Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/uNVWpRsKhIYrmPwfGwUr6dIHXpM.roa
File: uNVWpRsKhIYrmPwfGwUr6dIHXpM.roa (raw, json)
Hash identifier: mHLjR0SEoxJtIIM5iihBQ+SrHZtQkYkVxMUih2jNWzw=
Subject key identifier: B8:D5:56:A5:1B:0A:84:86:2B:98:FC:1F:1B:05:2B:E9:D2:07:5E:93
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 0184FDF3BF010B38ECE4379930729D3A36E7
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/uNVWpRsKhIYrmPwfGwUr6dIHXpM.roa
Signing time: Sat 10 Dec 2022 21:32:00 +0000
ROA not before: Sat 10 Dec 2022 21:32:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 77.81.80.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:fd:f3:bf:01:0b:38:ec:e4:37:99:30:72:9d:3a:36:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Dec 10 21:32:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8d556a51b0a84862b98fc1f1b052be9d2075e93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a5:c8:a9:b1:0d:17:6f:61:15:3f:01:e2:50:
ae:d1:c3:82:04:8c:6c:5f:e1:15:8c:95:d4:66:58:
b0:ba:47:4c:39:7e:b9:f0:d4:e5:f9:e1:cb:d5:2d:
a2:f3:bf:9d:68:7e:40:b9:64:34:6c:92:17:38:cf:
06:87:a5:da:3c:c5:c6:5a:48:ca:f7:08:eb:3a:d1:
60:22:e4:61:75:ca:95:16:5e:e1:ec:53:6e:71:cf:
ac:c0:75:20:f7:ae:83:99:7d:9d:07:93:7b:fe:4b:
c0:b8:ac:c3:05:95:b6:7e:20:0e:6d:82:5d:59:ea:
39:b0:71:96:44:4f:0d:35:6e:a4:60:4a:64:5e:af:
e9:51:2f:59:f2:c2:dd:e1:82:a7:88:dc:18:3b:33:
22:aa:91:1b:48:a6:70:78:53:0d:e2:f8:ed:0b:d7:
a3:26:2d:c1:82:fd:e4:56:d2:52:54:65:7b:13:c1:
a0:9e:c1:de:15:d3:59:c8:bf:ca:13:2e:67:e3:45:
10:db:21:4d:00:a5:81:9a:7f:3c:f2:32:54:f2:18:
38:47:94:5a:88:83:f1:23:eb:e0:9e:6b:75:6b:58:
93:fc:fb:ca:89:81:0b:51:a9:e4:84:f4:49:9f:aa:
ff:f0:6b:f0:ea:7f:94:9b:48:17:9c:5b:bf:3c:a2:
b3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:D5:56:A5:1B:0A:84:86:2B:98:FC:1F:1B:05:2B:E9:D2:07:5E:93
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/uNVWpRsKhIYrmPwfGwUr6dIHXpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.80.0/23
Signature Algorithm: sha256WithRSAEncryption
76:bf:47:90:bf:8a:99:f5:79:68:c3:6b:b4:fe:0d:e7:ab:a9:
2b:35:2a:27:f4:cf:57:0a:2e:12:3d:45:26:ab:75:85:9a:18:
4f:f2:3a:f1:7d:ea:98:a3:3c:d8:4a:c3:d5:7d:87:34:7d:39:
7e:7b:7a:db:3c:6f:e3:11:47:f2:90:b5:f8:63:54:3f:34:52:
27:65:02:fd:31:30:da:05:16:a6:de:95:3a:b1:04:79:a2:75:
82:74:aa:24:2e:5a:98:3c:09:d0:e6:50:3d:41:b9:1e:0c:53:
fa:e4:05:f5:a7:c5:90:73:fa:74:05:02:a6:86:e1:ea:d9:16:
bb:74:d1:33:1c:02:37:60:84:55:9c:76:cb:b7:9f:13:18:ba:
f6:f9:61:d0:2c:06:97:bd:46:52:e0:98:7b:13:44:f2:36:9b:
02:92:76:83:02:a4:b1:0e:b6:30:14:87:7e:d5:b1:f9:42:e3:
7a:85:93:8c:32:c0:ec:dd:a8:95:3f:af:3c:d7:eb:72:1f:34:
4f:b3:3a:e1:2a:30:48:35:9e:0f:01:c8:59:72:97:c4:7c:fa:
27:5b:5e:82:5f:4e:34:c8:6c:9c:09:54:95:10:52:c7:be:86:
52:e1:f8:30:47:c6:29:31:7a:53:af:0c:24:5f:aa:49:12:49:
4b:8f:9b:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org