Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/aac010-5ef0-4844-b233-4457ebea5a45/1/o3Eb2zJV9zPv2brJ9ItGXkkVkdM.roa
File: o3Eb2zJV9zPv2brJ9ItGXkkVkdM.roa (raw, json)
Hash identifier: D97roavOMLQVU19cNEJ0GM5Ac5o8Dt/jsN/ECoJWXeA=
Subject key identifier: A3:71:1B:DB:32:55:F7:33:EF:D9:BA:C9:F4:8B:46:5E:49:15:91:D3
Certificate issuer: /CN=efb45cc923978c1a24bdee96cc7b3af37386d2a8
Certificate serial: 043CE1
Authority key identifier: EF:B4:5C:C9:23:97:8C:1A:24:BD:EE:96:CC:7B:3A:F3:73:86:D2:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/77RcySOXjBokve6WzHs683OG0qg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/aac010-5ef0-4844-b233-4457ebea5a45/1/o3Eb2zJV9zPv2brJ9ItGXkkVkdM.roa
Signing time: Tue 22 Feb 2022 16:23:52 +0000
ROA not before: Tue 22 Feb 2022 16:23:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1770
IP address blocks: 195.177.202.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277729 (0x43ce1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=efb45cc923978c1a24bdee96cc7b3af37386d2a8
Validity
Not Before: Feb 22 16:23:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3711bdb3255f733efd9bac9f48b465e491591d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:44:29:fe:10:60:99:59:a7:d0:51:e1:6c:9d:
3b:34:75:5e:38:f7:dc:7e:44:6b:fe:9f:75:dc:03:
f7:2b:cb:0a:4e:cd:81:57:f5:a2:46:14:cf:cd:93:
b8:30:c7:38:77:4c:ce:6d:78:f2:fd:1f:20:12:1c:
12:c6:f0:b3:04:84:24:77:29:07:34:08:0e:be:10:
b5:b5:d5:c1:03:ba:1a:42:ee:7a:80:d6:02:02:ba:
68:55:90:c9:59:e6:41:2e:e9:54:64:bc:38:ba:fb:
c1:4c:c6:fe:5a:6f:5b:6e:48:d0:56:7b:76:6d:81:
16:b8:41:1f:ea:e6:6b:74:bd:03:41:46:e1:ec:fc:
d7:ff:86:99:dc:e4:9a:ca:0e:5b:7f:6d:ef:40:94:
61:f1:a6:03:b5:c8:43:04:10:76:3e:aa:72:c5:43:
34:22:5d:de:a4:86:04:69:b1:f9:51:0f:42:09:83:
8f:ba:a4:34:21:5f:4c:c9:83:a2:fc:c9:fa:6b:7b:
e0:d5:5a:d6:fe:ac:42:df:a3:2e:37:8b:59:4c:ed:
76:fa:7f:2e:8f:14:23:db:cb:af:fd:6a:80:10:39:
84:97:a7:5e:bf:14:99:cf:5a:b1:28:39:bc:88:87:
12:0e:16:38:dd:7a:01:51:85:b0:35:d6:7d:5c:05:
6c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:71:1B:DB:32:55:F7:33:EF:D9:BA:C9:F4:8B:46:5E:49:15:91:D3
X509v3 Authority Key Identifier:
keyid:EF:B4:5C:C9:23:97:8C:1A:24:BD:EE:96:CC:7B:3A:F3:73:86:D2:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/77RcySOXjBokve6WzHs683OG0qg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/aac010-5ef0-4844-b233-4457ebea5a45/1/o3Eb2zJV9zPv2brJ9ItGXkkVkdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/aac010-5ef0-4844-b233-4457ebea5a45/1/77RcySOXjBokve6WzHs683OG0qg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.202.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:1c:aa:1b:7d:47:ff:6e:4b:42:38:56:cc:63:16:b2:94:e3:
60:ae:32:cb:f1:04:2c:36:9e:2e:ec:57:3d:ce:ed:13:a2:49:
46:61:77:29:35:b6:17:ba:6d:8b:cf:4f:50:0d:f3:d3:69:9d:
a6:8f:22:7a:30:7d:80:b6:a8:98:d1:a7:5e:93:28:38:49:47:
57:d5:aa:b9:ef:65:c1:b4:07:01:02:91:05:d4:2c:52:64:67:
eb:f4:a1:23:e3:09:ea:9d:20:dc:5c:9f:eb:36:7e:f5:04:e7:
d5:e9:13:0b:b4:41:af:ad:a0:05:15:e2:67:61:1f:f5:08:4a:
c7:b2:98:b3:2f:01:d7:ec:90:a9:20:50:bc:e4:df:71:03:2f:
5b:b3:04:90:7d:b4:ce:41:8b:a8:03:2f:06:f0:3d:0f:65:d4:
cf:b9:46:38:d8:e6:9a:c5:6c:77:9d:2e:52:ab:1c:6a:d9:dc:
71:45:af:c7:87:e0:07:0f:37:77:1d:4e:7b:ca:9c:9c:1b:7d:
ed:d8:5b:e7:78:0a:e1:72:9f:75:44:c2:f2:e8:80:f0:e6:96:
2a:7a:b0:28:48:c1:88:9c:25:ca:1b:88:5b:c3:94:df:0e:83:
01:0e:a9:89:ea:66:89:38:2d:45:05:84:df:68:77:07:6d:d1:
6c:13:22:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:24 2023 by rpki-client on console.sobornost.net