Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/42664a-0f47-49a6-b737-b28df8559529/1/zNd8N2k-9iHUpYlgh4_ikrsmDi0.roa
File: zNd8N2k-9iHUpYlgh4_ikrsmDi0.roa (raw, json)
Hash identifier: cDu4o6lwW9+BYZzj5Ba6Z4uAQmJGasEhTz820VUwXtc=
Subject key identifier: CC:D7:7C:37:69:3E:F6:21:D4:A5:89:60:87:8F:E2:92:BB:26:0E:2D
Certificate issuer: /CN=88f0c1d10e4e5a71e3cd5c5d6beebf778a06e304
Certificate serial: 09B84C73
Authority key identifier: 88:F0:C1:D1:0E:4E:5A:71:E3:CD:5C:5D:6B:EE:BF:77:8A:06:E3:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPDB0Q5OWnHjzVxda-6_d4oG4wQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/42664a-0f47-49a6-b737-b28df8559529/1/zNd8N2k-9iHUpYlgh4_ikrsmDi0.roa
Signing time: Sat 01 Jan 2022 09:56:41 +0000
ROA not before: Sat 01 Jan 2022 09:56:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199837
IP address blocks: 77.83.216.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163073139 (0x9b84c73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f0c1d10e4e5a71e3cd5c5d6beebf778a06e304
Validity
Not Before: Jan 1 09:56:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccd77c37693ef621d4a58960878fe292bb260e2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6d:d5:ee:b6:6e:5f:ee:cc:99:93:f5:6c:7e:
71:13:5e:71:32:b1:00:0b:0f:22:30:d1:21:8b:3a:
fe:d9:20:03:2e:3f:c6:66:dd:2f:ff:db:66:32:0a:
fa:cf:c0:28:4f:d7:22:4d:1e:d1:57:89:cb:81:a4:
76:08:cd:b5:39:7e:5e:c2:02:56:18:d1:f9:16:c1:
cc:8e:ae:17:e2:a2:79:21:2c:35:4c:09:2f:e6:f9:
a0:b7:b6:60:5a:06:cf:20:1e:61:5a:17:31:db:ee:
46:51:84:f5:7c:63:f6:93:70:cb:c3:36:37:7e:05:
54:2a:22:21:ac:50:98:aa:3c:97:48:54:75:40:45:
b6:71:78:46:bf:94:24:8b:be:77:60:f9:fe:5b:cc:
a1:b8:9d:53:e3:f5:86:56:fd:91:31:98:64:08:94:
ae:f4:42:ba:18:51:d9:e5:f5:53:50:19:e8:d9:bf:
74:85:a4:a6:d9:54:c9:77:7d:8c:41:44:f2:22:ea:
9e:9c:cb:ea:e2:91:33:2a:41:62:e5:c2:94:06:39:
31:83:4b:2b:82:69:22:48:f5:b2:d1:26:1c:8e:07:
8c:d5:6e:4f:d8:7c:f9:3f:7f:c8:d0:9b:f1:64:39:
7f:47:51:2c:46:0c:6e:4c:0d:52:53:50:f1:8c:05:
2a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D7:7C:37:69:3E:F6:21:D4:A5:89:60:87:8F:E2:92:BB:26:0E:2D
X509v3 Authority Key Identifier:
keyid:88:F0:C1:D1:0E:4E:5A:71:E3:CD:5C:5D:6B:EE:BF:77:8A:06:E3:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPDB0Q5OWnHjzVxda-6_d4oG4wQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/42664a-0f47-49a6-b737-b28df8559529/1/zNd8N2k-9iHUpYlgh4_ikrsmDi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/42664a-0f47-49a6-b737-b28df8559529/1/iPDB0Q5OWnHjzVxda-6_d4oG4wQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.216.0/22
Signature Algorithm: sha256WithRSAEncryption
06:11:ed:8d:0b:51:20:8f:c4:a5:88:6d:47:89:01:63:7a:1e:
c3:8c:98:b1:84:26:72:89:5f:5e:58:7b:f5:65:f9:55:90:df:
c9:fd:14:6d:d7:3e:7b:a1:8a:b5:ba:b8:85:14:e8:16:84:a5:
e4:9e:31:13:dc:d3:6f:89:3e:19:33:a1:58:2f:53:d5:4c:69:
d8:ba:97:06:75:7e:2d:1d:d6:e6:08:1f:fa:f1:43:97:6b:18:
e1:02:38:b7:bc:98:37:a9:92:1e:23:1b:c4:82:9a:44:63:b1:
c4:1c:f7:8b:61:d0:09:de:4c:e0:75:50:a1:ea:1b:af:64:99:
75:b4:56:76:3f:af:c4:3d:b7:1a:a7:09:5a:17:a6:c4:33:3d:
60:1c:90:ad:e7:81:2a:5e:49:04:fa:9d:4f:34:2a:37:0e:fb:
76:cb:57:97:08:8b:6b:60:d5:b5:9d:a0:b3:7f:55:26:22:d7:
01:b0:78:d6:8b:7c:8a:89:dc:59:50:8a:fa:e9:1b:10:a7:70:
cc:12:e3:61:30:9a:98:9b:1f:64:04:d6:04:51:81:cf:df:78:
9b:67:0e:f1:bc:e4:85:96:d6:66:ac:c9:82:4d:5f:d3:6d:c4:
2a:d9:26:ed:64:fe:d6:6f:96:22:c7:75:6d:21:ff:fa:2c:39:
63:14:fb:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:26 2025 by rpki-client