Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/b-aMo0XEIagkLV8WilaBrNVXXNE.roa
File: b-aMo0XEIagkLV8WilaBrNVXXNE.roa (raw, json)
Hash identifier: LRHZWxAa5v3MnmnbYcWjo+Y+YM1yj8ppoooEjFGwd+8=
Subject key identifier: 6F:E6:8C:A3:45:C4:21:A8:24:2D:5F:16:8A:56:81:AC:D5:57:5C:D1
Certificate issuer: /CN=e9ad14362f52569616f0fd5536c5a1a208def29d
Certificate serial: 08FC4470
Authority key identifier: E9:AD:14:36:2F:52:56:96:16:F0:FD:55:36:C5:A1:A2:08:DE:F2:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6a0UNi9SVpYW8P1VNsWhogje8p0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/b-aMo0XEIagkLV8WilaBrNVXXNE.roa
Signing time: Sat 01 Jan 2022 06:03:16 +0000
ROA not before: Sat 01 Jan 2022 06:03:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200514
IP address blocks: 77.83.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150750320 (0x8fc4470)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9ad14362f52569616f0fd5536c5a1a208def29d
Validity
Not Before: Jan 1 06:03:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fe68ca345c421a8242d5f168a5681acd5575cd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:12:e5:1c:fe:7e:52:b0:0f:7e:62:d4:57:68:
dd:b8:6a:0a:3e:e1:79:a9:af:e8:47:37:6e:e7:42:
21:08:fa:71:68:f0:cf:1b:5d:e2:13:72:15:bb:96:
bf:fe:4e:24:e3:77:dc:09:c7:f7:c9:03:5b:62:9f:
f3:00:69:c7:19:ae:f6:cf:93:fe:02:29:88:11:90:
f9:df:0c:c1:f5:c3:f2:d8:a3:15:b2:e2:1d:ad:dd:
dd:65:aa:32:1f:90:d5:74:cb:c8:01:96:9f:6d:a6:
a7:58:7a:9f:d1:dc:42:37:52:0e:e0:fb:45:df:0b:
f1:3a:2f:c8:48:e9:b6:48:8b:63:fd:4f:b7:7b:9f:
15:af:4f:c5:58:4b:b2:e4:14:bb:69:d9:17:36:2e:
52:48:f6:35:ba:5a:18:a4:7e:3c:10:13:22:9e:32:
68:af:0f:33:10:f9:0d:d8:f4:49:a0:14:7f:bf:3e:
4e:32:e4:05:1d:28:f4:6a:95:6e:d2:cc:da:9f:90:
04:a4:38:93:84:8d:10:ff:42:55:0b:34:1e:c7:6c:
bb:c1:09:90:8a:4b:7a:fe:cd:e5:12:74:da:61:5f:
73:57:ca:ef:2d:b1:50:52:60:c3:a3:48:de:3b:2b:
2d:8e:7e:75:d4:f0:23:aa:07:3b:2d:db:73:63:f8:
93:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E6:8C:A3:45:C4:21:A8:24:2D:5F:16:8A:56:81:AC:D5:57:5C:D1
X509v3 Authority Key Identifier:
keyid:E9:AD:14:36:2F:52:56:96:16:F0:FD:55:36:C5:A1:A2:08:DE:F2:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a0UNi9SVpYW8P1VNsWhogje8p0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/b-aMo0XEIagkLV8WilaBrNVXXNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/6a0UNi9SVpYW8P1VNsWhogje8p0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.132.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:1f:a7:de:63:37:09:26:d8:aa:4d:0c:6b:32:2a:16:82:fc:
47:6d:60:af:33:df:da:17:99:43:d2:7f:59:09:f0:d3:e6:29:
7e:51:c5:06:a9:6a:d5:22:59:e5:4c:03:e7:5c:a5:8d:2f:fa:
49:50:58:e1:78:bf:56:c7:1d:20:d0:82:c7:9b:90:76:f2:0b:
90:53:65:fa:8d:b9:1f:cc:62:f8:8e:7c:b1:4b:b2:fc:93:26:
69:ca:37:6c:e4:c7:83:f5:c6:cf:07:34:4d:24:68:f4:c1:6c:
ae:04:ce:38:2d:1e:e5:85:24:75:ba:ae:c2:32:55:d3:d5:db:
63:b5:8d:a4:14:d9:50:ff:ea:95:98:76:cd:02:a3:76:30:20:
02:de:39:98:15:5c:9f:b1:cf:dd:7e:4a:af:2b:9d:19:47:65:
76:1a:54:53:ce:fa:df:8c:9c:be:c7:83:2e:ea:18:36:50:99:
4e:68:95:4e:6c:4b:38:b7:fa:da:27:05:26:9c:78:85:b5:86:
81:ba:e7:da:9e:d8:bf:1f:8d:94:08:c9:06:4e:3c:cc:50:9f:
37:ce:ae:38:b1:5d:6d:28:5e:09:83:e6:9a:55:1b:04:7e:6b:
5e:7f:e3:f2:38:7a:ca:5c:12:5d:fc:39:db:2e:e3:2f:88:27:
1b:08:92:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:01 2023 by rpki-client on console-ams.rpki-client.org