Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/M_OYc8BtHrxxl5zjBWBbqVN4QuY.roa
File: M_OYc8BtHrxxl5zjBWBbqVN4QuY.roa (raw, json)
Hash identifier: 7NjCPiBQTZEPUEcchG7w9yFia3ANncQG3pC965PjvX0=
Subject key identifier: 33:F3:98:73:C0:6D:1E:BC:71:97:9C:E3:05:60:5B:A9:53:78:42:E6
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 092CB1D3
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/M_OYc8BtHrxxl5zjBWBbqVN4QuY.roa
Signing time: Tue 10 May 2022 12:26:03 +0000
ROA not before: Tue 10 May 2022 12:26:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 77.105.16.0/24 maxlen: 24
212.69.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153924051 (0x92cb1d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: May 10 12:26:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33f39873c06d1ebc71979ce305605ba9537842e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:08:43:c0:77:6a:00:a0:a1:9a:b2:2e:54:8b:
eb:dd:7c:c9:d6:c4:6c:da:d4:60:71:ec:af:da:93:
43:ac:d5:fd:e2:81:fb:50:ea:9b:a1:b8:11:0a:eb:
e4:ff:bb:77:99:2d:4c:fe:d2:50:a2:b1:53:e9:37:
95:61:99:11:28:ae:62:f9:97:0c:dd:54:83:d6:17:
5e:bd:b2:0e:80:2d:b7:3c:26:70:38:91:5c:47:bb:
b9:1c:ac:69:58:d4:fc:01:65:95:9a:6e:e4:f2:59:
97:7a:62:c5:c6:33:e9:69:cf:47:ce:17:6f:b9:44:
b3:0c:5f:ba:8f:1f:f0:6e:8e:c6:65:9e:d7:12:44:
31:a9:ea:ae:2a:54:1b:ef:f3:17:24:2d:92:30:91:
8c:bb:39:3d:aa:12:87:e5:7c:b3:0d:86:43:f5:8f:
b0:da:ea:f4:c6:65:9d:2f:5f:52:f5:ca:cc:85:5b:
dc:d1:d3:09:60:49:f8:27:47:15:3e:20:7a:c5:d7:
8a:81:93:65:36:bc:8d:42:15:73:8c:26:8b:d3:92:
dd:9e:de:d9:ce:ca:ae:a2:9c:1c:06:4c:10:4f:83:
bb:6a:1a:3e:af:c9:ec:dc:c6:d8:77:7e:2b:6e:2f:
ae:1e:8f:05:67:9a:ed:b8:7a:ab:58:d0:78:ba:b4:
e3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F3:98:73:C0:6D:1E:BC:71:97:9C:E3:05:60:5B:A9:53:78:42:E6
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/M_OYc8BtHrxxl5zjBWBbqVN4QuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.16.0/24
212.69.10.0/24
Signature Algorithm: sha256WithRSAEncryption
61:49:31:76:ac:06:49:bd:a8:3c:4e:07:62:7a:00:00:ea:d6:
86:b2:c9:97:81:11:71:a3:1d:54:df:09:00:39:4e:2e:db:18:
f9:15:5b:2c:7f:86:48:de:7e:bf:4f:f9:41:6f:46:2a:db:85:
c6:a7:99:e7:38:c7:33:0b:50:e3:d3:a2:26:e0:91:55:4a:7a:
56:49:2e:99:be:44:ff:c9:e4:f5:bb:7b:b9:cd:7a:14:84:e2:
e0:e7:18:21:e2:8b:f5:fb:93:12:d5:32:5d:54:7a:6d:b5:fc:
64:0a:ab:2e:21:ee:25:73:2c:77:f7:c6:b8:3f:d1:01:d0:03:
f6:56:02:8b:0c:e5:18:e2:77:20:68:7b:c7:36:6f:22:74:0c:
02:80:29:1d:cd:9c:66:08:65:b9:41:c0:38:53:9b:7a:4f:f5:
48:a4:49:cc:57:99:e8:97:8d:aa:50:e4:57:de:da:2c:dd:14:
9b:70:97:92:8e:f4:68:f6:f9:38:b4:9e:9a:0a:b3:c5:03:ae:
52:3c:f1:37:dc:8a:c5:4f:f5:9c:a0:ed:10:e9:14:2d:b6:d6:
8a:2d:73:11:c2:0f:b3:20:79:86:23:bb:9e:39:48:69:77:db:
43:f0:87:ee:6a:26:79:0d:a2:52:6d:f3:32:b3:e7:74:f5:58:
29:ba:bb:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:19 2023 by rpki-client on console-ams.rpki-client.org