Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/fb7a7d-0655-4587-8af9-7700e25ff769/1/ZrBCBaMYDeN39IBVI7LyCczm-9U.roa
File: ZrBCBaMYDeN39IBVI7LyCczm-9U.roa (raw, json)
Hash identifier: GxVfG6yygdhKGJ56D2miZCsdjvKJibL6EnEcJMELeFg=
Subject key identifier: 66:B0:42:05:A3:18:0D:E3:77:F4:80:55:23:B2:F2:09:CC:E6:FB:D5
Certificate issuer: /CN=aa44eb091b3a33a87beb8e004ab15ef178fbaa00
Certificate serial: 018534D41E7C37868EF84D8BE4A87FEDE47D
Authority key identifier: AA:44:EB:09:1B:3A:33:A8:7B:EB:8E:00:4A:B1:5E:F1:78:FB:AA:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qkTrCRs6M6h7644ASrFe8Xj7qgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/fb7a7d-0655-4587-8af9-7700e25ff769/1/ZrBCBaMYDeN39IBVI7LyCczm-9U.roa
Signing time: Wed 21 Dec 2022 13:16:34 +0000
ROA not before: Wed 21 Dec 2022 13:16:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209974
IP address blocks: 77.105.148.0/22 maxlen: 22
77.105.152.0/22 maxlen: 22
77.105.154.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:34:d4:1e:7c:37:86:8e:f8:4d:8b:e4:a8:7f:ed:e4:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa44eb091b3a33a87beb8e004ab15ef178fbaa00
Validity
Not Before: Dec 21 13:16:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66b04205a3180de377f4805523b2f209cce6fbd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0c:70:5d:1d:b6:0b:21:05:85:ab:32:f9:23:
9e:19:59:55:93:ac:a7:bb:a9:17:78:f9:8d:f7:c6:
49:e0:9c:55:06:68:c3:1e:34:78:41:c0:d7:af:56:
0c:16:92:7a:ea:0f:fe:37:a1:53:4c:93:f3:03:e0:
51:5f:09:8e:d8:d9:7d:ab:1c:0f:37:cd:1a:4c:a7:
0a:9b:4c:24:72:a3:8b:2c:60:1c:5c:17:36:84:c1:
54:14:0d:61:ce:47:9f:a9:5d:41:c2:0b:4e:50:d4:
e2:bb:23:30:cc:b7:af:25:a7:16:71:b1:78:47:83:
cc:d6:d9:3b:54:8e:74:71:80:3a:10:2f:6c:0d:51:
c2:0f:c1:a0:88:03:3a:3c:29:00:04:6c:74:d7:6f:
2a:30:63:e5:2e:3f:06:a0:95:6d:b2:0c:7d:ae:71:
ef:37:67:3a:b2:0c:b2:ac:6d:a8:ef:68:f6:ca:a7:
4f:44:bc:b2:75:3d:4a:44:60:6d:08:e6:5c:03:73:
ea:a7:c6:62:19:4a:6f:7d:c3:1a:36:6b:72:69:79:
2d:70:ea:1e:b8:98:fc:55:31:fa:bf:9d:1c:82:5b:
3e:b2:ec:7c:27:83:cf:79:85:fb:ef:a4:57:af:f4:
4c:20:82:c5:52:d5:bf:0b:5b:c4:d0:de:ef:6d:c2:
bd:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:B0:42:05:A3:18:0D:E3:77:F4:80:55:23:B2:F2:09:CC:E6:FB:D5
X509v3 Authority Key Identifier:
keyid:AA:44:EB:09:1B:3A:33:A8:7B:EB:8E:00:4A:B1:5E:F1:78:FB:AA:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qkTrCRs6M6h7644ASrFe8Xj7qgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/fb7a7d-0655-4587-8af9-7700e25ff769/1/ZrBCBaMYDeN39IBVI7LyCczm-9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/fb7a7d-0655-4587-8af9-7700e25ff769/1/qkTrCRs6M6h7644ASrFe8Xj7qgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.148.0-77.105.155.255
Signature Algorithm: sha256WithRSAEncryption
b7:51:0c:72:dc:df:41:0b:55:fb:7d:cf:03:13:7d:f4:1d:6b:
89:75:6e:ae:52:3d:0f:7a:54:15:ec:fd:03:49:87:e4:b1:06:
07:e7:a0:98:b4:bd:a3:f4:8c:dd:41:a2:47:26:3c:06:99:43:
f3:32:cb:0a:dd:b5:6c:75:0b:64:e0:4c:04:65:29:a3:16:22:
e0:b1:dc:90:9c:59:23:65:95:7e:19:ba:e8:61:0d:26:68:9e:
14:e3:64:18:2d:4e:00:c6:8e:af:06:5c:17:4f:02:e2:cf:09:
9d:14:c9:f5:b6:47:8e:01:c9:1f:c9:0c:e1:5a:1f:30:5c:0d:
4f:5f:02:4b:aa:6c:80:4d:1a:36:93:24:40:78:67:29:3f:95:
18:32:a5:8d:9c:b4:f8:ee:53:3f:97:f2:31:9e:61:7b:47:b6:
1c:2d:08:0c:04:61:12:e2:41:b9:1d:03:39:23:c3:eb:ce:f2:
53:21:1a:11:9f:51:f7:49:1c:a2:17:5e:2d:ba:72:e9:d6:8c:
4d:c0:4d:44:83:69:bf:1c:41:5d:5e:97:0c:9b:1e:62:54:d7:
65:94:24:7f:83:35:d8:72:17:06:6c:3b:6f:72:eb:bb:65:69:
73:19:33:a5:ce:b5:a4:4c:5f:79:b7:0f:9d:32:6f:ed:5c:fd:
13:16:54:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:00 2024 by rpki-client on console-ams.rpki-client.org