Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/NRZgxYVgB7SSBGr73JOIHaU5-M4.roa
File: NRZgxYVgB7SSBGr73JOIHaU5-M4.roa (raw, json)
Hash identifier: zbEbQqwJGTlcCghOrVS2zlpMsGAj5EVTIvWlK6FL4cQ=
Subject key identifier: 35:16:60:C5:85:60:07:B4:92:04:6A:FB:DC:93:88:1D:A5:39:F8:CE
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 09859AC5
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/NRZgxYVgB7SSBGr73JOIHaU5-M4.roa
Signing time: Sat 11 Jun 2022 09:49:05 +0000
ROA not before: Sat 11 Jun 2022 09:49:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 109.121.32.0/24 maxlen: 24
109.121.44.0/24 maxlen: 24
109.121.46.0/24 maxlen: 24
77.105.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159750853 (0x9859ac5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jun 11 09:49:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=351660c5856007b492046afbdc93881da539f8ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f3:ae:c1:fb:f8:e0:a8:26:ba:a2:bc:30:57:
5a:a8:99:4a:fe:ca:6b:f9:d2:53:fd:bc:74:ac:c7:
56:0e:17:28:ba:6e:39:9e:67:d9:21:6d:00:2b:3b:
5c:f3:db:3e:bb:43:20:b0:94:29:e0:58:1a:30:9c:
da:e4:55:64:66:21:27:12:a2:17:a1:c6:a0:64:b3:
25:d1:9b:cd:a7:b4:e6:b5:99:f9:68:70:f5:1c:e0:
32:fb:61:78:52:de:67:77:0a:31:6c:b4:d0:27:e5:
d5:cf:ed:f5:4a:04:a8:0f:36:b8:0b:b1:0e:02:31:
49:91:07:3b:49:d3:cd:3b:83:a2:de:fc:09:6b:aa:
91:c0:55:67:81:eb:e1:5b:e0:f4:d6:ef:1b:b6:84:
4f:a1:5a:1d:52:eb:e3:9b:70:d1:32:fb:43:9c:9a:
26:15:b5:e9:ff:0f:32:fe:84:26:6a:15:61:8c:5b:
1d:fd:ce:cc:f2:73:ea:ce:8d:43:8b:3f:b0:be:94:
66:2a:1b:a0:d6:cb:f3:e6:6b:0d:78:d8:33:ce:02:
cf:8f:4c:8c:aa:b3:f3:6f:ba:66:27:3e:68:b2:db:
e2:14:ed:c2:a4:d4:b6:6f:f7:f3:37:e4:3c:62:17:
ed:e3:8c:13:11:39:a9:0c:a4:49:0b:21:0a:7f:40:
6f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:16:60:C5:85:60:07:B4:92:04:6A:FB:DC:93:88:1D:A5:39:F8:CE
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/NRZgxYVgB7SSBGr73JOIHaU5-M4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.4.0/24
109.121.32.0/24
109.121.44.0/24
109.121.46.0/24
Signature Algorithm: sha256WithRSAEncryption
60:b8:a2:ff:20:c7:68:ab:01:c2:8b:ed:2c:4d:cc:94:6d:b7:
46:5d:59:6c:87:c9:a1:75:2e:b2:81:6e:04:d7:8a:44:e2:6a:
68:66:96:75:18:e0:1d:2d:a1:25:69:94:39:a4:f2:d8:a6:c3:
ec:09:6a:0e:b2:ef:15:2f:84:20:e5:b0:1a:c3:fa:10:ce:1d:
79:1f:0a:9e:17:89:c2:01:c5:36:c6:d2:79:da:f9:3a:7a:01:
48:74:4a:fd:51:d1:60:cd:0f:cc:c3:87:c9:ca:ed:2e:42:19:
bd:e5:c1:19:10:b3:f6:7e:0d:5c:a4:7e:84:df:2a:5f:91:f2:
73:22:08:83:84:59:fe:6d:98:c7:8b:f6:cf:d1:a4:ab:b9:19:
76:61:7d:2d:73:f1:16:ce:70:33:b0:f1:dd:2f:5b:90:2d:78:
9d:8c:d7:88:af:7b:36:43:fd:17:26:0e:31:1e:4f:ac:ca:ee:
28:3b:61:55:37:39:c8:35:cd:35:ea:da:0e:3a:12:5d:6f:fb:
e4:ca:42:c2:5d:9a:28:f9:73:41:f8:ed:c9:62:ea:f5:d3:d9:
12:eb:de:71:66:b1:5f:55:18:4d:ce:1b:e2:d5:2c:66:d7:d1:
3e:22:6a:81:4e:02:0c:fd:34:a8:b5:22:10:35:d6:95:f4:7c:
10:36:1a:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:32 2023 by rpki-client on console-fra.rpki-client.org