Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/OiSX4UH6MPbTnCsoLl-cItLOaGk.roa
File: OiSX4UH6MPbTnCsoLl-cItLOaGk.roa (raw, json)
Hash identifier: rOedACV/3xP8aQNSJxxck3D5Jd8v9BrKBFAFScCx0EM=
Subject key identifier: 3A:24:97:E1:41:FA:30:F6:D3:9C:2B:28:2E:5F:9C:22:D2:CE:68:69
Certificate issuer: /CN=03c33e43ef56527a169d6ac6d7e62c63d1973051
Certificate serial: 0949BE41
Authority key identifier: 03:C3:3E:43:EF:56:52:7A:16:9D:6A:C6:D7:E6:2C:63:D1:97:30:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A8M-Q-9WUnoWnWrG1-YsY9GXMFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/OiSX4UH6MPbTnCsoLl-cItLOaGk.roa
Signing time: Sat 01 Jan 2022 09:55:32 +0000
ROA not before: Sat 01 Jan 2022 09:55:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198930
IP address blocks: 77.87.185.0/24 maxlen: 24
185.66.176.0/22 maxlen: 22
2a05:900::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155827777 (0x949be41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03c33e43ef56527a169d6ac6d7e62c63d1973051
Validity
Not Before: Jan 1 09:55:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a2497e141fa30f6d39c2b282e5f9c22d2ce6869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:96:cc:12:d1:92:7d:35:ba:51:03:3e:fa:19:
00:c8:bb:4e:cf:dc:a4:ec:3d:50:7c:32:5d:41:1a:
0e:87:e0:a9:2b:61:d3:bd:fc:83:e5:92:7e:53:29:
b5:1a:f4:ca:4d:17:ee:24:50:85:78:c7:aa:8f:99:
8e:ef:25:30:8a:24:a0:6f:65:d8:ad:9c:05:21:5c:
ce:ee:be:85:b7:60:f9:93:5b:4c:3b:40:ae:e9:3d:
1a:09:b4:22:f9:30:14:31:dc:17:6d:56:ae:c8:e7:
05:c2:10:1c:9e:d8:ff:2c:8a:ea:90:b2:44:83:f5:
d8:e7:80:5a:ba:4c:9d:ef:75:36:86:7a:f0:d6:d2:
c5:1f:f8:ce:ef:54:ff:e9:fe:16:76:de:fc:9a:29:
7c:3c:08:23:94:32:e6:da:0b:a2:92:24:72:79:66:
51:ba:7e:9b:69:a6:df:39:4b:0c:ab:f9:b8:2f:c6:
10:63:0d:72:cb:1e:76:3f:62:ed:d6:d5:aa:ac:ed:
6f:c2:55:27:48:21:23:1e:d6:d1:62:59:c1:c8:72:
ba:02:48:5d:7c:b8:3f:70:86:89:c2:3e:6c:65:d0:
a8:f3:6d:2a:c8:53:e4:3d:e9:3d:fa:ec:da:fa:3b:
3b:1b:78:70:a4:e9:88:be:c2:96:f5:de:61:67:bc:
7e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:24:97:E1:41:FA:30:F6:D3:9C:2B:28:2E:5F:9C:22:D2:CE:68:69
X509v3 Authority Key Identifier:
keyid:03:C3:3E:43:EF:56:52:7A:16:9D:6A:C6:D7:E6:2C:63:D1:97:30:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A8M-Q-9WUnoWnWrG1-YsY9GXMFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/OiSX4UH6MPbTnCsoLl-cItLOaGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/A8M-Q-9WUnoWnWrG1-YsY9GXMFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.185.0/24
185.66.176.0/22
IPv6:
2a05:900::/29
Signature Algorithm: sha256WithRSAEncryption
b6:be:d4:bc:15:5c:8e:11:b3:56:d7:28:71:e8:3b:d9:c2:fc:
bf:01:1f:cb:e7:5d:15:21:d8:c5:83:e0:71:79:bb:f2:72:cc:
b1:d1:76:2d:12:23:da:82:c0:1b:db:97:f6:d1:5e:72:6f:ad:
82:6a:5a:2d:ae:7b:be:53:19:ae:49:78:ff:27:89:ef:4e:ef:
71:82:55:90:60:08:10:32:6f:47:3c:bf:ee:e5:c4:5a:1b:4a:
e4:98:3e:f1:2a:90:8e:f5:d0:5d:1b:83:3c:d4:5a:11:4a:2f:
d5:7c:b9:72:26:9c:a2:77:8c:6d:ce:77:9e:99:13:fd:b1:b3:
31:d7:d1:a7:41:57:12:c1:ee:33:53:46:12:d2:d3:42:1e:33:
86:95:45:8f:fb:c8:04:1d:19:1f:64:a5:c1:8d:56:ca:0e:ac:
c7:ed:4f:53:17:ba:cd:aa:e3:c7:5d:80:03:1b:11:6c:d5:e2:
68:f9:3d:20:cf:cf:fe:f2:50:91:71:f5:a4:04:8d:7e:56:9a:
76:f2:cd:e4:bb:f6:40:31:69:25:14:71:50:9d:d0:d3:9e:5a:
0c:05:d1:d4:af:76:98:48:26:e4:af:eb:9b:a9:47:91:c1:bb:
4c:e1:19:c4:4b:39:2e:f2:13:f2:84:37:60:2d:35:98:b1:6a:
52:15:d3:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:08 2023 by rpki-client on console-fra.rpki-client.org