Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/7MSUWECB5_rHenrWT19a2uuXMv8.roa
File: 7MSUWECB5_rHenrWT19a2uuXMv8.roa (raw, json)
Hash identifier: b3DEYF758ixIMoIAIir3c/OiXbmMo7fVf6kOSVUh3TE=
Subject key identifier: EC:C4:94:58:40:81:E7:FA:C7:7A:7A:D6:4F:5F:5A:DA:EB:97:32:FF
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 181897A0
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/7MSUWECB5_rHenrWT19a2uuXMv8.roa
Signing time: Sat 01 Jan 2022 04:00:45 +0000
ROA not before: Sat 01 Jan 2022 04:00:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212561
IP address blocks: 77.85.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 404264864 (0x181897a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecc494584081e7fac77a7ad64f5f5adaeb9732ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:82:dc:73:44:ec:51:30:31:33:58:f9:dc:da:
e9:34:e1:43:50:06:7b:5e:43:15:af:da:93:31:fb:
30:09:78:be:cf:9c:39:1d:43:10:8e:db:96:ed:60:
9d:79:b3:7e:b3:92:35:29:86:be:10:f7:f0:5d:dc:
ed:91:bc:b0:8a:d8:bc:62:be:cd:e4:13:06:e8:6a:
a0:86:a2:2a:30:7f:0c:8f:b5:fe:47:8b:c6:b9:87:
19:94:f0:bd:83:6e:12:07:58:5c:46:bf:77:09:02:
0a:cc:79:a8:78:2a:05:10:38:d2:d7:17:09:64:06:
fc:8b:3a:3f:e3:85:4a:07:e1:a0:32:bf:5b:5a:30:
e8:76:a2:9d:ad:3e:74:67:c2:03:f6:4d:4e:8b:97:
96:a5:cc:eb:50:06:96:7b:2b:eb:9e:7c:04:ea:27:
8f:1b:0a:0b:6d:29:00:06:38:4d:b1:52:d1:b1:2f:
5e:5f:97:11:54:ca:61:74:dc:e8:8b:61:d4:e6:fc:
33:56:4b:5d:06:be:01:77:c6:f5:4b:48:a3:1f:57:
12:66:6d:de:44:d2:73:31:bb:5b:ae:9a:84:0e:81:
1b:5c:35:c4:50:c3:23:57:3e:2c:e2:53:88:b9:51:
a1:7e:56:71:b6:d5:48:8a:d7:54:92:16:fd:dc:83:
c7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:C4:94:58:40:81:E7:FA:C7:7A:7A:D6:4F:5F:5A:DA:EB:97:32:FF
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/7MSUWECB5_rHenrWT19a2uuXMv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.85.220.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:5f:0d:ea:38:fb:36:11:e5:de:62:6a:9b:90:cc:a0:1e:a6:
22:4a:d4:a5:08:cf:ef:b8:94:f6:28:e0:0b:b0:7f:ff:dd:13:
6f:5e:3a:5a:61:cc:a5:28:be:ad:93:e7:a0:89:a5:93:1b:7a:
40:cf:3a:3a:51:34:a4:16:ec:6a:9b:6d:2d:20:d5:4c:e6:e4:
c8:68:e2:e9:96:70:44:72:0b:65:49:e7:7e:f7:82:89:76:8a:
fe:00:8b:70:fc:ac:0e:34:90:d6:aa:12:24:f8:18:2f:75:48:
1b:ad:8e:f2:d1:6a:67:b1:63:3c:19:46:17:06:91:26:1a:56:
e4:35:98:ef:84:e3:2f:18:e7:27:82:5c:34:73:7c:ad:ad:1b:
f8:44:4b:8c:29:ea:36:be:9a:ad:9a:bb:50:3d:55:c7:94:63:
6c:23:7d:3a:da:00:86:94:b8:e1:ed:0c:29:aa:38:28:f1:82:
13:87:27:5b:6f:5a:0c:ed:5c:a3:d8:d5:0a:eb:fe:40:39:fe:
0d:ac:32:83:b1:2d:22:f9:f5:3a:9b:13:50:07:89:8c:d9:e0:
55:cf:83:1f:f5:55:cd:f5:4c:f1:54:48:18:5f:a6:09:fe:58:
35:c0:5f:c9:a1:fd:e2:8f:8c:14:01:88:d1:8e:87:4e:c0:75:
e1:1a:f3:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org