Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/L2zVPWjDPuzQjU4_uLVEXJR8h2Q.roa
File: L2zVPWjDPuzQjU4_uLVEXJR8h2Q.roa (raw, json)
Hash identifier: E70CdBk8sSiWLhKVhO+YLDiW22UOxldkr367UMPuel4=
Subject key identifier: 2F:6C:D5:3D:68:C3:3E:EC:D0:8D:4E:3F:B8:B5:44:5C:94:7C:87:64
Certificate issuer: /CN=1e8d205c798ed78f3c44ca0c8f2852e8bec8eaa2
Certificate serial: 0A359BA6
Authority key identifier: 1E:8D:20:5C:79:8E:D7:8F:3C:44:CA:0C:8F:28:52:E8:BE:C8:EA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ho0gXHmO1488RMoMjyhS6L7I6qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/L2zVPWjDPuzQjU4_uLVEXJR8h2Q.roa
Signing time: Sat 01 Jan 2022 02:58:37 +0000
ROA not before: Sat 01 Jan 2022 02:58:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35753
IP address blocks: 77.220.116.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171285414 (0xa359ba6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e8d205c798ed78f3c44ca0c8f2852e8bec8eaa2
Validity
Not Before: Jan 1 02:58:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f6cd53d68c33eecd08d4e3fb8b5445c947c8764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9c:9a:0c:ab:7b:b5:80:d6:d1:a9:12:07:1b:
b0:8a:a9:64:28:f8:8b:f0:6b:29:26:b3:5f:d1:94:
b9:f2:fc:01:43:c6:de:9d:ff:92:01:bd:aa:b3:c3:
08:67:0c:dc:3b:81:a9:8c:83:48:b9:62:ee:bc:f7:
3d:14:52:c5:ad:d9:b0:47:62:f1:e1:05:67:14:42:
73:d6:07:74:67:c0:98:94:e6:39:3a:48:37:6c:72:
48:38:8e:33:47:23:53:aa:b9:bd:16:a7:3d:e7:34:
85:ad:26:90:8b:4b:7c:f6:50:b6:e5:d6:4d:58:26:
98:cb:df:a1:6d:a5:52:5d:81:be:08:c8:97:59:c2:
4a:ca:8e:d2:bb:79:3b:a9:54:f6:f4:e8:5d:88:2b:
db:c7:65:f4:d4:f6:8f:4d:f3:eb:d5:ea:6e:b8:82:
86:1b:64:58:79:51:59:24:0b:8f:a5:de:37:ce:cb:
5a:31:18:36:46:e7:de:1b:46:13:ed:0a:b1:00:fc:
6b:1f:62:eb:ff:43:82:0b:1f:0e:cd:3f:f4:70:44:
45:45:ef:17:2d:0c:31:31:36:48:fc:d5:89:ad:f4:
64:05:02:e9:08:00:02:b6:7a:31:5f:20:d8:b0:69:
22:35:a4:8f:33:1c:d4:93:c8:5b:e7:bd:76:f1:b7:
6a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:6C:D5:3D:68:C3:3E:EC:D0:8D:4E:3F:B8:B5:44:5C:94:7C:87:64
X509v3 Authority Key Identifier:
keyid:1E:8D:20:5C:79:8E:D7:8F:3C:44:CA:0C:8F:28:52:E8:BE:C8:EA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ho0gXHmO1488RMoMjyhS6L7I6qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/L2zVPWjDPuzQjU4_uLVEXJR8h2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/Ho0gXHmO1488RMoMjyhS6L7I6qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.220.116.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:49:01:60:9b:5c:14:43:a2:7f:3d:33:06:49:27:44:ac:03:
77:dc:73:9a:75:a5:62:4b:ed:5b:39:30:ca:92:39:89:2c:35:
aa:fd:7f:12:8c:89:d7:a6:de:19:c0:75:a1:36:2d:a5:a7:c9:
4c:c3:7a:61:bd:10:3e:a8:76:1e:a8:56:e5:b3:4a:81:76:32:
94:05:6f:e4:3e:8a:b5:7a:31:c4:4e:d0:a2:e8:5d:5a:e0:c9:
e8:e1:77:2b:51:02:c1:c5:41:e7:0a:37:55:58:56:f7:a1:4c:
97:ef:41:1d:2c:20:3d:1f:72:07:f6:b8:06:e5:91:1c:f1:45:
c3:cf:a4:b3:cc:63:03:22:28:36:36:67:f5:87:9a:d7:ca:42:
8b:ff:52:81:d0:37:23:34:2a:48:16:df:18:79:70:63:a2:6a:
25:7b:63:fb:b6:94:09:76:08:d3:00:9f:09:23:43:1c:85:f4:
73:35:8f:c3:4d:98:0d:b2:96:68:c3:d8:71:8d:a5:0a:86:81:
a8:08:61:74:11:c4:24:ed:3c:62:f8:e7:f3:a7:b7:49:5d:25:
da:78:37:7e:43:b6:03:fe:c5:7d:93:8b:08:73:52:94:59:03:
83:e4:bb:cc:b5:74:b4:d8:d5:6c:5c:f5:a0:7d:9e:dd:b0:3d:
0d:f5:9f:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:06 2023 by rpki-client on console-ams.rpki-client.org