Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/IdcYfk9x6a4FDUp1yBuDZoai4gY.roa
File: IdcYfk9x6a4FDUp1yBuDZoai4gY.roa (raw, json)
Hash identifier: R/GZ0ejKmNVSuVOQrL1SGBne7f1djmSyZrnlQuf5MHI=
Subject key identifier: 21:D7:18:7E:4F:71:E9:AE:05:0D:4A:75:C8:1B:83:66:86:A2:E2:06
Certificate issuer: /CN=c441738baab988b1d68693bb05e29bfbb4f0f671
Certificate serial: 01830FA01E0D92E7DD6F1A7E46B9F6788276
Authority key identifier: C4:41:73:8B:AA:B9:88:B1:D6:86:93:BB:05:E2:9B:FB:B4:F0:F6:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/IdcYfk9x6a4FDUp1yBuDZoai4gY.roa
Signing time: Mon 05 Sep 2022 21:48:15 +0000
ROA not before: Mon 05 Sep 2022 21:48:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8540
IP address blocks: 77.220.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0f:a0:1e:0d:92:e7:dd:6f:1a:7e:46:b9:f6:78:82:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c441738baab988b1d68693bb05e29bfbb4f0f671
Validity
Not Before: Sep 5 21:48:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21d7187e4f71e9ae050d4a75c81b836686a2e206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b2:d9:8e:ee:01:5b:23:b8:dd:65:cf:7f:54:
6e:fd:f2:f7:3f:b5:4b:2f:98:16:c0:af:c9:71:1b:
0b:6b:fc:e3:a7:a8:bd:0c:fe:aa:f2:8a:1a:29:e8:
99:80:7d:6d:10:35:0f:59:73:08:ea:40:13:d7:11:
04:a7:9a:e4:9d:ad:5b:c9:b6:fc:20:8c:33:e8:7f:
2f:8e:b9:79:99:f8:50:b4:e1:65:ea:9a:7e:c1:7e:
93:38:a6:7c:64:fb:72:08:0a:cf:87:e0:fe:8f:d1:
e2:ca:8e:54:7a:08:91:1f:f7:33:ea:84:db:05:88:
40:13:bb:4b:a3:7b:dc:ae:74:24:af:1d:fe:a6:f3:
63:e9:96:0a:27:53:76:05:77:37:17:63:ea:12:de:
65:79:ef:9b:5d:c1:c7:2f:44:29:24:5c:cc:53:7a:
61:2e:13:fc:93:0c:9d:80:e6:57:61:04:43:8e:8e:
ce:b7:fe:39:59:f8:73:c0:f2:a3:b9:b7:70:6d:de:
1a:fe:14:fb:a0:cb:8b:74:47:7b:7e:7d:88:bf:21:
80:0d:22:fe:b3:27:f5:39:b0:c5:6a:33:31:b0:77:
0f:f3:36:9c:47:68:ec:59:11:18:27:af:f1:a8:ab:
28:db:9d:40:5b:13:66:da:2f:2e:5c:33:1a:b3:b4:
a0:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:D7:18:7E:4F:71:E9:AE:05:0D:4A:75:C8:1B:83:66:86:A2:E2:06
X509v3 Authority Key Identifier:
keyid:C4:41:73:8B:AA:B9:88:B1:D6:86:93:BB:05:E2:9B:FB:B4:F0:F6:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/IdcYfk9x6a4FDUp1yBuDZoai4gY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.220.109.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:27:b6:17:20:8b:d7:12:d5:68:3c:fd:ae:4c:67:8b:e9:15:
54:6b:30:69:1e:46:10:80:81:ca:04:a8:3f:08:fe:af:5c:22:
44:11:fb:93:65:c3:90:c9:85:51:d1:cb:e6:8c:14:80:db:4d:
fe:cc:0a:d5:72:ce:a0:cb:0c:ac:8e:9e:f1:0f:0a:b6:42:5e:
67:0a:4c:32:b4:4d:49:2b:2f:3c:0f:af:63:62:64:80:c8:4b:
b5:6d:ad:2d:82:85:91:f5:a9:45:76:0d:a3:91:e5:2b:e9:58:
12:e4:4e:65:96:e9:ce:4d:44:19:d1:1d:a1:81:61:7a:fb:bc:
bd:44:67:a7:f9:54:cd:db:bc:2e:1d:a3:74:cd:fc:2b:80:29:
21:b5:e4:14:f4:2c:17:22:77:7c:d9:e9:55:85:26:20:05:c1:
3a:d8:af:a2:1d:d5:99:83:08:c0:8c:39:68:a6:3a:14:78:f3:
7e:58:b4:e0:97:5c:25:0a:a0:14:e7:fb:d5:8b:5f:4f:5b:f4:
fb:28:e7:ae:d6:fe:5e:d7:4d:43:3e:ee:17:5c:97:12:54:78:
4f:4c:d3:fd:52:09:87:f7:72:d5:12:4e:4d:b8:5f:31:84:57:
e1:17:9a:c2:e0:cd:a4:0a:e6:43:32:db:c2:29:72:96:c9:6b:
b2:75:3d:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:23 2023 by rpki-client on console-ams.rpki-client.org