Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ZDtXwNVBv8VsVfA8jzeuLo36lyU.roa
File: ZDtXwNVBv8VsVfA8jzeuLo36lyU.roa (raw, json)
Hash identifier: UlDNofqsMGjcJXw0q6u4UXJk5Xb3piYbItseHjaG15I=
Subject key identifier: 64:3B:57:C0:D5:41:BF:C5:6C:55:F0:3C:8F:37:AE:2E:8D:FA:97:25
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 05304344
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ZDtXwNVBv8VsVfA8jzeuLo36lyU.roa
Signing time: Mon 03 Jan 2022 05:24:17 +0000
ROA not before: Mon 03 Jan 2022 05:24:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48592
IP address blocks: 128.65.160.0/22 maxlen: 22
77.81.78.0/24 maxlen: 24
77.81.76.0/24 maxlen: 24
77.81.80.0/23 maxlen: 23
185.39.180.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87049028 (0x5304344)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jan 3 05:24:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=643b57c0d541bfc56c55f03c8f37ae2e8dfa9725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:01:b5:be:5c:d4:c8:ed:e4:d3:21:f8:f3:55:
20:a9:c3:dd:9b:81:e7:92:e0:74:3b:fb:49:1c:98:
89:9d:84:aa:02:a3:08:ae:5c:29:23:2d:cc:d0:55:
b2:88:68:2e:24:8f:f1:7a:a9:83:8d:41:c3:1d:a0:
21:8b:b3:1a:69:97:67:9e:1c:5e:bb:29:13:c3:ff:
30:ca:fb:0f:b5:ba:00:2c:1b:99:00:30:af:02:02:
ca:70:4d:09:90:94:a4:1f:c4:61:08:ef:e6:fc:6b:
b7:65:69:35:4a:5a:a9:e2:0e:1a:df:4b:88:bf:ca:
3e:02:1b:e1:36:4a:7d:d7:44:33:44:c8:2e:b6:76:
29:df:f4:bc:67:f0:2d:74:e5:81:74:92:1a:f1:81:
54:ea:28:ab:b7:4f:4f:0f:9c:3e:ed:72:5c:e9:79:
0c:0e:a0:fe:e6:ae:7b:3c:0a:f0:7f:4d:e9:cb:a0:
41:48:f1:ef:fa:a2:9b:bb:c6:42:e8:d0:30:c1:cc:
84:c8:7c:9b:e1:e5:f5:bc:ae:90:91:00:ba:60:e1:
e6:52:85:ea:47:cc:99:1d:bd:bd:44:7e:ed:14:01:
cf:d4:f1:f9:6d:6a:74:8d:7e:0b:82:58:6f:6c:d7:
37:a0:41:49:36:bc:75:0b:aa:b9:13:5f:7d:d2:f3:
cc:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:3B:57:C0:D5:41:BF:C5:6C:55:F0:3C:8F:37:AE:2E:8D:FA:97:25
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ZDtXwNVBv8VsVfA8jzeuLo36lyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.76.0/24
77.81.78.0/24
77.81.80.0/23
128.65.160.0/22
185.39.180.0/22
Signature Algorithm: sha256WithRSAEncryption
98:c8:53:a4:49:13:9b:1a:a2:16:8d:e0:a4:42:85:8c:94:f8:
38:3f:69:3f:86:71:0a:f8:e2:d8:4b:f1:22:21:d9:68:bf:16:
42:0a:aa:b9:2a:6e:2c:38:4a:64:51:f9:e1:b7:2f:e2:1d:bf:
b2:93:b2:62:26:b9:f5:c2:be:8f:e6:9c:6e:2b:b2:a8:1f:df:
bf:ab:6f:dd:b7:b9:2c:33:33:fa:b0:3d:8b:0d:82:ca:bd:49:
76:86:96:f9:17:70:db:ea:7a:0e:2a:ee:05:e6:93:db:8d:32:
ca:14:df:23:37:19:14:4e:7d:be:ee:c1:fc:26:d4:3f:33:76:
02:ab:bb:ea:37:80:9a:15:fc:91:9e:d0:26:4a:25:80:b9:08:
0a:a2:6a:79:c4:f5:c0:0a:3e:25:d7:1d:b4:40:ce:a6:0f:f0:
e5:ab:84:86:30:5b:38:81:95:37:67:3f:f5:82:0c:a6:13:4f:
48:17:a9:b5:4b:e1:68:22:9f:c4:fc:dc:79:f9:a6:e1:c6:3e:
cf:7c:bb:19:3b:5c:29:b4:ed:31:21:7a:e8:bf:1f:ac:de:12:
64:46:a6:d4:84:16:b7:57:40:b3:8c:cd:05:c3:a0:c5:9a:74:
78:7f:50:26:00:f8:12:ed:48:d3:f6:fc:15:21:81:56:c6:4d:
0c:3a:60:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org