Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/wIGFdXdIownB99cvvvLgrz-1NWg.roa
File: wIGFdXdIownB99cvvvLgrz-1NWg.roa (raw, json)
Hash identifier: 9ktDDoNu3ady4Js6/I/NHniN2E8N1rLyJ6ytKK19sZI=
Subject key identifier: C0:81:85:75:77:48:A3:09:C1:F7:D7:2F:BE:F2:E0:AF:3F:B5:35:68
Certificate issuer: /CN=6b85894a84baa0eca0e6ef44a992fc2ba00f5277
Certificate serial: 01847A1A22F6DA59C839B4F9E507204CCD4B
Authority key identifier: 6B:85:89:4A:84:BA:A0:EC:A0:E6:EF:44:A9:92:FC:2B:A0:0F:52:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a4WJSoS6oOyg5u9EqZL8K6APUnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/wIGFdXdIownB99cvvvLgrz-1NWg.roa
Signing time: Tue 15 Nov 2022 07:04:03 +0000
ROA not before: Tue 15 Nov 2022 07:04:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208617
IP address blocks: 77.79.121.0/24 maxlen: 24
77.79.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7a:1a:22:f6:da:59:c8:39:b4:f9:e5:07:20:4c:cd:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b85894a84baa0eca0e6ef44a992fc2ba00f5277
Validity
Not Before: Nov 15 07:04:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c08185757748a309c1f7d72fbef2e0af3fb53568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:01:f1:bd:e4:11:6f:97:74:82:8d:ae:9a:cc:
54:5b:3d:92:5c:45:09:38:61:86:a3:e8:1a:56:57:
c7:cb:85:6a:42:c6:80:aa:06:69:9b:04:8d:95:6a:
e1:de:17:ac:a9:7c:cb:fa:8e:da:f4:2a:19:8f:bf:
67:cf:ca:04:91:db:4f:31:9a:79:a5:ea:43:b1:5a:
bb:82:b9:ed:27:79:75:e1:0c:df:ed:56:13:5b:56:
ec:ce:cc:1c:e3:e6:21:82:cb:8b:7e:5f:30:eb:0e:
63:5b:dd:69:2b:d3:8b:cc:bc:92:4a:2f:80:54:42:
8b:88:39:a0:93:06:59:9b:fe:36:5b:71:48:64:3f:
ac:52:3b:95:35:dc:d9:ff:0b:3f:05:5a:60:a7:88:
87:4c:e6:ad:eb:03:cb:ee:eb:7f:c9:75:de:aa:cd:
5d:ac:e2:66:a2:c4:8f:e2:39:a0:6f:dd:b6:01:f0:
69:5c:31:50:5f:27:19:a5:0c:8d:b4:09:8f:6f:9d:
e0:be:cc:7a:ba:07:a6:66:75:c0:c0:35:06:d6:ed:
e1:93:f9:ef:93:38:49:2f:cb:f3:7f:ea:38:73:3f:
8a:27:06:d4:35:3e:d7:9a:3f:45:78:bd:68:64:6c:
08:84:1f:e2:80:c9:5f:98:9f:96:82:7d:f6:53:48:
d9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:81:85:75:77:48:A3:09:C1:F7:D7:2F:BE:F2:E0:AF:3F:B5:35:68
X509v3 Authority Key Identifier:
keyid:6B:85:89:4A:84:BA:A0:EC:A0:E6:EF:44:A9:92:FC:2B:A0:0F:52:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4WJSoS6oOyg5u9EqZL8K6APUnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/wIGFdXdIownB99cvvvLgrz-1NWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/a4WJSoS6oOyg5u9EqZL8K6APUnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.121.0-77.79.122.255
Signature Algorithm: sha256WithRSAEncryption
cd:d6:1f:6b:2a:91:18:5c:05:14:1c:13:b9:2a:a4:dc:64:d3:
65:18:39:32:da:59:6b:70:a2:3d:e5:20:99:08:63:64:02:d1:
5f:a5:bf:34:1a:6a:46:82:46:cc:0f:16:d7:01:dc:07:57:a9:
e0:b9:6a:6d:29:7a:13:a5:b8:e0:7d:37:50:21:8c:7d:77:58:
12:2e:27:9f:30:92:5d:95:04:07:1e:61:a4:0c:f2:d9:94:be:
20:2d:da:4f:2c:7e:6f:8f:fb:96:26:d6:0b:39:7b:62:58:1c:
8e:1d:83:f3:a7:13:ff:45:0e:c2:18:1e:96:d0:c9:22:d6:4f:
f1:2a:f8:b4:16:8d:51:c0:08:55:c5:89:f6:63:23:f5:45:76:
18:2b:24:f9:ed:ed:53:13:94:7c:3e:b3:28:69:58:e8:7d:7e:
eb:8a:57:e2:1d:ba:aa:69:60:91:fb:ad:49:f2:5b:38:0c:f9:
5f:7e:ed:0f:5e:5e:db:fe:2a:c2:82:48:78:70:5f:15:df:72:
9c:82:9a:dc:74:98:66:04:00:6b:6b:2f:4f:0a:9d:65:3c:d6:
48:8b:f2:b1:db:bc:6c:8e:91:66:69:9b:64:ae:8a:dc:c9:4f:
c9:d9:2d:54:f6:ac:13:f0:87:a2:39:89:5e:ab:73:4d:b3:0c:
de:e6:8c:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:40 2024 by rpki-client on console-ams.rpki-client.org