Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/9LgUByo5upFmm3GaK3QoUYg2K9E.roa
File: 9LgUByo5upFmm3GaK3QoUYg2K9E.roa (raw, json)
Hash identifier: jB4RcCdmTIU+pt4s1ZW9gtu7xcWtoHHNE9msWLoA5os=
Subject key identifier: F4:B8:14:07:2A:39:BA:91:66:9B:71:9A:2B:74:28:51:88:36:2B:D1
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 06002BD6
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/9LgUByo5upFmm3GaK3QoUYg2K9E.roa
Signing time: Sat 01 Jan 2022 13:55:35 +0000
ROA not before: Sat 01 Jan 2022 13:55:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207412
IP address blocks: 77.231.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100674518 (0x6002bd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jan 1 13:55:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4b814072a39ba91669b719a2b74285188362bd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a2:ce:1b:70:f6:2b:31:85:c3:c8:e7:42:f6:
27:c7:1b:cc:6d:94:08:e5:c5:fb:dd:4b:06:6f:a8:
20:de:59:b8:b6:44:ba:44:42:81:bd:42:39:52:06:
37:da:09:82:75:44:72:5d:2d:61:fd:34:68:ef:7c:
8e:f2:8e:df:d6:c1:50:6e:13:12:ff:43:99:a7:a9:
e4:c1:1a:b3:4c:f1:72:c7:36:63:f1:72:9d:0d:be:
92:ff:81:3a:6e:ab:99:e0:7a:3b:96:4f:05:cf:9e:
5a:c8:4e:15:7d:5e:61:81:b6:98:a7:31:cf:22:e3:
f1:ae:e0:fd:20:47:f7:66:f7:41:6b:f4:9c:ee:8b:
5c:ec:17:f4:df:ef:7b:bf:cd:72:b5:d7:d4:b6:b2:
e5:39:ac:e8:b0:3e:77:73:99:7d:63:9c:84:89:fd:
d1:ee:96:1c:48:61:2c:0b:9d:41:ba:1f:5b:bb:21:
bb:18:80:2b:af:8e:9f:06:44:c7:3e:84:8e:c0:f2:
c1:b1:ac:05:70:1b:ee:b3:cb:63:ec:84:b7:86:4b:
94:ff:6f:b3:f7:e8:0b:c3:84:3b:73:0a:02:cc:d1:
54:17:52:35:62:31:32:60:df:97:d3:56:49:20:b6:
9a:73:04:42:33:eb:11:8e:05:a7:c7:16:ce:c1:15:
b5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B8:14:07:2A:39:BA:91:66:9B:71:9A:2B:74:28:51:88:36:2B:D1
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/9LgUByo5upFmm3GaK3QoUYg2K9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.231.176.0/24
Signature Algorithm: sha256WithRSAEncryption
71:73:82:32:29:07:61:4f:79:9e:99:ab:33:d9:9b:f1:33:b8:
df:7d:8b:6b:fb:2e:da:5d:0a:2e:00:99:e2:53:33:42:fc:ae:
b5:b6:23:5e:8d:de:c1:50:59:96:9e:fe:ba:79:d6:5a:43:63:
26:d1:b6:38:d8:72:e4:f7:f7:07:83:cf:38:e7:98:96:be:72:
02:5f:50:75:0b:d9:f2:77:38:f2:3b:5e:ba:d0:da:ad:3b:77:
33:fd:1d:bc:21:79:0c:2e:b6:ae:23:80:3e:ce:6c:15:96:b5:
1e:33:15:29:7e:47:09:cb:9d:a3:c1:d3:4c:cb:e4:1a:90:e8:
ea:9c:e5:67:7f:32:61:21:40:22:92:ef:98:3c:fb:2f:9d:52:
3a:1f:33:a9:c9:a2:f5:8c:14:34:68:2b:1f:76:4e:4c:7d:68:
44:47:1a:a4:1c:52:db:1b:a9:78:01:ce:02:af:24:92:ca:1c:
0d:4e:b3:41:27:1c:39:63:6d:e7:5c:99:ce:27:95:d7:14:cb:
eb:1c:31:08:58:2a:27:18:58:7c:28:2e:9a:9f:a3:59:d1:40:
12:2d:a4:ea:5f:04:bc:af:3b:c6:24:1d:ef:a5:7b:af:67:e0:
7f:77:93:ba:07:b0:06:56:e2:43:1c:4d:14:f1:97:a7:ba:a3:
95:b6:ed:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:12 2024 by rpki-client on console-ams.rpki-client.org