Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/afae93-e79f-499f-9203-0fe8bd6556d5/1/J4DBZM2GvzadUqCrVtQJ9Z-IW1Q.roa
File: J4DBZM2GvzadUqCrVtQJ9Z-IW1Q.roa (raw, json)
Hash identifier: iPCy7YbcyA2I82yCqfjBTmfrlZ+wqgYk+mxF9vhWTsg=
Subject key identifier: 27:80:C1:64:CD:86:BF:36:9D:52:A0:AB:56:D4:09:F5:9F:88:5B:54
Certificate issuer: /CN=6aeba0f2374120d54fa5bcdc2a9d24514172ea6d
Certificate serial: 01D6833E
Authority key identifier: 6A:EB:A0:F2:37:41:20:D5:4F:A5:BC:DC:2A:9D:24:51:41:72:EA:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/auug8jdBINVPpbzcKp0kUUFy6m0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/afae93-e79f-499f-9203-0fe8bd6556d5/1/J4DBZM2GvzadUqCrVtQJ9Z-IW1Q.roa
Signing time: Sat 01 Jan 2022 05:57:19 +0000
ROA not before: Sat 01 Jan 2022 05:57:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15542
IP address blocks: 193.177.166.0/24 maxlen: 24
2001:67c:45c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30835518 (0x1d6833e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aeba0f2374120d54fa5bcdc2a9d24514172ea6d
Validity
Not Before: Jan 1 05:57:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2780c164cd86bf369d52a0ab56d409f59f885b54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:aa:6a:71:cd:c9:05:d6:72:c4:df:92:c5:f0:
29:44:03:33:ff:4f:16:1c:5a:37:61:9c:6f:e3:50:
ed:02:85:ab:89:c3:92:1f:e9:30:10:f4:73:97:2c:
b5:c2:cd:dd:a7:ed:e8:db:26:fa:8b:00:5d:ee:aa:
d5:94:4d:cc:bb:18:d4:55:a9:be:80:c0:bf:9c:53:
84:72:a5:e1:c6:87:85:a2:c2:23:5d:96:ff:39:b3:
41:7b:01:4d:b4:1b:e9:6b:85:bb:9f:04:d9:ba:b5:
fc:18:9f:32:0a:1c:db:08:48:2c:a6:25:a0:0f:eb:
f1:a3:b9:5b:cd:12:c4:f4:23:e6:59:cf:84:0e:8a:
e9:5b:5b:b8:35:22:3f:60:4c:e0:37:9c:95:de:2c:
fa:d7:f0:88:af:3c:4e:b4:c9:10:41:7f:4d:d1:a9:
5c:94:e9:bf:14:b5:9d:c9:08:1b:ba:e6:7d:f5:a1:
a1:10:2c:a5:82:4e:37:ba:80:3d:94:1b:eb:42:35:
e7:ce:c9:44:b4:99:aa:0b:b5:04:c7:66:57:65:4a:
18:81:5e:4f:38:bb:23:46:eb:75:72:31:98:73:78:
7d:74:0e:1b:65:89:fd:7d:aa:b3:5a:1c:e2:be:97:
88:85:77:e5:c7:ce:91:f2:39:2b:bb:a7:6d:ff:04:
5e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:80:C1:64:CD:86:BF:36:9D:52:A0:AB:56:D4:09:F5:9F:88:5B:54
X509v3 Authority Key Identifier:
keyid:6A:EB:A0:F2:37:41:20:D5:4F:A5:BC:DC:2A:9D:24:51:41:72:EA:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/auug8jdBINVPpbzcKp0kUUFy6m0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/afae93-e79f-499f-9203-0fe8bd6556d5/1/J4DBZM2GvzadUqCrVtQJ9Z-IW1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/afae93-e79f-499f-9203-0fe8bd6556d5/1/auug8jdBINVPpbzcKp0kUUFy6m0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.177.166.0/24
IPv6:
2001:67c:45c::/48
Signature Algorithm: sha256WithRSAEncryption
86:02:fe:82:d1:4a:bd:a7:35:5f:8f:6e:a5:13:fa:87:5a:bf:
8b:b1:a9:a2:d1:b6:58:aa:aa:f4:c2:f0:37:96:9c:8f:75:10:
a2:b5:20:ec:54:24:1c:1a:c7:cb:36:08:0d:41:ce:85:18:40:
05:88:8c:8b:6f:80:bf:f7:74:07:53:d2:6a:e9:05:fe:ec:0d:
83:65:61:ed:a6:24:9d:93:89:ce:27:31:c4:3e:14:21:74:d4:
93:b9:8b:4d:ac:d3:ce:62:f2:6f:29:99:83:d0:e6:af:d5:be:
bf:aa:ce:5b:f3:44:df:59:56:eb:09:a7:91:2e:de:51:7f:0d:
10:29:8d:63:fb:29:6e:d6:97:fe:1b:6b:ce:92:b7:0f:f6:06:
f9:1e:43:67:df:d8:fe:73:a5:34:6a:4c:13:41:ff:ec:53:c0:
bb:a5:ee:19:50:ee:76:1b:c2:6f:e3:30:05:fa:e7:2f:91:5a:
e6:2d:cf:b9:be:83:2a:e9:c8:aa:aa:b4:94:61:00:83:ff:02:
f0:35:6e:f9:dc:8a:92:44:c4:e4:05:e2:2c:7b:bc:d9:40:1a:
66:6d:67:19:c3:cf:64:87:68:d8:78:53:74:46:ba:36:32:7e:
ff:6d:19:69:ec:2e:5f:25:ec:3b:59:5c:53:bc:94:4a:21:77:
ac:04:d6:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:36 2023 by rpki-client on console.sobornost.net