Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/cZSP3H8NejtBNNFH_XCOl4IzwnY.roa
File: cZSP3H8NejtBNNFH_XCOl4IzwnY.roa (raw, json)
Hash identifier: QgfDlOLnbBxCqDMzE5NpmLAsgScPMvHgcVWoKBTBGdM=
Subject key identifier: 71:94:8F:DC:7F:0D:7A:3B:41:34:D1:47:FD:70:8E:97:82:33:C2:76
Certificate issuer: /CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Certificate serial: 03BCFBB8
Authority key identifier: AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/cZSP3H8NejtBNNFH_XCOl4IzwnY.roa
Signing time: Sat 01 Jan 2022 14:05:05 +0000
ROA not before: Sat 01 Jan 2022 14:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50983
IP address blocks: 77.93.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62716856 (0x3bcfbb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Validity
Not Before: Jan 1 14:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71948fdc7f0d7a3b4134d147fd708e978233c276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:af:fe:35:00:dd:c9:cc:74:07:71:13:da:54:
d3:1f:d4:3d:4c:a3:51:3b:b6:13:96:06:56:c4:bd:
dd:65:a8:90:88:37:40:b9:5e:7c:97:4a:d9:3b:59:
f6:50:2b:44:17:f4:fd:0d:03:9c:a4:2c:ff:7c:97:
c9:35:be:38:cf:1d:ee:3c:a7:d6:7d:83:45:0c:d7:
d3:a9:b4:f7:ae:90:5f:57:a0:a7:59:d8:3a:54:12:
24:19:5e:06:e3:e1:75:d8:3b:9f:4b:78:a1:4a:54:
e6:f4:4a:d0:27:39:40:30:ae:5d:d9:70:e2:d9:80:
6a:5f:48:93:eb:33:35:38:29:b0:37:e3:a0:ab:c0:
0f:60:c5:2e:73:01:9c:4c:8c:6f:7b:e3:f2:ab:09:
9e:a0:d2:38:49:b7:af:1e:05:9c:01:af:06:74:3a:
c8:f6:18:8a:0b:96:79:b2:3f:1d:33:6c:e1:da:a2:
de:ff:51:cb:b0:72:c9:31:cf:b8:dc:f6:12:57:15:
9b:7e:cc:ef:8e:6b:a9:4e:d0:cb:e9:3e:ff:a9:c5:
74:f6:47:7e:2d:a9:fe:a3:b4:a6:8b:b3:c2:59:54:
68:5a:7f:94:54:00:64:43:cb:17:45:8a:5b:fd:1d:
80:0d:2a:8e:93:3a:36:a2:cf:f8:79:86:b4:c9:2c:
41:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:94:8F:DC:7F:0D:7A:3B:41:34:D1:47:FD:70:8E:97:82:33:C2:76
X509v3 Authority Key Identifier:
keyid:AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/cZSP3H8NejtBNNFH_XCOl4IzwnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.93.173.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:a7:3b:db:32:d0:25:07:d5:9f:eb:f5:1c:18:d6:93:26:12:
82:0a:b8:66:89:3e:88:5d:a3:87:09:10:a4:c4:a1:dc:38:a4:
3e:93:a5:83:c7:ae:9f:c2:a0:7d:fa:a6:c8:a4:07:7f:d0:8e:
78:2e:90:ba:60:67:95:c0:06:36:52:35:8b:3b:37:aa:ec:e4:
3d:bb:f5:57:a0:76:41:f3:b7:dd:5d:b7:12:71:c7:fd:6f:df:
53:0a:81:f8:82:6c:25:b2:8d:9c:f6:b0:4a:ba:64:16:f5:eb:
6c:82:2e:8a:e5:26:85:53:b3:8e:6f:75:70:ac:ae:eb:cd:69:
a4:40:06:ff:50:33:dc:6d:64:73:ad:0f:43:e6:a7:97:ac:cd:
23:f6:ff:35:5d:72:1c:4f:56:0c:1a:26:98:20:1d:3e:e2:8d:
42:be:43:e1:e7:8c:ce:66:e3:2b:33:c2:ca:63:ab:d8:db:77:
f8:5e:f9:5b:73:67:5e:91:5f:cd:f6:34:44:fc:3d:a1:2a:04:
b6:9b:42:09:c8:b0:74:f3:93:7c:63:2e:1f:c4:11:f3:7b:13:
8f:15:ba:f0:b1:0b:20:e2:37:c9:5f:43:b4:6d:93:d9:01:25:
b5:37:7f:f7:15:96:c7:d8:32:20:c9:87:79:b5:b5:fe:49:48:
3e:c3:f3:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:35 2024 by rpki-client on console-ams.rpki-client.org