Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/oDnlZ-ljjae72_OquiHYbiMdCJU.roa
File: oDnlZ-ljjae72_OquiHYbiMdCJU.roa (raw, json)
Hash identifier: iIUSiTsJ1MZ3eHlWJusPeG2FvR8L6SZIGnqd59Ly6ok=
Subject key identifier: A0:39:E5:67:E9:63:8D:A7:BB:DB:F3:AA:BA:21:D8:6E:23:1D:08:95
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38D8DA1E
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/oDnlZ-ljjae72_OquiHYbiMdCJU.roa
Signing time: Sat 01 Jan 2022 07:55:17 +0000
ROA not before: Sat 01 Jan 2022 07:55:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16074
IP address blocks: 145.77.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 953735710 (0x38d8da1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a039e567e9638da7bbdbf3aaba21d86e231d0895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:77:a6:b0:43:2d:3e:5b:cd:06:07:cd:f6:27:
16:7d:08:c2:eb:82:f3:62:49:85:52:f3:f4:42:a7:
54:1d:33:37:34:a4:28:b3:2f:40:99:a2:37:82:9b:
14:93:2e:ab:94:53:48:44:f9:96:cc:38:db:de:af:
2e:f3:95:c7:15:27:fb:54:43:4e:3d:85:8d:7d:1e:
74:6c:19:ad:62:83:94:38:e8:e0:2b:79:73:45:04:
d3:71:29:aa:43:9e:e5:0f:c8:33:bd:ea:6d:ca:dd:
c2:b1:cd:92:09:f6:db:93:89:75:04:62:37:c5:63:
20:f8:0f:0c:cd:04:0c:73:53:54:09:df:bd:0c:7e:
c2:e3:8c:71:11:2f:d4:07:d6:d3:6d:7e:36:cc:30:
c4:02:c6:2c:c8:3e:75:43:ec:83:de:4c:5a:e4:7d:
3b:5d:7d:3f:12:a0:2e:6b:59:c8:64:de:2e:af:d9:
0d:7c:09:c0:8f:13:df:35:e3:e1:d8:23:ab:56:81:
be:1d:ec:b8:53:25:21:88:18:ae:58:f5:0b:ab:51:
d2:90:94:7b:c7:53:bc:ff:93:a8:90:de:72:25:c1:
2d:c3:41:e8:c4:5c:ad:8e:e2:39:6b:a2:90:dd:3b:
ec:73:6b:a6:f0:06:9a:de:d2:1b:b3:14:4e:1b:75:
73:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:39:E5:67:E9:63:8D:A7:BB:DB:F3:AA:BA:21:D8:6E:23:1D:08:95
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/oDnlZ-ljjae72_OquiHYbiMdCJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.77.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2d:af:6a:a0:48:f4:d6:54:e6:35:9c:03:66:df:63:a0:68:3e:
db:09:47:42:b6:11:5e:3f:1f:cb:1a:7a:fd:dd:c6:bf:29:d3:
c1:5b:4d:c5:25:c5:39:39:54:23:30:93:f5:2f:7d:b9:88:bc:
ea:79:20:73:06:b0:96:d1:8d:ca:72:70:b9:15:8f:7a:ce:47:
af:7f:65:bc:57:9c:fc:bd:79:09:9e:a0:d2:a6:0d:95:e9:31:
f8:5d:24:e3:82:3a:75:ac:f6:2c:96:1f:cc:7c:33:39:f1:15:
50:6f:75:d0:13:6d:fd:b6:b0:6b:ff:31:d4:d5:89:57:7b:fd:
71:f8:58:73:19:c8:fa:f9:40:dd:ec:36:eb:08:5e:c0:7f:9b:
62:1f:43:df:c1:06:d8:41:e4:50:08:ba:61:ac:85:73:6a:c2:
69:93:34:33:c7:90:41:a8:21:e4:a8:7c:7d:d9:c5:1f:38:ad:
b5:ab:40:46:ca:ed:b5:f6:3c:0f:b1:f7:d9:d6:e2:e1:88:69:
1f:91:e9:54:57:b5:a6:ae:41:d5:b3:33:44:9c:61:80:1c:1c:
75:8e:46:28:b5:6c:51:1b:bf:e3:7b:4a:e4:cc:b7:51:55:c0:
b6:37:20:30:10:b4:46:75:3f:a6:d2:75:21:7b:46:a6:3b:0c:
86:c7:de:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:44 2024 by rpki-client on console-ams.rpki-client.org