Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/KX2x6er3ykKnZkWVB6CX57MsBAY.roa
File: KX2x6er3ykKnZkWVB6CX57MsBAY.roa (raw, json)
Hash identifier: cjtzln9E+XF2mHJ1RcHbmpGP/7OI4MF4LH4Z0jHAI/8=
Subject key identifier: 29:7D:B1:E9:EA:F7:CA:42:A7:66:45:95:07:A0:97:E7:B3:2C:04:06
Certificate issuer: /CN=2400b20606314858a7b3f2a975e8e9d919ec753a
Certificate serial: 151C36C5
Authority key identifier: 24:00:B2:06:06:31:48:58:A7:B3:F2:A9:75:E8:E9:D9:19:EC:75:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JACyBgYxSFins_Kpdejp2RnsdTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/KX2x6er3ykKnZkWVB6CX57MsBAY.roa
Signing time: Sat 01 Jan 2022 06:03:29 +0000
ROA not before: Sat 01 Jan 2022 06:03:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198149
IP address blocks: 77.246.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354170565 (0x151c36c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2400b20606314858a7b3f2a975e8e9d919ec753a
Validity
Not Before: Jan 1 06:03:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=297db1e9eaf7ca42a766459507a097e7b32c0406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9c:ea:ce:5e:59:36:cc:9a:82:40:5d:8f:f1:
9d:9d:0f:26:3f:b9:c1:f9:ae:30:24:a9:67:73:8e:
96:6f:17:33:ea:62:0a:9d:e7:a4:7e:d1:5f:42:f6:
13:cf:ec:00:3f:12:5e:4e:f2:3d:ea:8e:42:78:5b:
cd:c3:a1:c1:7f:8c:19:52:17:b9:2c:ad:63:80:bc:
e9:28:7a:88:69:8a:87:72:ed:1d:dd:c4:3e:b6:62:
4b:5f:df:76:d4:82:2b:7f:67:ca:97:92:ac:16:cf:
43:da:15:4a:a9:94:4d:d1:4e:cc:18:55:7d:15:b0:
e1:7a:0a:22:b8:8c:96:c7:e7:e5:2f:0e:2c:ee:bb:
13:3c:1e:97:ce:ff:96:24:15:fa:83:0c:ef:77:af:
a9:f6:c0:0a:88:e9:1f:9e:ec:a9:57:bc:db:8c:11:
5d:71:88:39:40:a2:ac:bc:c0:b0:fc:6c:e5:c0:8c:
0e:bc:98:99:31:31:4e:ef:21:3b:54:7d:94:38:3b:
90:e4:aa:61:31:04:ab:8a:39:b1:a5:aa:3f:5f:70:
b6:f7:2a:ba:84:ff:82:8e:94:47:6b:8e:b3:32:36:
26:6c:8e:87:62:18:e4:a9:b6:00:07:70:c8:dd:c2:
04:ac:cb:3c:34:51:87:9e:80:2e:31:0a:18:0c:12:
59:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:7D:B1:E9:EA:F7:CA:42:A7:66:45:95:07:A0:97:E7:B3:2C:04:06
X509v3 Authority Key Identifier:
keyid:24:00:B2:06:06:31:48:58:A7:B3:F2:A9:75:E8:E9:D9:19:EC:75:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JACyBgYxSFins_Kpdejp2RnsdTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/KX2x6er3ykKnZkWVB6CX57MsBAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/JACyBgYxSFins_Kpdejp2RnsdTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.177.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:0d:de:2a:f4:24:24:5f:d1:96:91:50:f3:0c:22:54:95:1b:
37:53:58:35:11:f1:a3:78:f2:61:93:5b:cf:4c:75:26:25:c6:
63:54:1a:aa:6a:a3:41:4e:ce:b6:fb:58:93:ff:b8:e3:12:e3:
30:f5:41:d2:00:34:01:8b:ea:6d:5f:bf:ee:04:f1:9a:6a:8f:
ba:b6:83:97:1a:dd:96:62:fd:cb:7c:a8:da:e4:fe:31:5a:aa:
d3:2d:16:51:17:28:df:67:1a:f9:c9:e1:7e:69:9b:2c:9b:8c:
39:87:8e:e3:70:df:d3:c4:4c:17:a0:7a:b9:cd:04:73:1f:dc:
fc:f7:34:8c:cf:ae:a7:f0:8d:ce:18:87:b1:e1:57:0a:95:9a:
ac:61:e5:01:dc:da:0a:62:71:c9:df:b0:f0:fe:2e:df:fd:be:
64:0b:f7:bc:48:9b:89:15:15:61:f1:a8:4e:00:48:46:a8:89:
80:de:39:a3:1f:23:2a:73:61:4b:36:1f:e4:1b:fa:55:07:ba:
bf:8d:21:dc:5d:df:db:06:fb:69:c3:28:1e:40:d1:1b:3f:fb:
23:16:91:ad:8d:a7:96:7c:6e:cc:3b:78:d7:3c:5f:21:7c:e0:
43:8c:fd:4a:ea:b7:3e:31:75:cb:d1:70:db:83:1c:98:80:6e:
a1:87:86:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:55 2023 by rpki-client on console-ams.rpki-client.org