Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/645fb6-8edf-4a75-bbc1-ae13eef4f12e/1/hYzzsgNKdmxmXhcB9CdPoMPpgPM.roa
File: hYzzsgNKdmxmXhcB9CdPoMPpgPM.roa (raw, json)
Hash identifier: TIv8KyswFVe6MPWkKic8HKc7PPrVquZwpNN8XNxswLg=
Subject key identifier: 85:8C:F3:B2:03:4A:76:6C:66:5E:17:01:F4:27:4F:A0:C3:E9:80:F3
Certificate issuer: /CN=0881c26efd7671f272dc4fe7d43ecc998a5c0cf2
Certificate serial: 01A7C191
Authority key identifier: 08:81:C2:6E:FD:76:71:F2:72:DC:4F:E7:D4:3E:CC:99:8A:5C:0C:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIHCbv12cfJy3E_n1D7MmYpcDPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/645fb6-8edf-4a75-bbc1-ae13eef4f12e/1/hYzzsgNKdmxmXhcB9CdPoMPpgPM.roa
Signing time: Thu 10 Feb 2022 22:34:57 +0000
ROA not before: Thu 10 Feb 2022 22:34:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142430
IP address blocks: 77.246.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27771281 (0x1a7c191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0881c26efd7671f272dc4fe7d43ecc998a5c0cf2
Validity
Not Before: Feb 10 22:34:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=858cf3b2034a766c665e1701f4274fa0c3e980f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:00:5b:5d:f1:ec:ad:8f:8d:03:a8:77:76:5a:
75:db:cb:f3:61:57:91:be:1d:11:94:e8:78:04:6b:
54:73:17:9d:4f:2a:37:17:7c:1f:43:1d:c2:95:bf:
ca:5e:c9:7f:a4:d4:19:be:d9:33:48:8d:7e:1e:74:
fc:fd:d5:95:58:81:98:0b:48:2d:c2:b3:69:c1:a6:
a5:bc:66:b0:e9:76:f2:8b:db:ee:b5:32:60:a4:6b:
52:30:91:8c:48:cd:43:4d:f0:05:ac:4e:7d:5f:b1:
b2:3d:4a:a0:00:9c:6c:3c:e4:1e:75:76:35:da:2b:
a7:14:c8:0a:9d:ef:08:1a:bc:30:6d:a0:65:74:ba:
b3:61:f3:42:42:0b:0f:14:ed:5f:02:3c:9c:e3:eb:
13:c4:a0:28:78:4d:60:17:1c:26:f1:21:df:1e:ec:
9f:e0:30:1b:1a:0a:b7:4a:5b:c1:6a:86:cb:69:e2:
47:3f:0c:3f:c4:4f:43:0b:05:b1:fa:ae:aa:30:27:
aa:70:7c:71:14:3b:0a:a8:5d:95:04:ce:42:03:eb:
54:5e:93:56:9a:cc:49:d5:eb:b4:1d:42:2f:6e:61:
fe:6d:3f:7c:a0:80:d6:ab:a8:36:ab:f8:88:08:6a:
37:54:11:31:f9:8f:5c:dc:74:76:92:ba:28:47:35:
36:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:8C:F3:B2:03:4A:76:6C:66:5E:17:01:F4:27:4F:A0:C3:E9:80:F3
X509v3 Authority Key Identifier:
keyid:08:81:C2:6E:FD:76:71:F2:72:DC:4F:E7:D4:3E:CC:99:8A:5C:0C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIHCbv12cfJy3E_n1D7MmYpcDPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/645fb6-8edf-4a75-bbc1-ae13eef4f12e/1/hYzzsgNKdmxmXhcB9CdPoMPpgPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/645fb6-8edf-4a75-bbc1-ae13eef4f12e/1/CIHCbv12cfJy3E_n1D7MmYpcDPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.240.0/24
Signature Algorithm: sha256WithRSAEncryption
59:41:c9:54:04:cc:ba:bd:b2:26:09:b4:a9:4f:38:fb:77:0c:
82:c9:8d:8a:bc:eb:09:45:d3:1a:c6:2f:53:c2:51:ed:0a:be:
71:ea:5e:fd:09:5e:29:58:e2:8b:ca:a4:68:f2:85:74:f0:03:
cf:06:88:12:88:54:13:cc:0e:7c:40:e2:a5:be:e1:17:30:5f:
01:f4:d6:ac:5d:76:7c:27:70:eb:21:63:92:b1:0d:f1:35:d3:
4b:99:b6:fd:0d:82:19:07:c4:4b:b8:94:3e:11:98:7d:34:14:
bf:83:e5:56:ab:07:5c:c3:73:10:29:19:68:fa:df:b1:25:f3:
cc:05:97:37:9a:70:91:71:8c:ae:24:e4:eb:60:04:86:f7:c0:
1f:2b:1a:18:69:4b:f7:70:c6:aa:cf:b2:71:3c:36:3e:52:5f:
b4:92:1d:82:2f:bc:24:56:62:1d:da:65:48:ed:0c:4b:f1:d3:
68:7a:8a:08:bb:fb:e8:67:2e:ba:d5:db:67:9c:97:37:6a:3d:
4d:28:07:42:fd:ec:d2:f3:fd:77:41:5a:5d:0a:94:53:57:90:
af:2b:94:79:c7:96:bc:cb:a8:c6:dd:5f:04:a0:ba:52:51:f9:
1f:f0:d1:1d:5f:2f:61:19:8a:2a:0a:4b:f3:de:3d:57:98:44:
30:b4:24:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:45 2023 by rpki-client on console-ams.rpki-client.org