:58:
8e:59:55:78:a1:62:ff:0e:fc:0b:03:5c:32:b9:a6:b8:bb:f3:
35:f6:5f:bb:4b:64:6e:61:04:aa:79:e8:49:96:4d:77:4c:e6:
fd:03:fb:ff:09:72:4d:11:c5:fa:f9:5f:15:ea:7c:36:c9:80:
ff:6e:db:c6:cf:87:ad:cb:c1:38:5d:e0:a1:45:08:ee:c0:e9:
db:e7:d5:25:69:a3:25:b0:71:4d:7b:64:ec:88:89:8c:10:3d:
f7:db:8e:c8:57:8c:f8:2b:78:9e:46:98:5b:4d:c6:e9:eb:0a:
0b:19:b4:eb:5c:29:c0:57:77:ac:55:4d:92:2d:ae:31:e0:2d:
47:e2:2f:48:66:bb:2d:2a:62:5d:42:04:fd:bb:4c:a7:5b:87:
ec:70:7e:21:5f:2b:9e:ab:51:be:89:e4:a5:2a:2d:c7:8a:53:
01:50:23:91:a3:0e:97:4f:34:2b:ee:34:2c:06:a8:88:a5:df:
75:14:1c:bf:26:94:4c:07:d4:53:64:26:08:4a:de:51:3c:e8:
7a:3a:b1:cb:ab:11:69:48:e4:71:0e:c8:c6:c2:27:db:2d:e1:
35:5c:2a:58:14:c8:38:82:bb:67:09:4b:58:25:cd:84:6b:32:
58:e1:52:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:38 2023 by rpki-client on console-fra.rpki-client.org