Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/TvX6UVgjiv8BVAep9lEh1VsAPpc.roa
File: TvX6UVgjiv8BVAep9lEh1VsAPpc.roa (raw, json)
Hash identifier: W48H1Xum5x0/UtNMqJEzCn8dxkObZacUu1Zkev7BX+8=
Subject key identifier: 4E:F5:FA:51:58:23:8A:FF:01:54:07:A9:F6:51:21:D5:5B:00:3E:97
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 1812C14D
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/TvX6UVgjiv8BVAep9lEh1VsAPpc.roa
Signing time: Sat 01 Jan 2022 04:00:41 +0000
ROA not before: Sat 01 Jan 2022 04:00:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207371
IP address blocks: 77.85.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403882317 (0x1812c14d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ef5fa5158238aff015407a9f65121d55b003e97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f3:68:57:4b:0c:89:02:87:7a:ea:4d:c4:55:
29:21:8d:aa:a3:8d:a5:79:02:51:5b:b3:58:8b:dc:
c8:3a:3e:04:64:d1:b5:c7:d4:e7:0d:9d:de:e2:a8:
35:cc:81:1f:ae:85:3e:63:3e:44:41:a6:1c:48:8f:
cd:1a:89:ca:a2:90:84:2e:86:77:5a:42:ef:c7:a1:
34:ab:f9:11:63:0e:e7:9e:ea:28:26:3c:32:31:b4:
58:d5:da:33:76:62:76:99:fa:b9:74:12:8f:d0:65:
60:8f:6e:25:74:d9:08:b1:cc:78:e4:50:74:b1:a5:
9f:49:74:52:46:d8:62:38:17:70:3a:2a:eb:b6:d9:
c8:a6:1e:d2:e9:4a:41:5e:ba:e5:03:37:d1:7d:cb:
f0:ae:22:16:49:84:6a:60:77:dd:68:4c:a8:ad:d0:
79:9f:47:eb:f7:9a:91:ec:03:68:10:5c:95:c2:cc:
8d:c9:a0:02:3b:46:b6:0d:c9:99:0e:a1:bb:1e:f0:
b9:c4:e6:a2:2e:35:d3:cb:27:8c:4c:70:aa:c4:dd:
8e:2a:53:e4:f8:4c:a6:37:48:a0:57:63:20:cb:e8:
55:90:b3:35:8c:bc:a1:7f:26:26:1a:e5:95:cd:32:
d0:4d:9d:d9:14:05:26:4f:fd:12:ce:a3:ab:ca:40:
c5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:F5:FA:51:58:23:8A:FF:01:54:07:A9:F6:51:21:D5:5B:00:3E:97
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/TvX6UVgjiv8BVAep9lEh1VsAPpc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.85.171.0/24
Signature Algorithm: sha256WithRSAEncryption
53:e1:0a:63:ee:96:87:b1:58:07:d6:ee:d3:70:93:16:1d:85:
5d:f1:5f:97:73:d7:49:58:82:58:a2:81:ab:fd:82:9c:7e:11:
26:7b:b6:5b:c3:d9:af:48:78:28:f7:f0:54:28:d0:13:f1:89:
b7:44:3f:e8:45:45:02:eb:1d:39:a3:c6:a3:85:3e:4c:b9:76:
ae:f4:37:13:bf:a0:48:5d:69:27:20:2f:bf:a0:df:77:1c:81:
63:04:9a:dd:b2:9d:5a:db:40:e7:09:f9:f3:0d:66:0e:8f:fb:
d9:8a:32:f0:5c:e3:c5:d8:c9:8c:8b:d1:4a:24:2f:ab:17:9e:
00:4e:86:cf:7e:68:47:cf:ee:3e:df:56:97:cd:0b:4e:6f:52:
1a:15:79:89:17:37:a2:b7:75:4f:47:49:a4:ba:2e:69:70:cd:
88:b2:39:64:c7:22:1c:51:14:40:ac:5f:a2:89:2a:c9:4e:c0:
53:23:a8:46:3f:2f:8d:30:ae:fc:5f:4a:a3:15:c4:61:a2:7b:
a9:14:d6:79:48:87:2d:05:1f:fd:2e:7b:4c:95:dc:c8:32:64:
2e:6f:04:35:c9:d1:1a:f6:31:23:d4:0d:6d:95:2d:32:de:72:
7b:9d:f3:0e:66:9c:3e:ed:30:5b:a1:93:15:16:58:7b:2e:33:
8e:ed:b0:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org