Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/h7hF2g8qN-OrrewV8WzZOzYEkSU.roa
File: h7hF2g8qN-OrrewV8WzZOzYEkSU.roa (raw, json)
Hash identifier: Lw/THBVGbEoavfrNQ6B9w4gJMlqUqQMNdT2RKRmn9uw=
Subject key identifier: 87:B8:45:DA:0F:2A:37:E3:AB:AD:EC:15:F1:6C:D9:3B:36:04:91:25
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A928F08
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/h7hF2g8qN-OrrewV8WzZOzYEkSU.roa
Signing time: Sat 01 Jan 2022 04:52:15 +0000
ROA not before: Sat 01 Jan 2022 04:52:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206093
IP address blocks: 82.177.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 982683400 (0x3a928f08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87b845da0f2a37e3abadec15f16cd93b36049125
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6f:8b:6d:45:09:20:15:c2:a9:d3:9e:4c:e0:
c9:1f:30:05:a7:5c:d5:e2:2b:2d:42:98:03:af:2d:
72:e3:6f:5a:ba:76:3c:ae:64:a0:25:c3:ae:3d:79:
f8:eb:ff:99:d6:e2:8f:6d:b2:12:59:ce:94:e8:ee:
28:d9:40:0e:38:33:cb:53:f8:e2:86:e8:d6:f5:9d:
27:72:31:bd:e2:7b:db:9b:3b:5d:a6:64:4f:81:f9:
77:02:d3:d4:d6:f6:18:cd:34:b0:69:f0:e2:d1:b4:
2d:85:a8:ca:58:12:b0:cf:fe:44:d3:8d:99:fd:79:
2c:87:09:2e:c1:ae:2a:c1:aa:23:a4:36:d2:40:36:
ea:0f:41:8b:10:24:c2:c4:c8:86:98:80:40:d7:e0:
90:ef:a9:fa:e5:73:7b:76:c5:e2:ea:46:b7:1a:59:
3d:b8:42:0b:31:74:1a:3d:2d:f5:41:c8:f7:db:dd:
fb:c3:fb:18:ac:c8:2c:aa:b3:04:33:34:b8:ee:13:
19:40:32:78:6e:18:35:6f:19:ef:4f:23:66:58:0c:
ae:bb:11:85:dc:e0:1d:71:24:f6:ce:bd:49:2e:1e:
6d:d1:c6:b9:e4:0a:c3:35:99:20:15:cb:79:8e:f2:
1f:a9:16:e0:76:b8:28:da:fb:b1:e8:1e:59:09:8a:
08:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B8:45:DA:0F:2A:37:E3:AB:AD:EC:15:F1:6C:D9:3B:36:04:91:25
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/h7hF2g8qN-OrrewV8WzZOzYEkSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.128.0/24
Signature Algorithm: sha256WithRSAEncryption
93:ae:5b:29:59:e5:ed:b3:24:5d:8f:68:13:81:a5:d6:5f:d1:
73:00:1b:77:4e:4c:91:3b:f4:13:8d:64:98:44:d0:b5:54:5d:
9c:b5:0f:55:85:ae:4d:40:83:04:c9:f4:df:22:eb:d1:3e:cf:
2b:76:48:c5:f7:7d:a8:fc:1a:48:0b:93:eb:09:e2:1b:c1:ee:
c1:60:70:49:90:ee:1c:02:dc:dc:33:9b:ba:9b:2f:65:09:e4:
a3:2c:b0:7b:31:19:7d:72:04:89:7b:8a:19:4a:fd:f1:46:cc:
2c:7f:8c:0b:9b:f2:fc:a6:ef:95:4a:8b:20:22:d2:d2:44:7c:
3e:9a:84:95:38:8e:f2:9a:05:03:bc:78:62:65:47:8a:94:3c:
0c:94:91:c3:a3:61:c5:da:39:63:fc:f6:28:14:f8:09:db:82:
16:2f:5a:ea:2a:08:0a:77:ee:e5:b3:71:a0:49:6c:d4:01:4b:
58:87:6a:c5:cc:2d:82:59:9d:b5:4e:54:8c:53:a7:99:cb:fe:
5e:52:f5:b1:db:23:53:f8:b5:54:9a:73:df:49:d5:18:d1:f8:
f1:d3:59:6c:23:a4:97:91:b9:8e:a3:c1:29:51:b0:57:41:a4:
41:96:02:35:df:f4:6b:8d:d5:0b:f8:59:03:c0:62:be:54:f3:
11:d3:21:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:02 2023 by rpki-client on console-ams.rpki-client.org