Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/0c55d2-c89c-46d6-ba35-4c65bd33d6f6/1/Uns-eCKsDIo2voOfpr3haTdWoz8.roa
File: Uns-eCKsDIo2voOfpr3haTdWoz8.roa (raw, json)
Hash identifier: G+efrZX3jH+ECifSaM28cTaFCmUvMM1rBvlP1DjgfXs=
Subject key identifier: 52:7B:3E:78:22:AC:0C:8A:36:BE:83:9F:A6:BD:E1:69:37:56:A3:3F
Certificate issuer: /CN=6050099e335409db03ac1133d164f02a0d5dc66f
Certificate serial: 018452B2A42667A2D62379D592A35846A402
Authority key identifier: 60:50:09:9E:33:54:09:DB:03:AC:11:33:D1:64:F0:2A:0D:5D:C6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFAJnjNUCdsDrBEz0WTwKg1dxm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/0c55d2-c89c-46d6-ba35-4c65bd33d6f6/1/Uns-eCKsDIo2voOfpr3haTdWoz8.roa
Signing time: Mon 07 Nov 2022 15:25:49 +0000
ROA not before: Mon 07 Nov 2022 15:25:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24951
IP address blocks: 77.244.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:52:b2:a4:26:67:a2:d6:23:79:d5:92:a3:58:46:a4:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6050099e335409db03ac1133d164f02a0d5dc66f
Validity
Not Before: Nov 7 15:25:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=527b3e7822ac0c8a36be839fa6bde1693756a33f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b4:dd:fb:f5:6e:0f:cc:f0:8a:89:1e:10:ce:
ec:cc:f1:ea:e4:34:be:90:79:03:ea:db:34:d9:fc:
16:b1:47:57:9e:3b:c1:74:0e:47:8e:b8:51:2a:3e:
f2:29:98:95:28:65:16:e6:b5:83:de:36:d2:ea:c9:
39:8d:94:79:51:50:64:ad:8b:07:b8:09:af:02:72:
72:e3:9e:45:5a:e2:2f:4d:21:1c:74:2e:ba:24:e5:
2f:15:69:c5:db:80:f9:aa:21:69:38:b7:49:4c:26:
12:27:3d:15:fa:93:48:46:16:7e:92:bf:92:6f:37:
2d:e5:ae:d7:73:fb:a4:bf:33:fc:53:6e:9e:c3:fb:
fc:b7:59:3c:0a:0d:b3:0f:95:9c:21:6b:01:84:80:
c8:da:dd:cb:87:f2:6f:3c:35:b3:6e:de:f8:c7:01:
7a:64:c4:a0:74:94:9b:89:d0:3c:7f:86:1e:9e:9e:
80:94:f3:df:0b:49:81:20:0a:0c:52:37:f0:93:9d:
56:18:c5:a6:80:09:2c:31:db:bd:54:71:74:5b:e6:
76:a5:91:cb:30:5e:73:f4:f3:8a:fc:8b:27:16:d5:
b1:7e:67:03:b3:db:7f:3d:c3:9f:cd:18:5f:da:47:
2f:1c:4e:bb:17:af:a9:d3:46:2c:f5:de:92:49:0c:
07:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7B:3E:78:22:AC:0C:8A:36:BE:83:9F:A6:BD:E1:69:37:56:A3:3F
X509v3 Authority Key Identifier:
keyid:60:50:09:9E:33:54:09:DB:03:AC:11:33:D1:64:F0:2A:0D:5D:C6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFAJnjNUCdsDrBEz0WTwKg1dxm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/0c55d2-c89c-46d6-ba35-4c65bd33d6f6/1/Uns-eCKsDIo2voOfpr3haTdWoz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/0c55d2-c89c-46d6-ba35-4c65bd33d6f6/1/YFAJnjNUCdsDrBEz0WTwKg1dxm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.244.48.0/20
Signature Algorithm: sha256WithRSAEncryption
76:d6:89:5c:f6:78:6c:73:af:5e:e0:51:1e:16:7b:f3:69:94:
e6:57:d1:b6:ae:25:37:9b:62:99:45:bc:18:62:5c:c4:45:a0:
f9:7a:41:b1:f0:3a:a3:1f:dd:04:87:4b:8b:aa:eb:60:13:7b:
3a:f7:c4:8c:60:d9:fa:1f:7e:50:7c:69:13:a1:6d:67:b3:f1:
d0:50:03:06:87:fd:0e:d5:d3:12:96:97:45:d6:95:66:a3:97:
b2:33:57:ce:23:61:ee:8e:ef:f0:a0:ab:96:c3:b2:f7:90:ca:
9c:ca:a6:07:be:c8:6e:8b:80:b4:68:7a:e7:f6:4b:93:75:85:
40:a3:2f:c6:0a:f2:5f:17:37:14:52:48:eb:7f:ac:b7:7a:03:
b9:4a:5e:48:8e:d1:f8:b8:de:b2:01:8b:2c:d8:7e:0f:b8:f4:
c5:27:c0:87:7a:d0:ac:19:2b:cd:b0:39:f6:0e:c3:ec:18:b5:
19:21:6b:be:88:01:bc:f8:8c:d0:e3:5d:3c:bd:8c:7c:69:9e:
d9:af:95:5c:4c:ea:fa:4b:f6:df:61:42:ca:d1:a9:25:ae:55:
a2:b6:9f:00:8e:61:c6:d3:f6:38:ae:a9:13:f4:a4:93:29:7b:
38:a0:41:f5:ef:44:9f:c3:80:3c:68:35:fb:6d:6c:bf:b1:2d:
2c:39:ba:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:25 2024 by rpki-client on console-fra.rpki-client.org