Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/645fb6-8edf-4a75-bbc1-ae13eef4f12e/1/Mf8ZU4kDKJ4HdzRlKVQn4yl6_4s.roa
File: Mf8ZU4kDKJ4HdzRlKVQn4yl6_4s.roa (raw, json)
Hash identifier: oXZ8aXWHWTFO+K670Tji80OlEP8lqh0mtI/s69NJkq4=
Subject key identifier: 31:FF:19:53:89:03:28:9E:07:77:34:65:29:54:27:E3:29:7A:FF:8B
Certificate issuer: /CN=0881c26efd7671f272dc4fe7d43ecc998a5c0cf2
Certificate serial: 0185179A6E418A41FF65F2958731DBA15973
Authority key identifier: 08:81:C2:6E:FD:76:71:F2:72:DC:4F:E7:D4:3E:CC:99:8A:5C:0C:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIHCbv12cfJy3E_n1D7MmYpcDPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/645fb6-8edf-4a75-bbc1-ae13eef4f12e/1/Mf8ZU4kDKJ4HdzRlKVQn4yl6_4s.roa
Signing time: Thu 15 Dec 2022 21:04:34 +0000
ROA not before: Thu 15 Dec 2022 21:04:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211373
IP address blocks: 77.246.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:17:9a:6e:41:8a:41:ff:65:f2:95:87:31:db:a1:59:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0881c26efd7671f272dc4fe7d43ecc998a5c0cf2
Validity
Not Before: Dec 15 21:04:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31ff19538903289e07773465295427e3297aff8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:55:a1:d0:b7:84:f7:85:e7:6f:c5:d5:d7:e7:
eb:7a:2f:44:cb:1e:84:c1:33:ba:88:f6:d8:55:4e:
48:6b:82:80:6e:e3:f2:8a:32:18:21:da:13:cc:35:
a2:e0:bb:91:a6:64:66:b5:9a:e3:75:ed:3b:32:4d:
3e:a7:f0:b8:4e:2e:13:84:53:4b:4a:14:12:a5:22:
45:49:9f:4b:4f:c3:08:e8:a0:65:3e:88:80:fa:65:
a4:1d:73:bc:1d:0e:82:8d:6e:26:5c:b3:66:44:79:
d2:c7:fc:9d:1a:95:5b:a0:b2:b2:92:cd:0c:fc:d1:
ca:26:82:49:93:45:ae:29:5b:02:fb:fa:eb:09:d4:
5f:ae:84:f6:0d:f3:62:41:48:02:34:db:2d:dd:90:
ec:01:ae:61:d6:d8:5f:c1:48:ed:66:84:c9:31:13:
88:2c:b5:f8:78:f3:26:cc:b2:f9:c2:d0:18:6f:af:
99:a2:0b:37:fb:ce:5c:81:6c:b1:84:da:dc:f6:40:
29:e6:8e:fe:a9:99:95:da:fe:51:8d:27:9a:b1:e2:
8e:fa:f0:23:f9:4e:97:af:71:a4:7a:ea:f4:61:92:
90:c7:26:e6:3d:6b:db:bb:69:ea:d7:9a:68:77:d1:
34:21:8d:26:6a:c2:3b:b9:ee:d7:9b:89:32:a0:52:
2a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:FF:19:53:89:03:28:9E:07:77:34:65:29:54:27:E3:29:7A:FF:8B
X509v3 Authority Key Identifier:
keyid:08:81:C2:6E:FD:76:71:F2:72:DC:4F:E7:D4:3E:CC:99:8A:5C:0C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIHCbv12cfJy3E_n1D7MmYpcDPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/645fb6-8edf-4a75-bbc1-ae13eef4f12e/1/Mf8ZU4kDKJ4HdzRlKVQn4yl6_4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/645fb6-8edf-4a75-bbc1-ae13eef4f12e/1/CIHCbv12cfJy3E_n1D7MmYpcDPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.240.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:d1:ee:8b:6a:bd:05:1a:b9:a7:43:8a:b6:46:2b:9c:a2:a6:
d0:df:da:fe:3e:de:b6:c1:51:f9:98:96:83:7f:3d:72:ee:c9:
1d:fd:5c:d0:1b:23:51:23:4d:17:61:57:6a:41:39:72:09:a6:
8d:aa:1d:66:b7:db:c6:1e:d4:90:69:47:ae:08:46:c4:b3:93:
c6:8d:44:0d:b3:83:27:71:4f:55:7e:f1:8a:27:d1:18:02:da:
00:2a:df:4a:52:a8:76:4f:fa:c9:5a:b5:8a:59:de:19:5a:9b:
1d:91:db:80:a3:0b:3e:bd:a5:af:fe:1a:3b:99:32:63:79:f4:
36:60:5e:1b:e6:97:03:1b:45:92:23:f1:0c:81:75:97:be:6f:
29:80:d0:f5:cd:e2:2d:18:9a:b8:5d:cd:41:15:39:51:c5:c5:
1c:4f:d9:3c:0d:26:01:39:46:d7:21:99:b2:27:81:88:85:85:
45:94:c4:42:b6:58:44:f4:e7:72:07:df:7b:1d:3a:52:1c:cf:
f7:de:ca:50:f4:21:ca:38:e3:28:a5:71:39:c3:8a:34:2e:2b:
1c:89:61:31:f5:58:9a:26:46:af:2b:38:1c:cd:ad:df:be:50:
4a:72:a1:39:da:c9:7a:73:e2:75:ab:2b:f2:b3:59:e2:87:c0:
34:26:83:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:54 2023 by rpki-client on console-fra.rpki-client.org