Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/3f14pamgcBUYandpUjuhVee2LCA.roa
File: 3f14pamgcBUYandpUjuhVee2LCA.roa (raw, json)
Hash identifier: O6zb7CJNI+F7yTDL2Ls6WWozVVNQmLy6/FQFhKWAkTM=
Subject key identifier: DD:FD:78:A5:A9:A0:70:15:18:6A:77:69:52:3B:A1:55:E7:B6:2C:20
Certificate issuer: /CN=682c842dfa2a1e714727bccb95f165347103f277
Certificate serial: 1689BA4B
Authority key identifier: 68:2C:84:2D:FA:2A:1E:71:47:27:BC:CB:95:F1:65:34:71:03:F2:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCyELfoqHnFHJ7zLlfFlNHED8nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/3f14pamgcBUYandpUjuhVee2LCA.roa
Signing time: Sat 01 Jan 2022 09:01:33 +0000
ROA not before: Sat 01 Jan 2022 09:01:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50168
IP address blocks: 77.80.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 378124875 (0x1689ba4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=682c842dfa2a1e714727bccb95f165347103f277
Validity
Not Before: Jan 1 09:01:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddfd78a5a9a07015186a7769523ba155e7b62c20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f6:d2:44:c6:f5:bd:f6:12:01:d2:58:be:d0:
91:50:40:b7:77:b0:c7:56:99:5a:2f:3d:ce:70:2f:
cd:79:d4:49:b0:e2:6a:24:68:31:69:c3:4d:2d:c9:
60:93:07:06:54:f9:8b:7b:7a:e0:c7:71:93:2b:ce:
46:86:0e:63:35:12:ae:ff:01:e2:88:8c:c6:ef:06:
25:f6:f0:5f:67:9a:09:0c:aa:cd:2d:d4:a1:d3:03:
95:19:94:8c:40:4c:cb:28:3d:4d:f6:58:20:2d:66:
6f:1c:87:01:c2:20:ef:37:8c:7d:2e:4e:eb:f1:ba:
74:10:a2:4b:9c:26:91:57:8c:0b:08:2b:b9:05:42:
2b:07:8f:13:2d:b2:c8:e1:73:6e:c0:20:9d:69:e6:
f7:33:f5:e0:24:bc:cd:20:fa:05:2a:a3:de:cc:0c:
44:9b:50:7a:16:bf:95:0a:cd:d9:d1:ed:42:83:83:
7a:01:5e:23:2a:ee:0e:49:b9:e0:ce:a4:d4:49:54:
f3:f5:61:be:d7:48:e4:30:2e:58:f9:d4:d6:ef:14:
da:95:d0:50:9e:bb:f3:03:6d:46:cd:ca:1c:75:ca:
2f:08:c7:66:8d:fb:85:fb:57:46:92:40:b3:e3:1e:
91:36:27:68:bc:66:05:8e:d7:24:76:f9:7e:aa:8e:
8e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:FD:78:A5:A9:A0:70:15:18:6A:77:69:52:3B:A1:55:E7:B6:2C:20
X509v3 Authority Key Identifier:
keyid:68:2C:84:2D:FA:2A:1E:71:47:27:BC:CB:95:F1:65:34:71:03:F2:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCyELfoqHnFHJ7zLlfFlNHED8nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/3f14pamgcBUYandpUjuhVee2LCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/000465-83cb-41b4-8e60-08d65b38639d/1/aCyELfoqHnFHJ7zLlfFlNHED8nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.80.254.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:47:69:cb:b6:87:97:22:80:02:1a:ae:26:76:73:34:cb:ba:
c2:38:bd:19:17:53:87:bc:05:ea:52:3e:bb:f9:fc:4d:b3:66:
f2:d4:8d:23:97:eb:bf:50:20:cb:0b:4e:1e:fd:bc:b7:8f:0a:
c9:8b:e8:bb:ae:b2:a4:07:76:9c:ff:b5:90:70:18:78:fe:77:
35:54:e1:65:c6:92:ce:0f:89:48:ba:ed:af:e8:68:48:78:ec:
5a:25:39:bc:84:35:5a:e3:13:13:8d:b8:41:6b:3b:69:14:13:
8d:18:88:86:7d:2a:d2:e0:b2:aa:20:6c:b0:09:3b:d7:00:6c:
54:5a:3a:1e:c9:5a:4b:a3:4b:8f:b5:cc:a3:3c:d1:89:29:e7:
0c:89:f2:81:7b:f2:f5:38:66:60:93:e9:04:f8:85:7e:90:9e:
1f:50:f3:99:7d:f1:e9:6f:e2:34:07:a2:32:fc:f3:54:c5:d4:
4b:7d:0a:de:b6:c3:57:c4:7b:af:4c:71:3c:07:e1:cf:87:4d:
42:a8:c0:82:ee:0c:02:d4:97:77:bf:be:66:05:ed:49:d3:e5:
6f:cc:af:92:73:88:2d:b2:08:df:61:da:a6:46:4a:f8:10:e1:
48:00:1d:1b:33:5d:4f:21:0f:45:4c:08:83:cc:b9:60:f0:8d:
73:f0:6f:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:59 2024 by rpki-client on console-fra.rpki-client.org