Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/afRbSb1eCtHzqB-8jZ360jJI3oA.roa
File: afRbSb1eCtHzqB-8jZ360jJI3oA.roa (raw, json)
Hash identifier: Xo4arqqmxY1W1DTfMew3F2s3lg4NMV2XoQjmdzff3Zg=
Subject key identifier: 69:F4:5B:49:BD:5E:0A:D1:F3:A8:1F:BC:8D:9D:FA:D2:32:48:DE:80
Certificate issuer: /CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Certificate serial: 08BEFAC4
Authority key identifier: F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/afRbSb1eCtHzqB-8jZ360jJI3oA.roa
Signing time: Sat 01 Jan 2022 11:57:02 +0000
ROA not before: Sat 01 Jan 2022 11:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198621
IP address blocks: 77.234.47.0/24 maxlen: 24
185.51.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146733764 (0x8befac4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Validity
Not Before: Jan 1 11:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69f45b49bd5e0ad1f3a81fbc8d9dfad23248de80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:30:b0:e5:c3:99:fe:15:d6:f7:05:48:10:4a:
af:f8:04:08:f3:58:d6:07:07:00:09:08:37:6c:03:
79:50:4c:49:57:d0:af:33:5b:74:1c:1b:46:a4:8b:
a1:94:f5:94:9c:95:73:72:dc:26:20:20:1f:8e:93:
ab:dc:e7:2e:9c:b4:42:a1:1c:5e:af:16:ae:11:a5:
50:d6:b7:fa:3c:c9:5d:0c:b2:a4:2e:85:88:79:47:
90:dd:9b:00:9e:e3:0f:f4:9e:42:df:94:13:15:89:
4a:d0:c4:2d:31:d4:20:6b:e5:f4:f4:31:bc:0a:3b:
c1:e8:e5:31:80:81:11:b0:c0:33:55:01:98:ee:2d:
b2:e7:75:b0:73:9f:e6:73:c7:88:56:22:fc:75:db:
3e:e2:59:c5:33:c3:a3:17:48:c9:ac:a2:6b:d3:21:
56:2a:c5:d7:25:9f:26:4b:a5:7c:31:98:38:93:52:
6e:d9:ee:0b:d5:1b:be:79:e5:13:c9:c8:66:e6:e3:
ea:18:33:7a:f9:4f:f4:be:13:1e:b5:d9:63:9d:08:
10:fd:14:89:94:6c:37:be:50:2b:4e:17:de:e2:8a:
b2:e5:12:d4:a9:fd:7a:cb:e0:e4:17:3f:3f:65:bf:
2e:81:1d:35:94:18:d3:59:c0:b5:28:19:9c:2c:7b:
e4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F4:5B:49:BD:5E:0A:D1:F3:A8:1F:BC:8D:9D:FA:D2:32:48:DE:80
X509v3 Authority Key Identifier:
keyid:F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/afRbSb1eCtHzqB-8jZ360jJI3oA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.234.47.0/24
185.51.231.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:35:c9:74:12:e5:7b:85:e7:74:79:22:7d:d9:80:c7:e9:a1:
ed:45:3f:a9:47:84:9c:df:ba:51:17:23:29:46:6f:b9:9e:d5:
69:4e:72:45:55:f2:dc:f9:70:9f:a4:16:b4:a5:26:25:96:c2:
35:3a:f7:46:80:21:ff:01:61:33:ed:d9:e7:5b:b1:d3:3c:ee:
96:8b:38:cf:ec:16:b0:f3:e7:3d:95:4e:9c:42:59:89:82:d7:
3e:5f:b1:be:a0:42:d7:f2:08:b0:a0:d8:b4:43:47:08:ea:ab:
9c:8d:e1:6d:95:ff:dc:0d:39:24:16:8c:f2:92:82:11:6a:17:
73:ce:03:e4:47:1b:d0:27:1f:65:71:d4:9d:c8:ce:73:81:8c:
1a:28:2e:0a:a2:69:83:d2:ca:d5:76:3c:c4:37:e1:0b:ce:6c:
91:7a:bf:76:4d:aa:79:f5:73:b3:a4:35:d4:66:bb:5b:6f:65:
7b:13:ff:af:61:ce:39:0b:bb:2e:09:24:b6:c3:02:70:01:1d:
ec:07:f5:41:3b:40:0c:a1:18:e6:84:67:a7:00:ca:16:f7:a1:
3a:1f:08:fe:61:8b:19:65:30:ba:4c:b3:3a:c2:f7:29:a2:2a:
fd:02:3a:46:47:fe:fa:d9:50:2a:e9:d0:65:6f:c4:b4:67:5e:
8e:c2:94:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:26 2023 by rpki-client on console-fra.rpki-client.org