Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/RX-ohzezzLVAAUBggm8ydQNk2Rg.roa
File: RX-ohzezzLVAAUBggm8ydQNk2Rg.roa (raw, json)
Hash identifier: WFL5/vPfuIao+36MxBT9bZdzTDJo+AESmVaV7XgQF+k=
Subject key identifier: 45:7F:A8:87:37:B3:CC:B5:40:01:40:60:82:6F:32:75:03:64:D9:18
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 07A7C40A
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/RX-ohzezzLVAAUBggm8ydQNk2Rg.roa
Signing time: Sat 01 Jan 2022 05:56:59 +0000
ROA not before: Sat 01 Jan 2022 05:56:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 77.105.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128435210 (0x7a7c40a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 1 05:56:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=457fa88737b3ccb540014060826f32750364d918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:87:44:02:6d:51:2d:de:aa:4f:ff:2a:ad:11:
14:ba:82:07:aa:40:1c:79:1e:3a:93:41:23:fa:e8:
1c:8b:e9:50:ab:bf:0e:cd:0d:2d:2f:3d:f9:bb:19:
7a:d9:d9:7b:82:f7:45:d8:5f:35:74:aa:34:a2:22:
c5:09:69:9f:5e:ea:11:20:2e:45:03:09:dc:56:ad:
47:fa:47:4a:41:9e:e6:4c:48:25:14:f2:94:c0:f5:
01:2e:b3:b7:1e:14:2b:ee:1b:b8:61:a1:49:8e:c5:
7e:cf:e4:87:ac:26:eb:93:ec:fd:8b:e6:bb:6a:c3:
43:ff:74:a3:2a:50:c4:c3:ec:26:96:88:df:fe:32:
38:77:1f:f6:60:43:6a:e4:93:75:23:a4:75:79:c9:
1f:a4:3d:f2:91:a5:a6:fe:1c:c2:50:7c:9c:30:a5:
34:d9:81:72:a1:20:cb:30:18:50:b5:f1:e0:6a:2f:
17:8d:bb:2d:37:68:73:82:7a:6f:44:9a:4c:91:79:
ae:fc:3c:1f:01:48:b9:77:07:37:79:38:3d:dc:dd:
20:d4:d8:7b:0b:d2:eb:93:fb:65:db:ce:57:5c:2d:
31:a6:79:ef:16:85:9b:e2:b2:14:a0:76:56:1e:c5:
8f:43:8f:b1:98:0c:74:f0:5b:46:b9:ed:78:0b:9b:
49:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:7F:A8:87:37:B3:CC:B5:40:01:40:60:82:6F:32:75:03:64:D9:18
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/RX-ohzezzLVAAUBggm8ydQNk2Rg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.4.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:0d:8b:40:ca:6c:de:78:cf:fd:a1:90:5b:77:fb:fd:35:2c:
c2:62:7f:35:81:28:4a:b4:fd:26:b4:83:8c:12:ef:05:6e:48:
88:29:12:6c:1f:b8:4b:db:47:58:f2:8d:f4:b3:b3:b6:1c:bf:
30:1f:27:b2:16:a9:c1:94:da:50:62:e6:2d:9e:e4:6f:42:9b:
65:bf:a5:dc:9b:b0:a0:ec:69:e9:fd:57:d8:32:7c:69:54:dd:
56:d5:86:1f:0f:5d:06:8e:e3:e1:cd:f1:6a:8f:3b:6e:57:1e:
c6:00:04:ee:bd:93:6c:39:3d:da:4a:27:d1:8f:24:b1:0e:ac:
e0:47:5b:fd:3c:da:68:99:7a:10:a2:78:47:92:3c:da:75:72:
13:a2:04:9d:b6:dd:21:f1:0d:24:4e:d1:9e:88:16:62:ab:38:
9b:13:11:80:65:10:88:41:de:a1:f6:8b:80:c6:1b:ef:96:5d:
02:ad:6e:1f:e4:82:13:c7:43:f6:db:c8:1b:f9:96:9d:44:8c:
8d:be:d5:08:bc:30:fb:b3:2e:f6:da:19:30:8b:88:7d:63:cd:
92:f5:4a:a3:cd:29:7a:41:21:8b:13:ee:a3:e2:2a:f4:5d:51:
5c:18:80:fe:3b:8b:53:ac:0b:41:8a:60:cc:43:f5:23:de:51:
a5:b8:3d:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:26 2024 by rpki-client on console-fra.rpki-client.org