Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/BwsAA9KP6OaQJihrzXutiuC6_ek.roa
File: BwsAA9KP6OaQJihrzXutiuC6_ek.roa (raw, json)
Hash identifier: Xs29uPnsA4IBRCtlH+yI3rnedRlF6eyJH+04NxSsMtQ=
Subject key identifier: 07:0B:00:03:D2:8F:E8:E6:90:26:28:6B:CD:7B:AD:8A:E0:BA:FD:E9
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 018378992FAC610CDF117BD99D9CA1E2EE43
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/BwsAA9KP6OaQJihrzXutiuC6_ek.roa
Signing time: Mon 26 Sep 2022 07:00:48 +0000
ROA not before: Mon 26 Sep 2022 07:00:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 77.73.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:78:99:2f:ac:61:0c:df:11:7b:d9:9d:9c:a1:e2:ee:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Sep 26 07:00:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=070b0003d28fe8e69026286bcd7bad8ae0bafde9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6f:a0:f2:6e:99:76:47:b7:7b:d5:86:12:e9:
d6:84:dd:98:fa:1e:0c:e2:08:83:9d:da:7a:a3:8a:
bc:47:19:05:e6:48:d1:95:ae:e4:b3:6d:28:60:6c:
44:70:e7:9c:e3:b0:96:9f:4c:0e:a4:b6:bf:b3:22:
b1:4c:57:38:5e:52:14:a8:16:f8:d8:dc:32:bc:10:
f4:07:ef:c9:0c:ee:3b:92:f5:ab:01:17:d9:d4:28:
fa:90:48:b4:d4:c5:55:13:31:af:36:3d:b6:1f:b7:
13:4d:50:36:ce:80:2f:72:d2:22:51:c2:aa:dd:0f:
58:fc:3e:ea:41:27:5c:0f:23:55:4c:b8:03:42:73:
47:4e:6f:1f:22:79:49:85:eb:99:a5:0e:da:54:61:
b2:ef:8b:8e:b2:d3:44:c2:31:11:4a:a6:c8:1f:d5:
3d:7f:20:5c:d9:90:a4:7a:2e:d1:c7:2a:ab:46:b6:
94:7d:27:47:21:cd:6d:63:6e:91:cf:db:5a:47:3d:
4b:7f:47:c8:c4:28:bd:3f:54:c8:18:ab:fe:ef:19:
82:fa:05:23:fa:e0:f7:99:b8:77:af:8f:38:d3:68:
60:0b:1d:3d:9c:30:f4:97:9a:63:43:51:f1:aa:88:
40:ab:d1:54:ed:33:f9:12:00:6a:0e:ee:17:50:cb:
20:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:0B:00:03:D2:8F:E8:E6:90:26:28:6B:CD:7B:AD:8A:E0:BA:FD:E9
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/BwsAA9KP6OaQJihrzXutiuC6_ek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.129.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:54:10:22:2e:23:c4:e6:0f:2b:8d:5a:6d:8a:c9:89:29:7e:
61:66:4e:da:47:1c:55:87:22:02:24:c0:72:5a:d7:53:78:ea:
e9:9a:b9:92:47:47:ea:4f:79:2b:9c:89:8b:4f:20:67:dc:10:
fd:15:a4:43:13:26:d7:fe:30:6a:c9:13:27:59:03:c2:72:7a:
e4:7d:6f:b2:98:3e:4a:64:5c:9a:7d:c0:57:1d:d8:cf:ac:60:
41:32:e7:f0:f6:22:77:d6:e7:90:ac:02:d6:de:61:19:aa:72:
ec:1a:fe:be:88:74:11:da:7d:ea:d7:45:d5:66:2f:c1:aa:4e:
b8:08:8d:12:da:1c:ed:e5:78:09:f4:b5:50:ad:a7:61:95:91:
14:af:e5:fb:63:c0:09:1a:7c:aa:52:35:a1:62:ef:d3:63:4c:
74:5b:c2:23:18:d1:9f:d7:4e:08:14:63:82:21:16:34:00:bc:
c9:fb:5c:86:6a:26:9e:bd:8c:b2:c7:21:2f:21:e5:4d:97:41:
41:46:e1:2e:2c:f2:89:7f:de:be:a0:1f:72:f6:7a:41:90:b6:
14:f5:b5:e6:06:b9:9d:b6:5c:5a:04:05:98:74:db:cc:3c:41:
ab:a0:b9:41:c9:df:bc:76:52:fa:7e:e4:53:2b:79:34:e2:ec:
3b:cb:56:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:18 2024 by rpki-client on console-ams.rpki-client.org