Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/7ca3de-92c8-49fb-acae-9f1a5dbb41d6/1/3-HyJLMKyBRUc1lmUTFwXU7I1n0.roa
File: 3-HyJLMKyBRUc1lmUTFwXU7I1n0.roa (raw, json)
Hash identifier: JudS9ATchpdS+0Bpv8ypDTP/yigAn3u4FvOnGzSzQKM=
Subject key identifier: DF:E1:F2:24:B3:0A:C8:14:54:73:59:66:51:31:70:5D:4E:C8:D6:7D
Certificate issuer: /CN=02d6e8273f9051ac31cb95792cb51400dab714aa
Certificate serial: 34DDE869
Authority key identifier: 02:D6:E8:27:3F:90:51:AC:31:CB:95:79:2C:B5:14:00:DA:B7:14:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AtboJz-QUawxy5V5LLUUANq3FKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/7ca3de-92c8-49fb-acae-9f1a5dbb41d6/1/3-HyJLMKyBRUc1lmUTFwXU7I1n0.roa
Signing time: Sat 01 Jan 2022 12:01:04 +0000
ROA not before: Sat 01 Jan 2022 12:01:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51918
IP address blocks: 77.73.170.0/23 maxlen: 23
77.73.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 886958185 (0x34dde869)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02d6e8273f9051ac31cb95792cb51400dab714aa
Validity
Not Before: Jan 1 12:01:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dfe1f224b30ac814547359665131705d4ec8d67d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f2:ec:e2:68:fd:74:43:f6:65:83:59:af:50:
9d:0e:25:d4:be:32:dd:a4:5c:a7:dd:34:3e:ef:2e:
5d:52:e6:a1:53:be:68:ff:6b:85:be:c0:d7:5f:a0:
98:97:21:c6:18:7d:a6:a6:72:ea:34:e8:e4:4a:6e:
fa:77:98:17:26:55:12:76:df:39:36:4e:e7:43:95:
13:3b:7d:57:eb:1d:14:d7:b4:b4:8a:ed:71:d3:2c:
c7:36:ea:25:27:c6:0d:62:47:91:42:0a:3d:7d:98:
e8:dc:7f:cf:bb:9c:cd:aa:2e:24:73:7d:a5:a6:20:
47:e7:df:f8:91:06:12:55:90:04:f4:d8:e8:58:1f:
81:91:59:a8:64:31:0b:cf:48:54:87:7a:e2:28:a8:
0d:7c:1c:d7:2e:a5:1c:8e:69:76:69:66:24:8a:e4:
71:77:e2:1c:5a:ce:bc:25:f3:42:1c:d9:e0:18:d3:
f3:c1:51:8c:33:57:61:ab:04:57:4c:83:74:c8:78:
ce:ed:a0:fe:2a:c2:25:40:1c:55:93:a3:e5:db:fb:
10:f2:a3:60:2c:1b:42:c1:a4:8e:6d:44:38:13:9e:
f6:09:ec:1c:16:60:45:16:a7:82:f0:cc:d3:85:83:
58:46:0f:71:17:9e:a3:8f:71:8b:ab:c3:f9:c5:62:
48:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:E1:F2:24:B3:0A:C8:14:54:73:59:66:51:31:70:5D:4E:C8:D6:7D
X509v3 Authority Key Identifier:
keyid:02:D6:E8:27:3F:90:51:AC:31:CB:95:79:2C:B5:14:00:DA:B7:14:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AtboJz-QUawxy5V5LLUUANq3FKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/7ca3de-92c8-49fb-acae-9f1a5dbb41d6/1/3-HyJLMKyBRUc1lmUTFwXU7I1n0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/7ca3de-92c8-49fb-acae-9f1a5dbb41d6/1/AtboJz-QUawxy5V5LLUUANq3FKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.170.0-77.73.172.255
Signature Algorithm: sha256WithRSAEncryption
84:6b:89:e3:85:9b:03:ab:1e:28:56:9b:62:97:e7:07:21:5d:
c6:f8:09:fc:d5:42:4c:fc:53:bf:ef:79:6f:96:9d:bb:4a:bd:
6d:22:16:b9:5a:9b:a2:b8:f4:da:9a:c4:a4:e3:42:be:07:cf:
21:61:04:a3:89:9b:26:69:b0:9d:e4:b6:2e:40:a6:eb:84:bd:
61:d6:9e:7a:f7:b3:db:39:9c:23:3f:0c:1a:e8:8c:56:c0:7f:
a8:9e:86:fe:c4:27:97:eb:1f:50:9a:d0:50:fc:bf:ea:9a:5b:
fe:c7:b7:4f:b1:5a:8c:e3:74:24:bf:f7:74:6e:c6:30:e9:ef:
48:f7:41:4c:07:30:41:b1:f5:09:f7:af:82:1a:e6:b6:47:8b:
ba:dc:9f:f7:f6:aa:67:dc:79:6c:ac:c4:47:99:e6:95:40:7f:
82:01:ea:c4:f1:b5:a5:71:ed:9d:2d:32:d3:52:03:45:19:5b:
ac:7f:01:56:64:47:3f:ed:08:a9:4b:be:16:9a:63:22:32:4c:
d0:c5:1b:47:c0:2c:fd:39:34:f6:f2:df:83:12:a1:e3:a0:61:
83:86:f4:ab:c0:7c:c2:7a:b9:2c:fc:17:17:f5:7e:52:71:8d:
d5:06:90:46:3a:3e:cb:3d:41:93:41:bc:6f:98:01:df:bd:d3:
2c:8a:cc:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:37 2024 by rpki-client on console-fra.rpki-client.org