Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a3d85e-4335-425a-b0f6-8f54ab134d83/1/zfTRgobbcg88nF7s5AbVGxTgngQ.roa
File: zfTRgobbcg88nF7s5AbVGxTgngQ.roa (raw, json)
Hash identifier: KJGKw0V7J+AMafaQNGKndBKRJX/q4/K9OAYLOdolqdE=
Subject key identifier: CD:F4:D1:82:86:DB:72:0F:3C:9C:5E:EC:E4:06:D5:1B:14:E0:9E:04
Certificate issuer: /CN=14d6927b5a75b7669b1fe2ac8fdc7b61377c9101
Certificate serial: 0182CEA6D2D3A6F66D1ED83FF78E2C763530
Authority key identifier: 14:D6:92:7B:5A:75:B7:66:9B:1F:E2:AC:8F:DC:7B:61:37:7C:91:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FNaSe1p1t2abH-Ksj9x7YTd8kQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a3d85e-4335-425a-b0f6-8f54ab134d83/1/zfTRgobbcg88nF7s5AbVGxTgngQ.roa
Signing time: Wed 24 Aug 2022 07:00:15 +0000
ROA not before: Wed 24 Aug 2022 07:00:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49544
IP address blocks: 185.77.208.0/22 maxlen: 22
2a05:6440::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ce:a6:d2:d3:a6:f6:6d:1e:d8:3f:f7:8e:2c:76:35:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14d6927b5a75b7669b1fe2ac8fdc7b61377c9101
Validity
Not Before: Aug 24 07:00:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cdf4d18286db720f3c9c5eece406d51b14e09e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:cd:56:82:5a:7c:58:49:04:e8:9e:37:4f:3b:
f2:94:38:c2:39:28:1d:45:81:03:8c:d9:aa:92:1b:
56:d7:e2:3b:8f:24:2a:93:6d:f2:0b:61:b2:2c:62:
43:00:db:7e:92:3e:e2:5c:e4:94:52:27:a3:f8:9e:
16:be:38:73:2c:9d:0c:2a:f6:12:94:be:7e:44:6c:
65:8b:5e:54:6d:aa:ae:aa:2e:2c:60:25:13:3b:95:
64:7e:ed:d7:2f:f4:ce:2c:10:2f:36:b6:a9:e5:a6:
ac:d4:63:15:ed:a6:1d:f2:83:ac:17:d6:77:9d:90:
92:1f:05:2d:b1:96:8a:5c:2e:ed:a2:a4:07:70:a4:
28:f0:12:c0:a1:fb:eb:df:2c:cd:bf:07:e5:9b:1a:
a3:e0:a5:a9:17:00:80:ab:8b:c9:83:3c:71:3c:66:
c6:f1:c2:b1:16:66:cf:1d:0a:e8:7a:e1:ef:38:42:
37:4e:e8:c1:0a:11:63:c1:64:68:95:88:91:0c:60:
81:0b:0d:33:b2:e8:68:b7:84:99:2b:30:e9:df:89:
bd:fe:90:6e:6f:05:c5:0c:4a:aa:9f:9a:ba:22:c8:
9d:2d:1e:55:95:43:42:58:40:f9:02:b7:c1:ab:da:
a1:b7:d4:c9:34:ec:4e:55:80:0a:bb:9c:29:bf:7f:
19:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F4:D1:82:86:DB:72:0F:3C:9C:5E:EC:E4:06:D5:1B:14:E0:9E:04
X509v3 Authority Key Identifier:
keyid:14:D6:92:7B:5A:75:B7:66:9B:1F:E2:AC:8F:DC:7B:61:37:7C:91:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FNaSe1p1t2abH-Ksj9x7YTd8kQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a3d85e-4335-425a-b0f6-8f54ab134d83/1/zfTRgobbcg88nF7s5AbVGxTgngQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a3d85e-4335-425a-b0f6-8f54ab134d83/1/FNaSe1p1t2abH-Ksj9x7YTd8kQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.208.0/22
IPv6:
2a05:6440::/29
Signature Algorithm: sha256WithRSAEncryption
6b:19:1e:4b:64:8d:51:75:6c:7c:76:4a:ff:58:11:34:f5:9c:
54:2e:83:41:55:c9:b2:a4:1f:3b:0d:37:a0:6c:9c:1a:31:1f:
f4:6f:52:bc:eb:ae:ef:5e:25:1f:73:70:42:f3:68:9c:14:85:
93:b2:93:95:2b:91:b8:be:fb:e7:73:80:72:5a:51:4b:8f:22:
b2:21:d7:ee:af:c5:51:97:74:bb:a0:66:ef:c8:10:18:29:75:
b2:24:b6:d9:1d:a7:c3:86:bc:ba:d8:a7:26:54:db:97:45:32:
1e:2a:91:83:a1:45:95:61:6a:95:52:7d:bb:dd:fc:66:04:dd:
4f:7a:24:33:4e:30:8d:0b:b6:0b:b4:9c:2b:83:31:7c:04:7e:
61:46:ef:64:de:cb:6e:c2:0b:cb:ab:db:d0:0d:9e:76:0a:b1:
cc:13:7e:9e:46:ee:58:a2:18:7f:53:f2:9a:c2:79:37:6f:45:
8a:6e:01:4f:3c:7b:99:88:d5:de:a0:01:c9:1d:76:24:94:bf:
01:ec:22:28:c7:d9:7a:0e:39:73:be:15:5d:cd:e7:f1:2b:93:
20:d4:96:0d:59:11:dd:90:de:4e:79:6f:25:17:4f:a0:1b:e6:
95:47:08:6a:7b:93:1b:b3:f4:1b:20:6d:b1:71:37:aa:f9:59:
7c:39:ac:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:27 2024 by rpki-client on console-ams.rpki-client.org