Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/BC6liK-8RNtYyMzvuJsoNPhyvMQ.roa
File: BC6liK-8RNtYyMzvuJsoNPhyvMQ.roa (raw, json)
Hash identifier: N6g/fUZ56/f+xi6qkDUbfNBjoUI4Tw1dk1f6Vcv1T1E=
Subject key identifier: 04:2E:A5:88:AF:BC:44:DB:58:C8:CC:EF:B8:9B:28:34:F8:72:BC:C4
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 05AAF886
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/BC6liK-8RNtYyMzvuJsoNPhyvMQ.roa
Signing time: Tue 22 Feb 2022 00:09:37 +0000
ROA not before: Tue 22 Feb 2022 00:09:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210134
IP address blocks: 77.81.77.0/24 maxlen: 24
77.81.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95090822 (0x5aaf886)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Feb 22 00:09:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=042ea588afbc44db58c8ccefb89b2834f872bcc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:be:68:27:f3:e1:ee:90:d1:d6:ae:c4:cb:d9:
f6:46:c6:c4:de:4b:2a:08:1d:26:a6:63:fb:d4:df:
14:11:dd:1a:36:c5:fa:a6:c6:02:e6:75:f4:05:5a:
78:61:d1:02:16:06:d1:64:b9:76:ae:60:6c:69:5e:
5c:57:22:9b:32:0d:94:68:65:3c:a1:47:78:b6:c8:
f7:cd:fa:a3:94:08:79:28:1e:74:44:95:1c:00:39:
22:6a:6a:6e:87:9d:6d:6c:86:24:ad:8a:25:00:07:
99:b7:91:3a:e8:4f:6d:0b:92:cf:73:a7:97:ae:24:
a2:5f:c7:07:a4:24:6c:d7:49:07:f6:ee:21:7a:f6:
96:40:57:c7:ce:82:74:65:2e:db:07:bd:cf:5e:83:
ec:24:92:9c:35:74:4b:a1:88:6a:80:7a:15:31:f6:
79:9a:fc:09:6c:c0:19:21:91:1f:d8:d4:ca:56:97:
a2:60:e7:5a:ac:92:fb:90:0e:13:bb:73:b5:8c:cc:
a0:8f:55:bd:bc:b9:34:f7:e9:a7:69:9a:12:73:e0:
94:92:08:d9:72:4f:6a:96:0b:b1:a3:ea:31:61:1d:
a7:42:24:76:bc:75:fc:d8:c9:ce:ad:36:ee:40:76:
54:74:be:90:8b:94:f7:0b:67:bd:72:45:77:8d:85:
9f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:2E:A5:88:AF:BC:44:DB:58:C8:CC:EF:B8:9B:28:34:F8:72:BC:C4
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/BC6liK-8RNtYyMzvuJsoNPhyvMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.77.0/24
77.81.79.0/24
Signature Algorithm: sha256WithRSAEncryption
13:9e:a7:53:46:d0:82:95:7e:3e:6d:4e:a2:0c:1b:cc:a5:d1:
0f:47:67:2c:b9:41:8e:44:a3:a4:49:15:5d:fe:c3:f0:a6:aa:
dc:fc:5a:75:4c:61:cf:8d:6c:8c:f0:d2:c2:49:ff:83:15:71:
82:00:21:2e:94:de:82:4a:a9:f8:41:fe:1a:5b:fe:f7:8c:9c:
d1:00:bd:2c:9e:30:7b:9f:fd:28:9b:d7:75:f4:34:50:d0:d1:
1e:fd:e3:71:52:25:15:10:d6:53:ab:0a:c2:ad:60:b2:a1:ec:
13:08:fe:6a:5a:d3:bc:00:80:b4:7b:57:1a:32:85:a0:b9:be:
a1:03:13:0a:0e:64:aa:f3:a3:ac:a3:2a:2d:a2:71:fe:07:9e:
0f:88:56:84:82:bc:3b:fa:f6:69:2b:5f:36:08:3e:27:72:8e:
c0:ed:84:0d:2f:db:30:13:5f:d4:c9:f4:c0:c7:dc:c3:28:15:
de:2e:f0:ac:1a:ce:9d:97:bc:69:df:fe:30:0d:c6:e6:0b:3b:
84:e7:fb:bd:5f:d9:e7:ab:d6:af:80:c8:c0:c3:8e:7c:d7:02:
ac:45:c9:be:e6:6a:d3:2a:ce:54:bd:9b:9a:c8:ba:96:05:dc:
76:8a:05:f3:ff:f2:84:47:f4:99:c3:67:7e:6e:9d:36:51:28:
8e:3f:1f:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org