Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/2pey6M0PIbG7_beKyscGQRJUf9k.roa
File: 2pey6M0PIbG7_beKyscGQRJUf9k.roa (raw, json)
Hash identifier: Qc6Xbkh5TDlkLyBQcA23AdRGwtf+2WS8r8VMlT/9TZk=
Subject key identifier: DA:97:B2:E8:CD:0F:21:B1:BB:FD:B7:8A:CA:C7:06:41:12:54:7F:D9
Certificate issuer: /CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Certificate serial: 01852E93F6C5E373DB24AD03C21BA50781C1
Authority key identifier: 64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/2pey6M0PIbG7_beKyscGQRJUf9k.roa
Signing time: Tue 20 Dec 2022 08:08:46 +0000
ROA not before: Tue 20 Dec 2022 08:08:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211936
IP address blocks: 77.81.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2e:93:f6:c5:e3:73:db:24:ad:03:c2:1b:a5:07:81:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Validity
Not Before: Dec 20 08:08:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da97b2e8cd0f21b1bbfdb78acac7064112547fd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:54:c9:e3:ae:b7:b8:60:c3:bb:5a:d5:10:01:
e2:b3:54:0e:2e:20:f9:5b:f0:e7:b5:35:6a:c2:05:
ec:25:fa:f2:16:56:a7:11:9d:07:3f:96:2f:75:6c:
86:4f:5e:9f:77:d0:1f:05:50:3c:34:8f:58:5d:e6:
60:2c:c9:09:a6:44:84:40:01:ca:6c:18:13:64:41:
e6:d0:7a:1a:a1:bb:fd:53:e4:5d:71:98:f2:f7:09:
e7:c4:56:c1:0d:8c:e7:85:a7:38:e4:1e:1f:86:da:
87:9c:f1:2d:34:1c:5b:d1:fa:4c:bb:00:38:a3:52:
34:ca:c5:d0:91:23:cc:dc:14:59:3c:bd:94:a3:f7:
d9:3c:56:de:34:24:5f:23:ce:fb:78:50:48:c9:dc:
a4:39:09:40:21:51:c1:4f:26:59:4a:c1:4d:d0:66:
c9:7a:73:f8:6a:64:42:91:e0:b9:db:98:50:d6:cb:
57:38:de:d9:41:94:f8:62:2b:b7:c1:e6:3a:7b:cc:
be:a7:e3:d1:ca:80:e3:a2:15:3b:85:7d:84:f3:7c:
9a:bb:53:4e:d5:05:17:4d:d4:9a:15:ae:a4:82:96:
e8:da:58:08:9c:25:32:a6:48:ae:50:11:a0:bd:48:
fc:5c:13:85:ca:02:d9:f9:af:cc:be:c6:6d:d7:ce:
43:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:97:B2:E8:CD:0F:21:B1:BB:FD:B7:8A:CA:C7:06:41:12:54:7F:D9
X509v3 Authority Key Identifier:
keyid:64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/2pey6M0PIbG7_beKyscGQRJUf9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.103.0/24
Signature Algorithm: sha256WithRSAEncryption
83:f5:4b:da:eb:5c:d8:c0:19:4d:41:fb:e8:2c:88:82:c9:a9:
2d:9b:f4:3e:dd:15:8a:e5:86:e9:f2:74:c6:bb:12:41:9f:32:
8e:69:e0:60:2c:23:db:c6:58:2a:9a:17:07:79:e6:5e:97:c6:
ec:c2:d0:6a:35:c3:44:8b:5a:83:ce:75:4a:99:db:87:7a:26:
0a:7b:e4:08:a2:bb:b6:36:62:77:97:1e:ed:e4:f5:95:df:37:
59:02:dd:b1:30:13:93:14:72:a7:a5:f5:d7:06:ee:5d:65:45:
5a:35:fd:83:28:e1:ab:8f:05:71:2f:82:95:17:ba:db:8b:4f:
4d:95:65:70:9b:29:c5:15:71:01:a1:42:9d:d6:92:39:11:b3:
c4:bf:39:50:4b:9a:89:e7:4a:4a:e1:db:88:d3:69:ba:52:76:
9e:ac:6d:86:b0:df:68:7a:5c:54:63:e6:54:4d:94:e9:1a:80:
7f:08:92:38:81:75:2b:fc:d1:55:c7:c6:4e:3e:3d:28:ff:8c:
a5:57:53:a3:e8:61:b9:fa:43:41:c3:94:7f:ae:1c:29:77:c4:
c0:64:21:20:3b:7b:4f:e7:d8:64:6d:04:eb:62:63:23:ba:6e:
d5:75:19:ee:5f:b0:58:96:ce:85:35:c6:8a:50:5b:07:ad:62:
dd:b0:ed:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:02 2023 by rpki-client on console-fra.rpki-client.org