Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/MfySsqPv_0huY1NUr5cGNYmzALc.roa
File: MfySsqPv_0huY1NUr5cGNYmzALc.roa (raw, json)
Hash identifier: jhqEooixMYA6ls9qgW689lqpxjKyOCdJ1ahuTzn5QCo=
Subject key identifier: 31:FC:92:B2:A3:EF:FF:48:6E:63:53:54:AF:97:06:35:89:B3:00:B7
Certificate issuer: /CN=d703642076d27e252fa90bf1a4296f8bcd9d0cf1
Certificate serial: 380CAE7F
Authority key identifier: D7:03:64:20:76:D2:7E:25:2F:A9:0B:F1:A4:29:6F:8B:CD:9D:0C:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1wNkIHbSfiUvqQvxpClvi82dDPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/MfySsqPv_0huY1NUr5cGNYmzALc.roa
Signing time: Sat 01 Jan 2022 10:04:11 +0000
ROA not before: Sat 01 Jan 2022 10:04:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197248
IP address blocks: 77.221.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940355199 (0x380cae7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d703642076d27e252fa90bf1a4296f8bcd9d0cf1
Validity
Not Before: Jan 1 10:04:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31fc92b2a3efff486e635354af97063589b300b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:46:2e:96:3c:fd:e5:72:c1:c2:be:01:50:20:
11:9f:6a:68:08:35:46:0e:d5:9b:e8:06:9d:03:d3:
0e:95:6c:58:45:c0:68:0e:68:9a:9a:fb:a4:76:fa:
c8:b8:7a:a8:ea:ab:cd:29:c3:85:0e:a7:7d:9c:b7:
d2:61:58:75:35:03:7d:d8:a2:43:d9:02:4d:61:09:
df:f0:f2:c9:12:c3:31:6a:e9:be:cb:19:47:d0:da:
d4:22:09:e8:9b:d3:e6:08:6e:b4:b5:4e:60:f3:4e:
b3:e9:94:e2:27:88:6a:9f:f4:46:f5:ce:c1:38:75:
3b:33:82:1e:80:c0:55:f1:5e:8f:19:2d:eb:f5:07:
23:f4:fe:8f:e2:3e:05:79:cf:48:dc:6f:a1:ca:a5:
d4:6e:f6:d3:48:f4:8a:17:7f:c0:47:ec:5f:7e:a0:
3c:d8:74:e5:35:87:a6:cf:dd:1e:8c:b1:3a:7f:d8:
34:10:c2:00:ec:67:2e:06:b1:07:88:c3:6c:14:dc:
36:c1:da:e3:86:b5:b5:ec:04:53:10:4a:b8:26:0b:
8f:93:9b:45:39:06:7c:7c:eb:76:b7:14:84:20:0c:
55:b7:6e:3e:87:ea:02:92:0f:e3:06:2c:69:2d:26:
44:47:2f:2d:90:58:b9:b6:e2:6b:63:11:2c:84:fb:
d7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:FC:92:B2:A3:EF:FF:48:6E:63:53:54:AF:97:06:35:89:B3:00:B7
X509v3 Authority Key Identifier:
keyid:D7:03:64:20:76:D2:7E:25:2F:A9:0B:F1:A4:29:6F:8B:CD:9D:0C:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1wNkIHbSfiUvqQvxpClvi82dDPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/MfySsqPv_0huY1NUr5cGNYmzALc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/1wNkIHbSfiUvqQvxpClvi82dDPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.221.51.0/24
Signature Algorithm: sha256WithRSAEncryption
97:eb:2b:b8:5d:2b:37:76:ab:ee:9e:c1:48:01:41:b2:86:ff:
41:07:a5:e5:af:73:5f:80:57:c7:51:af:c2:16:40:23:98:c8:
50:b0:96:70:be:bb:69:b9:75:79:be:ba:c4:6b:62:18:79:7c:
37:fe:4b:a3:32:94:bb:20:94:0a:04:47:6e:27:c5:9d:eb:e9:
11:63:39:4c:3a:e4:cc:9d:7c:ed:65:2f:e0:4f:20:d1:19:d0:
e2:17:16:4b:c5:c7:97:be:7e:5e:a7:71:b8:35:8e:f9:85:a5:
23:7b:2b:fe:c5:e6:b4:82:0b:d8:1a:55:de:5d:35:83:52:1a:
5a:0f:55:a8:a8:23:d9:2b:78:25:fa:6c:a4:4b:20:c6:1c:9f:
eb:9b:b7:1f:72:37:17:8d:91:a0:eb:15:9f:9a:22:6e:66:79:
92:51:93:6d:0f:c5:3c:ec:87:8d:31:ef:e2:3c:03:ad:4a:8d:
e3:4a:41:c7:13:a2:f7:9f:dd:57:8f:85:15:f6:ca:fe:87:ca:
e8:1d:b5:98:aa:36:44:ed:16:e6:eb:1d:9a:3b:1b:77:40:5c:
cc:5b:95:f8:4e:a5:1d:a9:c4:ff:b3:06:a9:42:e7:09:c0:43:
cd:43:de:59:da:7d:87:79:24:52:08:b0:e2:8c:8d:d7:70:4a:
b7:f3:f4:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:14 2023 by rpki-client on console.sobornost.net