Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/oQfPS94-tHhpqs-eUGe9uJb2jU0.roa
File: oQfPS94-tHhpqs-eUGe9uJb2jU0.roa (raw, json)
Hash identifier: gIz9NcOmLLHUCtkp+9kFLYEgF8HwTAiExxhh//176vQ=
Subject key identifier: A1:07:CF:4B:DE:3E:B4:78:69:AA:CF:9E:50:67:BD:B8:96:F6:8D:4D
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A670FF0
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/oQfPS94-tHhpqs-eUGe9uJb2jU0.roa
Signing time: Sat 01 Jan 2022 04:51:47 +0000
ROA not before: Sat 01 Jan 2022 04:51:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25552
IP address blocks: 82.177.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 979832816 (0x3a670ff0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:51:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a107cf4bde3eb47869aacf9e5067bdb896f68d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d6:53:ba:86:8d:bc:64:ba:bb:d5:38:24:e0:
7b:f3:7f:9c:85:fe:bd:eb:16:2d:0c:0c:8d:f9:d7:
5e:30:23:26:57:84:52:a6:2e:35:e3:12:c3:5a:95:
55:1a:86:1f:21:46:54:5b:0c:80:30:69:b4:81:df:
36:ac:84:17:89:59:e3:62:00:30:4d:ec:39:1b:38:
aa:b5:f1:ca:96:dd:4a:f2:cc:0e:0c:1a:96:1d:07:
32:f7:af:cd:cf:51:b2:1e:e4:6b:b3:23:a6:dc:69:
ab:64:7a:cb:31:8a:72:ab:6d:65:e6:19:ed:53:69:
8c:e4:76:71:ca:90:ac:80:03:f3:0c:43:23:bf:63:
f6:f3:81:3e:c7:f8:a0:6e:28:c4:26:c0:f3:41:31:
e8:8e:d5:88:d9:e7:41:fb:9d:e7:40:0a:f4:46:fa:
e0:da:b9:0c:6c:36:c8:35:8a:30:7b:b3:3d:9c:58:
df:c8:94:92:57:c9:10:39:fa:7b:d0:0f:c3:70:01:
aa:c9:65:9c:42:5b:75:39:13:50:16:a5:00:d2:06:
b6:a9:8d:f2:80:e0:75:cc:c1:06:25:70:f4:06:d9:
78:4e:9a:ef:0d:d2:5c:bd:73:04:a0:d1:ce:a0:9c:
67:02:54:40:cf:53:26:e6:35:07:05:27:ac:1a:48:
d5:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:07:CF:4B:DE:3E:B4:78:69:AA:CF:9E:50:67:BD:B8:96:F6:8D:4D
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/oQfPS94-tHhpqs-eUGe9uJb2jU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.246.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:fc:db:d8:cc:37:1f:e3:d5:47:41:99:0c:87:c0:13:ad:12:
e2:3f:0e:0d:fa:18:a5:ed:19:df:2a:d1:20:bf:01:02:8d:ee:
fa:25:d9:06:19:e2:71:80:84:20:48:5e:11:4e:7f:7d:4c:8c:
f9:3c:51:88:9a:64:68:b6:87:be:7a:b7:9b:2a:d5:fa:75:96:
ea:66:34:7b:50:a6:f4:14:31:32:b2:72:4b:f9:f9:b5:cf:e3:
75:4d:9e:51:83:85:a8:41:80:cf:eb:50:e7:0e:32:b7:03:9f:
be:e8:13:70:73:59:dd:46:2a:e2:68:3e:0f:c4:26:44:59:2b:
af:01:af:37:eb:62:58:17:39:a9:30:88:d0:7d:ca:e0:c7:b9:
1f:2f:38:3c:00:4c:e2:f2:95:77:d4:82:c0:b9:fb:4d:a0:c0:
85:c5:aa:9f:dd:e9:71:da:a7:47:b7:cd:76:0b:c2:56:54:6a:
b0:bd:a4:96:dd:b0:7a:c7:62:13:c8:f9:0e:56:cd:98:3c:40:
1a:e6:41:06:67:07:1b:c7:f6:8f:44:cc:a1:05:b7:e6:24:65:
9e:1e:b9:bc:ad:7a:43:bb:66:3b:dc:b8:d4:06:5e:c0:83:e1:
d2:fc:f5:75:4a:0a:31:b0:bb:a6:c7:08:e8:11:81:e8:9a:90:
92:5d:73:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:02 2023 by rpki-client on console-ams.rpki-client.org