Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/3-2hoK7g9zwKI-fd0pFA9K-JwO4.roa
File: 3-2hoK7g9zwKI-fd0pFA9K-JwO4.roa (raw, json)
Hash identifier: 4BQLK/r+jZT1rJ50U7fPBJPfL31XU6e5P4pWe3vDwxw=
Subject key identifier: DF:ED:A1:A0:AE:E0:F7:3C:0A:23:E7:DD:D2:91:40:F4:AF:89:C0:EE
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3B0BB382
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/3-2hoK7g9zwKI-fd0pFA9K-JwO4.roa
Signing time: Thu 17 Feb 2022 09:02:28 +0000
ROA not before: Thu 17 Feb 2022 09:02:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56373
IP address blocks: 82.177.12.0/23 maxlen: 24
82.177.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 990622594 (0x3b0bb382)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Feb 17 09:02:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dfeda1a0aee0f73c0a23e7ddd29140f4af89c0ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c6:4d:b1:3d:3f:c6:1c:5e:71:97:5d:da:04:
4d:43:ef:5e:29:4e:53:74:7a:39:08:3f:7d:2f:bf:
70:8b:da:61:14:8a:8b:9e:10:33:2e:3b:82:eb:6f:
9f:1c:58:c6:d1:97:29:db:2e:b0:d6:1b:ea:f9:a8:
eb:b3:d7:b3:54:78:42:93:2b:61:74:1f:e9:e6:39:
10:30:15:a2:d7:c7:15:7a:f3:4e:e8:cb:6c:ec:49:
63:6c:07:de:1f:fa:e4:c5:6c:cb:76:9c:bb:b2:48:
de:a1:19:98:a1:c8:04:a1:ee:f8:d0:49:d2:11:62:
61:fc:2c:3f:67:81:d8:d9:dd:3e:c3:40:3a:51:ee:
1e:2a:d0:bb:03:91:a0:19:f0:7c:a0:17:d5:eb:a9:
5a:d8:6f:99:d4:79:de:2c:aa:df:14:50:36:99:ba:
15:7f:2c:8b:f3:19:f5:0f:04:f2:4d:bb:05:c1:d1:
24:55:93:8d:dd:3d:bc:72:45:b4:e8:fd:64:86:bd:
5c:bd:83:b7:45:f8:34:d5:31:af:80:f8:7c:35:18:
d9:5d:b6:28:54:d0:b1:53:4a:f1:d0:59:0d:6f:09:
45:91:4c:f7:ab:25:2e:84:16:a5:51:96:18:a7:a0:
f5:96:3d:08:23:c4:da:d7:f7:98:9b:22:ce:9b:e5:
af:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:ED:A1:A0:AE:E0:F7:3C:0A:23:E7:DD:D2:91:40:F4:AF:89:C0:EE
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/3-2hoK7g9zwKI-fd0pFA9K-JwO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.12.0/23
Signature Algorithm: sha256WithRSAEncryption
37:45:36:ee:db:c0:c4:a6:a2:e5:e4:68:7d:6f:61:ef:26:11:
d9:1d:84:a8:09:c6:5f:e8:54:b6:0d:5d:21:47:72:79:33:45:
f8:66:c4:ee:98:10:78:42:32:37:9d:dc:00:77:da:54:fd:c7:
db:1a:de:4d:a0:aa:39:9e:9f:49:c9:ce:d6:9e:cc:ea:42:4c:
cc:39:e2:45:13:6b:a1:13:e0:d3:7d:1d:ec:95:64:a5:6c:5f:
9c:0f:a4:b2:aa:db:7a:aa:af:c0:8f:ed:e0:9f:ff:35:e8:22:
26:72:13:f9:df:67:d0:39:26:73:07:49:2a:a6:38:b2:05:00:
51:68:af:0d:72:37:7b:68:f9:2a:f3:d2:26:72:56:7b:f9:cc:
e3:a7:8a:0f:6a:db:8b:6b:27:62:fb:d5:16:9d:c1:9b:fa:18:
25:3f:f9:9d:39:05:28:63:98:20:4b:64:03:16:f6:6f:23:68:
c9:21:03:4f:a4:48:85:49:2b:f5:86:3c:9f:1c:62:3b:ad:bc:
5f:26:c3:5b:65:48:be:2a:60:b0:eb:05:92:bd:3f:41:5f:00:
6e:41:bb:48:6d:aa:0e:a6:84:42:7d:cc:f9:ff:df:90:7b:f0:
ad:dd:f9:23:18:8a:60:0b:b5:2f:85:22:e6:ad:b0:e1:0b:dd:
55:a3:e4:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:02 2023 by rpki-client on console-ams.rpki-client.org