Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/TA-eeW51Zl6sPgQdyc5uh3GJytU.roa
File: TA-eeW51Zl6sPgQdyc5uh3GJytU.roa (raw, json)
Hash identifier: aFyG4cvkaHBKiVsfQQlumhY01kU5ypoweHzOIzKa6TI=
Subject key identifier: 4C:0F:9E:79:6E:75:66:5E:AC:3E:04:1D:C9:CE:6E:87:71:89:CA:D5
Certificate issuer: /CN=8f2ae45c509041a796a968953581f51d45bfce55
Certificate serial: 018535C3A08D4B8805639CF5D94BB5F03C96
Authority key identifier: 8F:2A:E4:5C:50:90:41:A7:96:A9:68:95:35:81:F5:1D:45:BF:CE:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jyrkXFCQQaeWqWiVNYH1HUW_zlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/TA-eeW51Zl6sPgQdyc5uh3GJytU.roa
Signing time: Wed 21 Dec 2022 17:38:11 +0000
ROA not before: Wed 21 Dec 2022 17:38:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42346
IP address blocks: 77.75.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:35:c3:a0:8d:4b:88:05:63:9c:f5:d9:4b:b5:f0:3c:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f2ae45c509041a796a968953581f51d45bfce55
Validity
Not Before: Dec 21 17:38:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c0f9e796e75665eac3e041dc9ce6e877189cad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:56:a8:ee:3f:e6:c5:dd:d9:54:2a:f6:97:be:
79:46:51:8d:25:0c:af:c0:10:2b:a1:00:19:72:c0:
ec:f5:f3:96:8c:4f:55:22:42:5c:5e:77:02:07:10:
f7:03:d3:5e:68:39:61:8a:71:11:04:75:a3:44:81:
2c:df:05:60:c5:a8:92:68:8c:ec:be:a9:b5:42:fc:
d3:91:50:24:18:9c:0b:0f:9d:01:f0:b8:05:a9:b1:
29:03:d6:2a:81:ef:cc:c0:e4:6b:68:48:ce:3d:bc:
2e:27:7f:fc:76:db:01:8b:9e:10:80:2b:03:06:03:
9d:9c:35:4b:58:bb:fb:3b:d2:d0:c6:1a:fa:13:f8:
a0:1a:ea:c5:cf:e9:dc:6e:93:f5:8e:90:42:e9:ca:
00:f9:1a:96:57:71:b5:bd:06:8f:27:b9:88:3b:1e:
51:da:01:79:7b:99:d7:c7:56:63:00:ec:61:ff:fe:
03:e3:7f:00:03:81:42:a8:ae:84:3e:60:22:19:b1:
2b:97:ac:c3:a4:b0:03:b2:25:00:be:ee:86:1f:57:
23:88:40:05:ae:b3:e0:49:14:ba:ac:c5:bb:fd:f9:
96:e1:1b:21:e3:f1:e9:00:3a:ba:ee:9f:60:47:7f:
dd:d7:28:01:08:b7:84:1a:8d:d3:c6:de:4e:15:f5:
6b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:0F:9E:79:6E:75:66:5E:AC:3E:04:1D:C9:CE:6E:87:71:89:CA:D5
X509v3 Authority Key Identifier:
keyid:8F:2A:E4:5C:50:90:41:A7:96:A9:68:95:35:81:F5:1D:45:BF:CE:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jyrkXFCQQaeWqWiVNYH1HUW_zlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/TA-eeW51Zl6sPgQdyc5uh3GJytU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/jyrkXFCQQaeWqWiVNYH1HUW_zlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.112.0/21
Signature Algorithm: sha256WithRSAEncryption
49:ce:e1:29:05:3d:08:57:bd:8c:97:d9:1f:2f:40:58:34:85:
c0:d7:d8:5f:c1:a6:31:94:d3:ee:65:29:e9:04:50:86:75:55:
5c:05:05:7c:8e:eb:19:73:09:fa:a4:c2:bf:f7:bf:5b:04:08:
61:22:0e:ce:95:24:5b:15:dd:cc:94:1b:83:31:3f:88:d7:dc:
82:9a:3a:2e:f5:7a:8f:26:f9:b6:02:d0:6e:00:7e:af:b9:e8:
2e:ff:3d:0d:7c:33:be:de:7c:c7:92:00:61:0b:9d:d1:a5:58:
40:22:83:6b:af:0c:4c:42:9c:58:8a:74:af:55:5e:85:32:df:
76:5c:7c:f4:10:45:e2:f5:52:6a:fa:ed:fa:da:79:f5:d9:4f:
e0:38:41:a5:67:c0:46:89:86:c5:16:c0:37:47:3c:02:25:c3:
af:1d:74:09:ce:95:f0:84:4d:d5:52:04:ff:ed:60:46:01:6e:
d3:e1:f6:f1:fb:6b:d4:59:8b:12:c9:16:40:d6:9c:c0:08:b5:
af:86:0d:24:00:ae:35:fd:85:10:6e:ce:35:9f:19:54:38:b3:
c0:44:1c:e1:a1:d7:f0:e4:a8:b7:4e:06:cd:22:4c:42:aa:a3:
52:5d:63:e6:79:69:62:2c:20:4d:2d:bd:01:87:4c:94:41:bd:
3f:59:25:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:40 2023 by rpki-client on console.sobornost.net