Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/vGuFN84kdytUkLDyN5BEMDLcd70.roa
File: vGuFN84kdytUkLDyN5BEMDLcd70.roa (raw, json)
Hash identifier: AnNlpcKIuRkV8DNzsqTsYkek48EOZuqhjsBuL9+V5fM=
Subject key identifier: BC:6B:85:37:CE:24:77:2B:54:90:B0:F2:37:90:44:30:32:DC:77:BD
Certificate issuer: /CN=99e7209a8c9b176fbf623edf3ee0b82007fc2c40
Certificate serial: 1EDA61B5
Authority key identifier: 99:E7:20:9A:8C:9B:17:6F:BF:62:3E:DF:3E:E0:B8:20:07:FC:2C:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/vGuFN84kdytUkLDyN5BEMDLcd70.roa
Signing time: Sat 01 Jan 2022 08:56:12 +0000
ROA not before: Sat 01 Jan 2022 08:56:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204031
IP address blocks: 146.255.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 517628341 (0x1eda61b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99e7209a8c9b176fbf623edf3ee0b82007fc2c40
Validity
Not Before: Jan 1 08:56:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc6b8537ce24772b5490b0f23790443032dc77bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fe:52:da:71:c8:ca:b1:32:94:58:35:bb:2e:
e8:a4:2c:3f:99:c5:5d:6e:52:c7:4e:f4:61:25:8a:
88:c1:86:52:b9:a2:d0:a9:67:18:8b:19:7a:e8:09:
12:da:c9:26:0d:6b:3c:bf:18:e1:58:4c:5f:36:d0:
a5:06:2a:55:99:c5:77:b6:33:79:83:ad:94:61:62:
e1:33:b0:51:5d:57:a9:50:49:eb:df:73:d4:0f:2d:
8f:ab:f1:c6:2e:6e:09:a1:23:e6:07:40:f7:d1:75:
fb:19:8e:bd:f5:7b:90:f9:45:44:71:8e:32:b7:0c:
de:8a:ae:15:03:05:7a:a1:ff:c7:52:b4:6f:ca:eb:
3e:bf:ca:6e:14:21:f0:4e:6b:40:4e:53:31:94:35:
a6:16:f8:ba:b5:79:cf:7b:1f:6d:64:d8:c1:68:2d:
0c:a6:a1:b6:ff:f6:ef:0f:13:35:be:38:74:db:bd:
b5:8f:ca:f5:ce:38:04:40:97:c0:9f:3d:c2:5b:07:
33:86:35:0e:39:df:d3:2d:b9:57:07:dc:c3:fd:51:
79:e0:4e:6e:77:63:56:e4:ee:3f:b8:3b:8d:4c:21:
a1:6a:cc:2d:13:bf:5b:f1:c6:c7:2e:07:9a:0d:27:
1a:a1:1a:89:c7:7b:c8:40:b3:17:57:9e:08:d7:d6:
69:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:6B:85:37:CE:24:77:2B:54:90:B0:F2:37:90:44:30:32:DC:77:BD
X509v3 Authority Key Identifier:
keyid:99:E7:20:9A:8C:9B:17:6F:BF:62:3E:DF:3E:E0:B8:20:07:FC:2C:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/vGuFN84kdytUkLDyN5BEMDLcd70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/mecgmoybF2-_Yj7fPuC4IAf8LEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.255.76.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:a0:47:0d:43:c2:c5:6f:9a:7c:69:7e:34:2f:6e:77:08:6f:
b3:bb:90:b7:06:b1:78:96:22:92:e4:b8:0b:13:b4:b8:18:bf:
fd:0a:6c:72:82:4d:24:12:9d:ec:d4:28:0b:0e:e0:ab:39:b9:
c9:df:df:e0:8e:82:4b:ed:09:0f:de:70:54:c1:e1:a5:72:a2:
20:77:39:d9:e3:f3:82:95:6c:ed:47:d0:19:28:b2:02:ca:73:
95:9f:62:08:0f:f8:0f:97:b1:93:d0:84:eb:c6:00:5e:27:d7:
7d:78:f2:ac:c6:be:38:a1:f9:e7:76:4c:e8:1d:b9:a3:56:d7:
8a:3c:8c:02:b9:5b:bf:4b:01:ae:3f:fb:fc:4c:75:0e:42:d2:
6e:11:ec:cf:0a:96:74:30:57:e4:15:fa:6a:23:f6:da:80:e5:
ac:22:6a:9b:f6:c0:96:38:45:54:0e:91:81:c9:27:5a:f2:52:
5a:ad:34:79:1c:94:f1:f1:35:eb:8f:9e:3b:64:64:4f:ad:b1:
3e:68:ec:8d:59:aa:07:20:6d:81:e9:0e:44:53:f6:13:21:a2:
57:a5:d6:8d:32:05:01:ed:e3:0b:58:2d:88:cf:72:8f:79:8e:
d8:ef:18:08:a8:d0:dd:bb:66:ea:2b:a3:24:38:c3:8c:9f:21:
29:f2:d4:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:32 2023 by rpki-client on console.sobornost.net