Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/rYegvsoHpqau9h9kh2PcOTNbNgU.roa
File: rYegvsoHpqau9h9kh2PcOTNbNgU.roa (raw, json)
Hash identifier: 67HUw5Ca727zAqxR4z7OeaZEHiyitTR7Hp/weBUfEX0=
Subject key identifier: AD:87:A0:BE:CA:07:A6:A6:AE:F6:1F:64:87:63:DC:39:33:5B:36:05
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 0183A4685AD31EEFD4670D81AF0BBDCDEE21
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/rYegvsoHpqau9h9kh2PcOTNbNgU.roa
Signing time: Tue 04 Oct 2022 19:10:45 +0000
ROA not before: Tue 04 Oct 2022 19:10:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 77.81.80.0/23 maxlen: 24
188.214.232.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a4:68:5a:d3:1e:ef:d4:67:0d:81:af:0b:bd:cd:ee:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Oct 4 19:10:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad87a0beca07a6a6aef61f648763dc39335b3605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ab:d5:92:52:a1:ed:ba:c8:69:64:52:16:de:
12:6d:dc:b2:f1:e7:ed:8d:e5:18:e0:0b:c5:e2:19:
22:b0:1a:19:09:2b:85:72:f3:38:1f:37:fb:9a:f8:
5a:ba:87:c5:0b:ff:5b:99:06:6e:fa:02:40:3c:09:
ee:83:6b:79:d1:fc:7a:f6:60:56:1d:76:71:65:12:
29:6d:a7:6f:22:b7:ef:8e:9a:de:78:03:52:ee:ea:
59:68:06:18:18:8e:f1:9c:cc:fa:03:1b:57:83:f0:
9b:63:d7:5f:73:f2:85:85:9c:dc:58:1f:12:25:7d:
ac:d8:64:6a:b9:12:69:7d:68:75:20:19:01:96:e3:
5c:c9:bc:e0:1c:55:01:2a:74:c7:5a:24:ee:8f:7d:
fb:06:81:c4:cd:f9:1b:79:86:60:c4:a3:92:d1:65:
0d:71:7a:a7:73:b4:c1:e6:8b:fb:ae:2e:a2:29:b9:
02:63:98:86:f9:6b:bf:eb:8c:c1:d7:d9:c9:ca:58:
b5:36:f1:5a:c2:49:a0:6e:47:a8:a2:1a:34:73:22:
2f:ff:f5:6a:7f:92:7f:9b:d7:49:44:fc:8c:29:2f:
cc:98:7f:a3:25:13:23:19:ec:65:0c:44:db:29:25:
6b:ad:91:4b:a3:3e:29:cf:74:9c:8f:99:02:d5:d2:
14:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:87:A0:BE:CA:07:A6:A6:AE:F6:1F:64:87:63:DC:39:33:5B:36:05
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/rYegvsoHpqau9h9kh2PcOTNbNgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.80.0/23
188.214.232.0/23
Signature Algorithm: sha256WithRSAEncryption
25:72:46:ea:28:47:fe:39:91:79:38:85:f0:7e:5e:0d:26:97:
f5:27:32:8b:0e:68:97:84:ce:32:c5:8c:95:85:9b:7b:36:74:
2f:05:53:75:5a:a3:50:a9:84:63:b8:f1:ca:c2:ed:08:fc:5f:
44:74:ae:73:a1:62:ea:55:f8:31:4c:55:81:61:72:5c:80:e8:
9a:ed:9a:9c:9f:fe:04:5d:7d:70:fe:c9:aa:0d:8d:a1:17:2e:
07:f8:b1:5b:e3:59:87:c7:15:6a:66:d8:e6:d0:13:53:01:e1:
a2:33:b3:07:1b:0b:ee:e2:f9:6a:b2:ea:92:e7:7d:ea:18:e8:
e5:03:d8:89:b3:b8:fa:e3:8c:30:dd:30:5e:50:47:36:3f:ec:
29:20:ff:2e:30:9c:8e:44:4f:43:34:28:86:92:cc:07:fb:79:
b6:9a:56:4a:b2:f6:63:ea:31:ee:f5:23:3c:a5:64:02:d6:2f:
59:00:a2:2c:aa:61:2c:9a:fc:24:5e:a6:81:43:6f:82:b4:1b:
f6:f4:b5:f1:ad:4e:7f:b8:54:e7:58:06:0f:48:c4:9f:ab:59:
0b:ee:fc:67:69:63:7e:7a:7b:76:cc:f1:3b:8b:b0:5c:49:78:
ca:a8:3e:97:a2:f3:c0:05:45:91:53:de:e9:58:22:8e:30:c1:
51:80:a3:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org