Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/20974d-6403-4107-a75b-13fb7a5130ca/1/6AiJtOzOJo6xM2NRy-V8KUNNAsI.roa
File: 6AiJtOzOJo6xM2NRy-V8KUNNAsI.roa (raw, json)
Hash identifier: yPYjPh8OzxsDPnDInXrCsQRR6eLFfA1gM+V4+wmd2sw=
Subject key identifier: E8:08:89:B4:EC:CE:26:8E:B1:33:63:51:CB:E5:7C:29:43:4D:02:C2
Certificate issuer: /CN=b4ec6c0a5ebec5817d91b91e79a6bc6132eb9d2c
Certificate serial: 16F40D13
Authority key identifier: B4:EC:6C:0A:5E:BE:C5:81:7D:91:B9:1E:79:A6:BC:61:32:EB:9D:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOxsCl6-xYF9kbkeeaa8YTLrnSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/20974d-6403-4107-a75b-13fb7a5130ca/1/6AiJtOzOJo6xM2NRy-V8KUNNAsI.roa
Signing time: Sat 01 Jan 2022 14:55:45 +0000
ROA not before: Sat 01 Jan 2022 14:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20649
IP address blocks: 185.77.1.0/24 maxlen: 24
185.77.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 385092883 (0x16f40d13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4ec6c0a5ebec5817d91b91e79a6bc6132eb9d2c
Validity
Not Before: Jan 1 14:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e80889b4ecce268eb1336351cbe57c29434d02c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:49:00:6f:a1:5d:50:37:74:ff:ed:df:df:62:
10:e5:0f:de:35:02:58:22:af:04:b3:7b:d5:54:7d:
c4:df:5e:f8:8f:4b:d1:a5:27:10:a8:e6:2c:ee:ba:
e8:4c:f1:37:8f:78:33:41:39:87:06:52:ff:b1:b0:
93:05:3a:8b:e6:bf:56:65:97:00:f2:dd:6c:e4:a1:
9c:08:07:22:e6:09:c1:2d:4d:7f:c9:6f:b6:d5:59:
a6:b6:c2:70:10:48:a6:ba:ee:d1:cc:27:01:da:7c:
60:40:1f:68:38:08:ee:ea:ab:19:13:63:08:38:08:
07:15:2c:7d:c2:18:5a:91:49:73:29:07:6c:0c:82:
d4:99:0d:f9:e0:a9:7a:22:e7:32:ff:eb:c1:6e:ec:
f1:82:46:c8:78:8a:e7:b4:fe:7e:b5:d9:0b:b8:8b:
95:d3:3e:14:c3:93:a9:60:8b:a5:2e:cb:31:38:72:
97:ce:e9:82:64:5d:c9:71:b0:a8:95:16:bd:62:ff:
33:b0:c4:d5:83:0f:de:f9:bb:68:b0:d3:b9:c0:75:
3a:41:9b:07:3b:f5:61:ca:d2:d9:13:2b:6e:79:c3:
fc:2d:08:fa:d4:84:00:72:2b:86:da:36:a7:16:f5:
ba:f1:0a:de:d0:e4:93:d3:26:94:d3:06:4c:bd:ff:
eb:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:08:89:B4:EC:CE:26:8E:B1:33:63:51:CB:E5:7C:29:43:4D:02:C2
X509v3 Authority Key Identifier:
keyid:B4:EC:6C:0A:5E:BE:C5:81:7D:91:B9:1E:79:A6:BC:61:32:EB:9D:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOxsCl6-xYF9kbkeeaa8YTLrnSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/20974d-6403-4107-a75b-13fb7a5130ca/1/6AiJtOzOJo6xM2NRy-V8KUNNAsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/20974d-6403-4107-a75b-13fb7a5130ca/1/tOxsCl6-xYF9kbkeeaa8YTLrnSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.1.0-185.77.2.255
Signature Algorithm: sha256WithRSAEncryption
95:1d:23:30:b1:79:ba:ae:f6:cb:d8:f8:88:28:36:cf:d0:e0:
8e:d5:f5:db:22:78:ab:72:8d:10:17:1a:ee:70:fe:af:dc:fc:
10:19:c9:f2:c9:43:62:e8:f6:89:cc:ae:dc:bc:0b:d3:23:ea:
27:49:75:05:38:0d:c3:b6:92:08:6d:bb:94:9a:5d:dd:9b:ca:
02:a4:c8:a3:fc:9b:03:96:94:ac:3b:45:c1:2d:aa:d9:16:82:
a3:93:12:87:fd:2d:7d:26:00:df:f7:50:f7:3a:5f:f4:b2:cb:
d5:ce:bc:d6:14:ca:ad:a5:05:a0:88:72:66:f7:88:dc:6e:8c:
3e:ed:ff:fb:85:fd:b8:20:b1:96:39:d3:2e:e9:c4:81:c0:cd:
89:f1:5e:83:c0:33:63:30:08:d6:d2:ee:e9:51:ab:8c:a1:33:
d2:dc:58:37:1f:4c:e5:b5:19:3a:0e:72:60:d1:16:8e:dd:5c:
95:af:dd:3f:7e:14:cc:f9:0b:65:63:1f:36:f9:bb:1b:d3:86:
2f:20:d1:be:6f:e2:5a:f6:d1:e8:91:c1:6f:eb:78:37:d8:7c:
27:6e:e4:d3:14:10:b8:4a:00:94:0b:52:03:1e:6c:d3:65:f3:
df:c8:29:49:bb:ba:3d:f6:8f:7e:3f:25:6f:e2:6b:29:33:d2:
d9:ea:1d:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:13 2023 by rpki-client on console-fra.rpki-client.org