Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/GDHBPrvaNkjTaCjNZ-zL3DGs9VY.roa
File: GDHBPrvaNkjTaCjNZ-zL3DGs9VY.roa (raw, json)
Hash identifier: FwXowj/6hdzTEy7i0WFhLNJYuENlQ/ZKHdgIFH8NTkg=
Subject key identifier: 18:31:C1:3E:BB:DA:36:48:D3:68:28:CD:67:EC:CB:DC:31:AC:F5:56
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0185563A57F84298E360522E905BFD9B0AD4
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/GDHBPrvaNkjTaCjNZ-zL3DGs9VY.roa
Signing time: Wed 28 Dec 2022 00:55:42 +0000
ROA not before: Wed 28 Dec 2022 00:55:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 77.83.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:56:3a:57:f8:42:98:e3:60:52:2e:90:5b:fd:9b:0a:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Dec 28 00:55:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1831c13ebbda3648d36828cd67eccbdc31acf556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ca:e3:be:5a:d5:87:2d:72:b8:2f:99:82:c5:
42:eb:a0:61:cd:5a:08:bf:7b:fe:c7:6d:87:61:89:
d6:7e:bc:f7:f9:9c:2c:14:52:22:c6:f9:68:b1:00:
b0:9a:e8:96:33:d0:0c:e0:9c:d9:2f:c7:31:a7:7e:
13:44:6e:ce:2d:f7:f9:4e:a6:bf:22:cc:f2:4b:e5:
ec:d2:d4:4f:2f:8c:8e:0f:49:b5:e3:49:2d:29:dc:
c7:95:73:ab:95:3f:ac:06:15:52:5f:4c:5a:33:38:
50:86:ef:bc:fc:d1:c4:ba:25:95:1a:10:c9:ac:03:
33:d3:c3:14:61:ce:ac:14:62:4a:60:ea:d2:2d:c0:
9a:34:87:12:ee:22:57:71:8f:e1:a6:36:6d:9a:43:
df:b1:48:af:77:dc:f6:37:1e:0d:51:a2:b6:28:a1:
7d:b7:89:d1:72:5c:91:9b:58:5f:81:c3:aa:47:ca:
7d:78:fd:99:4c:37:59:6d:58:61:92:55:1f:69:4c:
72:b6:27:94:c0:92:39:bd:c4:63:91:82:cd:0c:d7:
df:29:cb:8a:7f:6a:2f:43:c1:32:55:46:e6:5b:d4:
99:d8:3f:ea:43:a5:75:60:d4:1f:3b:5b:92:58:b5:
e4:05:f9:39:35:6c:29:4b:ba:ad:57:66:cc:b2:1f:
bb:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:31:C1:3E:BB:DA:36:48:D3:68:28:CD:67:EC:CB:DC:31:AC:F5:56
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/GDHBPrvaNkjTaCjNZ-zL3DGs9VY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.39.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:a9:24:68:18:8c:2f:ec:b6:aa:33:8c:16:39:3c:c7:38:7c:
b0:fa:2e:1c:b4:e3:68:a3:2f:0b:dd:4a:df:cb:c5:98:22:f4:
96:42:3b:73:fd:53:95:54:83:35:2a:ad:2b:f8:fc:02:eb:d6:
c8:d1:e1:0e:18:0d:0d:ce:bf:6d:31:47:e9:c3:ed:19:bc:53:
b6:51:29:f9:3d:a3:f4:5e:e3:54:c6:7b:dc:fb:0c:77:44:ae:
83:e2:e3:3f:c3:2a:25:d9:8d:ce:d5:c5:27:01:90:48:db:df:
c2:8c:7a:07:35:fb:ec:e1:99:95:6a:6c:b6:6e:67:33:2e:f6:
ec:f0:83:68:42:84:af:a8:27:f0:4b:0a:d5:66:63:29:b1:2d:
0f:60:46:80:41:78:5e:33:da:36:80:2d:7d:2d:e3:8b:42:a1:
c3:39:1d:38:4f:82:65:92:e3:1b:29:f4:67:fc:9e:22:3a:13:
eb:87:5e:1b:2d:1a:c4:4f:c7:2d:66:53:06:8d:99:a7:f9:f7:
8f:61:bd:9c:9c:1d:8e:1b:56:99:b3:51:6e:3d:39:63:9b:ae:
d7:77:74:0c:22:7f:ae:84:d8:36:42:3f:c4:ad:c0:fc:ac:cb:
b3:c1:16:af:e1:c6:8a:41:2f:c5:6c:21:ca:17:85:86:f6:90:
b0:32:df:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org