Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/IJYz9qu13KvJVTvZq0DmUIYk9Vo.roa
File: IJYz9qu13KvJVTvZq0DmUIYk9Vo.roa (raw, json)
Hash identifier: 8qDAD8dOLrhOwF9DqSjEsUCz92pR8kaJZWO55fr45BI=
Subject key identifier: 20:96:33:F6:AB:B5:DC:AB:C9:55:3B:D9:AB:40:E6:50:86:24:F5:5A
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 080E42E4
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/IJYz9qu13KvJVTvZq0DmUIYk9Vo.roa
Signing time: Mon 07 Feb 2022 17:18:11 +0000
ROA not before: Mon 07 Feb 2022 17:18:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208798
IP address blocks: 77.105.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135152356 (0x80e42e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Feb 7 17:18:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=209633f6abb5dcabc9553bd9ab40e6508624f55a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3c:3b:41:82:ed:ec:a6:ba:02:65:70:1f:79:
df:d3:4d:fd:16:8c:c8:0f:59:57:d9:84:b8:56:78:
98:b3:7a:e5:62:3e:6a:99:35:a1:21:f4:bd:47:54:
5c:ac:19:ad:62:fb:c7:80:af:47:22:5d:97:a8:e1:
07:b6:ee:31:10:91:de:fb:6b:54:bd:ea:e0:bb:9b:
3b:91:12:eb:b2:14:16:29:f9:7e:65:dc:94:87:e0:
94:a1:56:fc:ee:a1:56:21:0c:c3:eb:df:a8:ff:42:
e5:df:dc:8b:5d:33:eb:87:1f:fa:bc:59:39:c2:95:
ff:ab:aa:30:a7:f9:ac:82:c4:4a:34:95:0c:9b:5b:
0b:4e:8c:64:51:02:86:e2:96:b0:2e:03:40:33:25:
ef:35:0b:71:3d:fc:bc:cd:c2:db:c1:d6:2f:17:3a:
b1:bb:b9:66:97:85:40:37:cd:9c:b1:0c:dd:f4:81:
1d:d3:9e:c2:42:1a:07:db:40:35:08:84:19:38:8e:
d0:c3:50:e0:fe:5d:f3:f0:94:16:9a:1d:df:db:b9:
c1:65:64:7c:f7:5b:81:7f:e5:9a:79:b5:c6:fb:90:
9a:28:a5:1d:54:e0:2d:35:3e:3a:ff:06:18:ba:e9:
0f:e9:56:16:87:d8:c7:9b:e5:4c:7e:49:25:06:93:
1f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:96:33:F6:AB:B5:DC:AB:C9:55:3B:D9:AB:40:E6:50:86:24:F5:5A
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/IJYz9qu13KvJVTvZq0DmUIYk9Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.9.0/24
Signature Algorithm: sha256WithRSAEncryption
41:d2:eb:e1:92:9b:ec:52:24:a9:50:b9:ac:69:9d:0a:2c:71:
5a:ed:f5:04:24:c3:68:ed:19:08:77:bd:d2:c0:f2:5e:0b:6a:
f6:ed:d1:0e:7a:b5:c7:3e:fa:34:26:2e:02:df:82:dc:96:24:
19:a8:2f:02:ad:fb:b7:94:5d:08:5e:d1:d4:1b:d3:a2:54:5e:
cc:db:bc:ae:7b:6a:04:70:6a:4b:c1:98:17:2b:01:dd:39:6a:
b9:f6:1a:b7:0b:d1:e5:ed:38:c3:d1:4f:75:c4:50:54:d3:92:
51:2b:a0:82:9a:f1:6f:3b:b9:61:b7:60:a9:07:35:80:26:94:
58:7c:b4:5c:1f:d2:bf:97:83:8a:bb:1d:e0:59:40:9d:59:3d:
c7:25:07:5a:87:9b:91:b4:47:a0:88:fa:f0:06:b8:8c:36:41:
ea:01:10:00:80:b6:10:3a:d6:66:dd:47:85:28:78:d1:d6:68:
95:52:e5:4c:4a:a7:9e:7a:dc:a2:d1:0a:1a:84:64:9f:b4:f1:
bc:7d:34:e7:47:1b:41:05:4f:0a:05:34:67:17:ff:d2:9f:73:
33:e8:0c:b6:77:57:44:0c:23:f6:d2:d3:8c:54:eb:2c:82:23:
63:5d:19:c9:49:78:e9:d4:26:2e:de:de:c4:36:62:d2:bf:c5:
1c:93:5f:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:32 2023 by rpki-client on console-fra.rpki-client.org