Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/1ae7be-3484-4b12-8bf4-c100a986bc5c/1/bBa-GJSzSmwjJcB4Sm_uI1XoVlM.roa
File: bBa-GJSzSmwjJcB4Sm_uI1XoVlM.roa (raw, json)
Hash identifier: SMoUV7+UIuxeLNWEid+gvMXD1wXew4+SpRrqRCUANK4=
Subject key identifier: 6C:16:BE:18:94:B3:4A:6C:23:25:C0:78:4A:6F:EE:23:55:E8:56:53
Certificate issuer: /CN=08fcbc341c87433d03e4dd615b7f3453164344b3
Certificate serial: 0184A45EF6A42D3FA25F652C21A3D749A397
Authority key identifier: 08:FC:BC:34:1C:87:43:3D:03:E4:DD:61:5B:7F:34:53:16:43:44:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPy8NByHQz0D5N1hW380UxZDRLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/1ae7be-3484-4b12-8bf4-c100a986bc5c/1/bBa-GJSzSmwjJcB4Sm_uI1XoVlM.roa
Signing time: Wed 23 Nov 2022 12:03:17 +0000
ROA not before: Wed 23 Nov 2022 12:03:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201913
IP address blocks: 185.77.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a4:5e:f6:a4:2d:3f:a2:5f:65:2c:21:a3:d7:49:a3:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fcbc341c87433d03e4dd615b7f3453164344b3
Validity
Not Before: Nov 23 12:03:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c16be1894b34a6c2325c0784a6fee2355e85653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:22:5d:6d:1a:74:3d:53:4a:a2:bc:4b:b7:7c:
46:51:eb:36:cd:9a:2c:92:ee:de:32:30:89:25:ea:
e0:37:9b:65:2e:dd:02:98:ea:e9:c6:3f:cc:0a:ae:
3a:48:24:5e:b0:1b:3a:8e:58:e9:fe:f8:93:96:86:
cd:5f:95:96:45:15:6c:75:a8:e5:26:e9:74:68:fb:
18:60:d3:d9:17:18:ab:bd:4e:9c:8c:2a:56:e2:a9:
03:a8:2d:c7:03:04:57:31:a1:75:73:fd:73:b7:7b:
f6:19:a1:95:bf:56:98:ee:89:38:21:79:c5:93:4d:
ca:78:03:48:66:41:6b:02:6d:ab:91:91:d9:6b:60:
94:51:87:1c:0f:47:bc:31:cc:df:8f:c0:e5:b7:dc:
e4:d8:e7:be:34:a9:f3:1a:1e:2d:8e:0a:20:a5:84:
53:3b:20:cd:11:13:2f:19:a6:43:70:86:19:49:58:
a4:b7:ce:c9:b7:37:45:96:10:b3:c4:eb:94:e8:ac:
74:7f:86:50:41:90:e8:14:a1:d6:a0:ab:26:a0:ee:
45:a6:7c:41:7d:ef:21:dd:2b:04:41:6f:9f:90:9a:
7a:ad:5e:64:0a:f7:79:f6:65:26:8f:47:69:bf:97:
81:4c:4d:c6:af:9f:11:ba:a7:65:f3:7d:72:24:0f:
84:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:16:BE:18:94:B3:4A:6C:23:25:C0:78:4A:6F:EE:23:55:E8:56:53
X509v3 Authority Key Identifier:
keyid:08:FC:BC:34:1C:87:43:3D:03:E4:DD:61:5B:7F:34:53:16:43:44:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPy8NByHQz0D5N1hW380UxZDRLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/1ae7be-3484-4b12-8bf4-c100a986bc5c/1/bBa-GJSzSmwjJcB4Sm_uI1XoVlM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/1ae7be-3484-4b12-8bf4-c100a986bc5c/1/CPy8NByHQz0D5N1hW380UxZDRLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.11.0/24
Signature Algorithm: sha256WithRSAEncryption
36:83:e7:d8:a5:0a:77:22:b9:5a:51:16:d1:92:1f:a7:b8:aa:
a8:2a:68:2a:9e:bd:64:8e:53:58:ec:dc:11:4f:b6:53:36:b7:
a4:91:3d:07:65:d8:69:44:4f:20:3f:40:1b:69:e1:ef:76:ab:
61:1c:d8:3f:55:31:b9:79:82:62:9c:86:30:2e:47:d3:70:30:
ef:e2:2f:8b:f3:b9:52:2d:53:5a:d4:22:c3:40:d1:e0:07:28:
f9:6f:84:33:af:98:f8:e6:16:f5:d6:e1:9e:b5:60:e0:af:95:
ba:2f:63:81:47:85:17:1e:5a:ef:c4:53:00:35:bd:2c:d2:1b:
47:c9:f9:4a:83:f0:46:16:f3:3b:3b:73:80:30:09:ef:d7:13:
d5:df:2f:92:02:9d:20:75:e7:6b:63:52:fc:c6:b2:1a:ce:7a:
2f:da:68:a1:2f:5c:c6:9a:01:02:5b:fc:fb:3b:03:88:b5:08:
e4:c6:00:b1:73:16:44:b2:f4:9f:a8:a1:9c:e3:c3:f9:c2:b5:
cf:5d:02:48:99:02:6a:f1:db:d7:1c:df:1f:aa:c4:a3:0c:66:
65:9e:07:56:bd:e5:82:e1:1a:66:a7:46:9e:84:c7:2b:49:f7:
74:4d:8c:98:f7:37:5c:70:99:29:7c:0f:77:0a:78:14:65:1d:
a6:f1:19:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:41 2023 by rpki-client on console-ams.rpki-client.org