Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/hGA9E8fEquHiA0yo9bZnCVpX5tY.roa
File: hGA9E8fEquHiA0yo9bZnCVpX5tY.roa (raw, json)
Hash identifier: JLc+sxOoWkk5pcXSy7oDHL6YIH5maCgjB7g9d+YiqBk=
Subject key identifier: 84:60:3D:13:C7:C4:AA:E1:E2:03:4C:A8:F5:B6:67:09:5A:57:E6:D6
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 09C05684
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/hGA9E8fEquHiA0yo9bZnCVpX5tY.roa
Signing time: Tue 28 Jun 2022 10:23:02 +0000
ROA not before: Tue 28 Jun 2022 10:23:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 212.69.0.0/24 maxlen: 24
77.105.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163600004 (0x9c05684)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jun 28 10:23:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84603d13c7c4aae1e2034ca8f5b667095a57e6d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:36:fe:3c:7f:ef:5f:f5:f1:62:08:3e:64:e8:
b4:dd:e1:7a:bf:4a:af:f7:9e:29:b5:4c:35:4f:cd:
06:31:94:d3:63:3c:e1:10:6f:af:5c:c5:84:b8:88:
1a:54:c0:c3:d4:70:2d:44:86:d3:d0:d6:bc:28:54:
55:32:22:38:73:45:42:8d:4f:a1:09:60:fa:8a:3c:
69:ae:fc:92:7b:85:38:af:86:0e:e6:a6:ed:3e:49:
74:61:dd:3e:cd:02:6e:68:47:5c:e6:cc:1e:98:80:
0a:fd:b9:57:bf:bd:db:e7:2f:53:7c:d6:37:88:ce:
4b:69:08:6d:c8:42:78:07:90:09:cc:5a:ec:7e:d8:
77:4e:f6:0e:9c:cc:e8:78:d2:f2:c8:47:8e:9d:e3:
d0:a8:52:b9:54:c9:55:6a:aa:c5:d1:a7:22:6a:39:
36:e6:80:3f:09:a1:29:db:40:c9:a8:25:af:2e:3a:
2c:1f:38:fe:14:17:8c:1d:c0:66:00:f9:f1:0c:6e:
16:4b:49:2e:69:9b:fa:c0:7f:13:1a:6a:69:70:4b:
90:fb:80:2a:94:d8:f8:48:df:32:25:30:00:e6:4b:
5f:20:64:70:78:37:78:a9:39:13:1f:b8:66:d2:0c:
48:f2:7d:63:1e:97:66:07:34:1a:7a:88:d8:8d:76:
24:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:60:3D:13:C7:C4:AA:E1:E2:03:4C:A8:F5:B6:67:09:5A:57:E6:D6
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/hGA9E8fEquHiA0yo9bZnCVpX5tY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.8.0/24
212.69.0.0/24
Signature Algorithm: sha256WithRSAEncryption
91:12:60:74:f0:30:d6:a0:df:f2:e4:56:7d:80:50:7d:59:34:
63:6a:99:fe:00:2d:9e:bf:eb:4b:32:2b:d1:b3:e8:5b:f2:8a:
c5:7f:b9:45:8f:ea:1c:b6:75:3c:22:43:d3:8e:d4:bd:8a:be:
ef:6c:9c:1e:f0:0c:50:10:75:47:75:46:b5:97:c8:02:ea:f7:
48:a8:02:e0:39:c1:89:c0:6a:6c:46:b6:df:f2:b7:5e:60:96:
51:67:45:4f:16:2e:bb:5f:8a:e8:db:81:f4:3e:ea:fc:87:60:
08:07:3e:b8:cb:f8:1d:5d:62:73:ed:1a:7b:2d:79:94:e4:bb:
c8:c2:cc:ba:8e:6e:f0:59:eb:c8:44:dd:5f:bb:1d:e7:ef:47:
af:74:dc:ed:f5:e7:5f:1c:76:ef:a7:be:ea:2d:d1:ca:aa:9c:
d1:13:0b:7d:ef:48:ca:77:59:b0:70:c8:4b:41:b1:3f:79:d6:
1c:a5:85:16:63:36:8e:f5:89:16:ce:46:81:92:4c:13:87:9c:
78:3a:1c:32:55:c9:3c:64:ef:55:d7:8e:fc:db:a6:44:2a:ff:
03:ef:cf:76:7d:b9:94:e5:1d:51:da:65:c2:2c:64:8a:76:b3:
80:ec:8c:05:a3:70:26:70:29:0a:41:13:ea:2c:09:82:4b:a7:
90:62:6b:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:20 2023 by rpki-client on console-ams.rpki-client.org