Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/JMLzRw9ypHH8OfmMCEepqOuc_BY.roa
File: JMLzRw9ypHH8OfmMCEepqOuc_BY.roa (raw, json)
Hash identifier: es5lDkXwkzxumV6t0oBYzb9J3QuT05HuF7m0M25UJZs=
Subject key identifier: 24:C2:F3:47:0F:72:A4:71:FC:39:F9:8C:08:47:A9:A8:EB:9C:FC:16
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 01857315F58AFA861AE7565444D19FBAA6DB
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/JMLzRw9ypHH8OfmMCEepqOuc_BY.roa
Signing time: Mon 02 Jan 2023 15:24:57 +0000
ROA not before: Mon 02 Jan 2023 15:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43723
IP address blocks: 82.119.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:f5:8a:fa:86:1a:e7:56:54:44:d1:9f:ba:a6:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Jan 2 15:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24c2f3470f72a471fc39f98c0847a9a8eb9cfc16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ac:6a:9b:01:3a:fb:6f:68:e4:c8:dc:b8:fb:
f2:44:1d:be:66:59:4f:16:b9:ef:be:40:d5:57:d6:
cc:46:65:4b:6d:19:fb:6c:cc:3e:73:a8:61:3d:73:
fa:2c:b6:29:5d:d4:a8:fb:de:58:e0:22:29:4a:1b:
e7:d2:41:e4:d1:d6:37:12:b5:99:cb:2d:7f:df:42:
a9:e2:ee:9d:83:1e:8c:8c:28:48:31:f0:7c:23:fe:
cc:5c:0a:9d:38:c4:02:60:22:6f:a1:8d:73:9d:12:
58:fe:20:d0:df:27:76:4f:2c:f4:9f:9e:c1:25:f7:
50:de:7f:9d:30:1e:3a:f6:93:af:31:a5:a7:09:c2:
99:ae:82:e9:92:af:61:55:5e:ef:b7:aa:f9:f7:36:
0f:92:7e:09:06:d6:38:61:d5:4b:16:e9:99:46:5c:
96:c5:1f:e8:96:d3:3e:65:cd:91:a0:c7:ac:cd:f3:
4a:6b:d3:f0:2c:f9:ba:5c:e1:15:96:c7:37:5e:79:
35:fb:17:c3:9c:a0:14:fe:f5:34:55:06:01:a0:07:
8a:00:a1:3c:7f:2e:95:c4:c5:43:0b:d8:d5:e0:1d:
00:e7:6d:bd:2e:db:d4:77:4a:d4:bb:6f:87:1c:9f:
fd:46:0c:aa:d2:e2:32:f4:81:82:13:51:bb:fb:76:
ae:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C2:F3:47:0F:72:A4:71:FC:39:F9:8C:08:47:A9:A8:EB:9C:FC:16
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/JMLzRw9ypHH8OfmMCEepqOuc_BY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.119.77.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:a2:b6:4a:13:77:37:1f:36:75:c6:28:ef:29:75:30:eb:16:
25:86:0d:a5:b0:73:da:f8:38:e6:b4:ad:93:84:24:85:df:7d:
50:76:c4:61:02:66:fb:1a:73:d6:7f:e0:97:b2:b1:79:71:f8:
71:9e:29:40:4c:94:63:7e:38:d9:5f:cd:bb:59:df:62:8e:1f:
99:5b:9c:2c:30:93:06:af:34:a7:0c:b4:a0:5d:a4:b8:36:05:
0f:a2:1b:8d:dd:4d:dd:95:17:3d:8a:87:ee:f4:03:91:b2:bd:
27:1d:b9:73:54:9b:1d:3a:72:3d:dd:fd:29:e4:8e:f3:2b:8c:
31:23:cd:f8:88:9c:ae:e7:a2:8d:ff:7b:14:e2:b2:30:fb:e4:
1b:84:ba:ca:26:ae:cc:8b:87:75:34:36:6a:83:ae:02:33:ac:
b8:05:9e:22:6d:0b:cf:fe:de:a6:11:6e:e1:52:59:b1:cb:8a:
14:05:8d:2d:08:55:2b:2b:06:76:ff:2f:b5:6c:c5:5f:d1:37:
85:4f:30:17:f4:14:47:51:33:2b:3d:19:3d:55:36:a0:ce:11:
5d:f2:2b:37:86:6e:80:ad:0c:95:28:6c:8d:60:49:fe:be:c2:
0d:bb:02:ed:01:d0:0c:c6:98:38:1f:c0:bd:10:3f:f7:07:04:
1e:0d:55:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:52 2025 by rpki-client