Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/5c6f3f-0bab-4fd0-bf94-7656da6ede09/1/DCEZzL0Be02vCZ4zZ5SHvWsGWcQ.roa
File: DCEZzL0Be02vCZ4zZ5SHvWsGWcQ.roa (raw, json)
Hash identifier: os2YUTYy45BR2mwQpPwPimGw2rP7jZ31c42daqVF4vA=
Subject key identifier: 0C:21:19:CC:BD:01:7B:4D:AF:09:9E:33:67:94:87:BD:6B:06:59:C4
Certificate issuer: /CN=cd979ccf10aff5f773694d9f43e5d5db472d6485
Certificate serial: 155D7119
Authority key identifier: CD:97:9C:CF:10:AF:F5:F7:73:69:4D:9F:43:E5:D5:DB:47:2D:64:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZeczxCv9fdzaU2fQ-XV20ctZIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/5c6f3f-0bab-4fd0-bf94-7656da6ede09/1/DCEZzL0Be02vCZ4zZ5SHvWsGWcQ.roa
Signing time: Sat 01 Jan 2022 10:53:30 +0000
ROA not before: Sat 01 Jan 2022 10:53:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200701
IP address blocks: 77.244.0.0/20 maxlen: 20
185.212.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358445337 (0x155d7119)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd979ccf10aff5f773694d9f43e5d5db472d6485
Validity
Not Before: Jan 1 10:53:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c2119ccbd017b4daf099e33679487bd6b0659c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c3:02:34:2a:58:e8:26:eb:4a:a2:4d:ec:06:
f1:8c:c6:97:5c:b2:a2:4e:85:a1:ab:24:f0:bd:09:
49:02:71:d0:fb:a3:31:a5:cf:5a:05:c5:7e:a3:22:
15:ac:42:58:66:d8:3d:a8:7b:84:08:37:d6:bd:3c:
e1:6b:41:cf:f7:1d:a6:b7:76:ce:19:98:3e:0f:3f:
16:a3:44:99:de:b0:d7:d5:7f:97:a3:ad:ae:35:47:
93:4a:75:94:85:c0:ae:c1:23:fe:ca:84:17:8c:37:
31:80:25:bb:43:42:a7:16:31:f8:6e:05:7e:e3:fc:
cc:a1:e5:07:12:4b:07:fe:04:d7:a9:b2:10:55:67:
5d:ff:75:5c:b4:57:0c:8b:c7:cb:f2:7e:71:f8:f2:
d7:3e:1d:7e:08:5b:06:85:13:5a:07:81:48:01:9b:
93:e1:9f:d9:d7:cf:27:93:3f:91:58:f3:fe:bb:89:
4d:52:67:22:d7:68:9e:65:09:f9:11:69:ef:18:84:
05:17:e4:2b:1c:4f:fb:54:c1:f2:0e:ea:66:f8:3a:
22:be:4b:ef:32:8d:60:b0:e9:89:cc:94:c7:8b:45:
b0:44:d4:e0:48:dc:42:00:97:62:4d:2f:4c:cd:e2:
4b:3c:fd:8e:47:5c:34:f9:63:a6:9f:ee:46:00:3c:
ca:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:21:19:CC:BD:01:7B:4D:AF:09:9E:33:67:94:87:BD:6B:06:59:C4
X509v3 Authority Key Identifier:
keyid:CD:97:9C:CF:10:AF:F5:F7:73:69:4D:9F:43:E5:D5:DB:47:2D:64:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZeczxCv9fdzaU2fQ-XV20ctZIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/5c6f3f-0bab-4fd0-bf94-7656da6ede09/1/DCEZzL0Be02vCZ4zZ5SHvWsGWcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/5c6f3f-0bab-4fd0-bf94-7656da6ede09/1/zZeczxCv9fdzaU2fQ-XV20ctZIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.244.0.0/20
185.212.24.0/22
Signature Algorithm: sha256WithRSAEncryption
61:4c:65:0d:36:15:a1:49:33:2e:b1:fb:b0:d3:77:47:6b:39:
ed:c8:25:c0:70:5d:aa:69:69:ee:a5:9f:06:56:99:80:e0:61:
0d:0f:1f:1d:a1:e0:00:c7:d8:22:c0:ad:7e:51:de:36:66:d0:
19:dd:dd:e7:fb:2a:7c:af:3c:6e:0b:cf:f5:8b:52:03:0b:32:
86:68:1d:f0:97:3f:db:3e:4b:a9:94:5c:09:e9:95:74:e4:4e:
5c:6c:5f:7e:cb:05:3f:a9:73:9b:d6:b4:7c:a7:1e:ce:95:a6:
ad:ae:da:18:ac:0e:1e:c3:a0:ff:0a:e3:d4:3b:be:b7:59:ec:
d6:13:b9:21:6f:fa:3b:c3:c1:f9:fd:f6:cb:8a:80:56:54:f4:
4c:51:a6:ee:9b:d2:ab:a1:43:2d:ab:e8:68:8d:49:52:de:f0:
a9:2d:a7:69:f3:b6:6a:b9:c1:dc:6f:83:8d:dd:16:58:67:68:
b9:11:7c:47:a2:97:19:3f:58:a9:cb:37:b7:7b:51:93:25:5f:
28:27:b8:24:b3:34:9e:64:ea:ed:a4:9a:fc:65:2b:15:cd:44:
4e:cf:22:09:27:75:b8:20:a2:7c:22:a9:d9:ca:2c:87:c7:2e:
c2:f3:36:25:65:3e:c7:11:b3:ce:8c:c9:fb:df:50:6d:31:e2:
d5:7d:44:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:54 2023 by rpki-client on console.sobornost.net