Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/hrcKurIkB5LZBmAfNtoxZ-HtoZ4.roa
File: hrcKurIkB5LZBmAfNtoxZ-HtoZ4.roa (raw, json)
Hash identifier: LH8GXjIu/yJ7i2g4ZAdLdC0EZ3iIWOyo3qNir8HD3Ys=
Subject key identifier: 86:B7:0A:BA:B2:24:07:92:D9:06:60:1F:36:DA:31:67:E1:ED:A1:9E
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 0184A3AB833ABEB26B490E6C12AF61F636F7
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/hrcKurIkB5LZBmAfNtoxZ-HtoZ4.roa
Signing time: Wed 23 Nov 2022 08:47:17 +0000
ROA not before: Wed 23 Nov 2022 08:47:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208911
IP address blocks: 77.73.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a3:ab:83:3a:be:b2:6b:49:0e:6c:12:af:61:f6:36:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Nov 23 08:47:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86b70abab2240792d906601f36da3167e1eda19e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a0:5d:47:4a:4b:75:87:5f:ee:06:03:72:2a:
02:d9:58:5a:f1:e7:bb:a3:21:48:88:3e:44:86:0d:
08:c2:ad:4d:5f:1e:f7:97:d5:52:34:c7:a3:f1:65:
cb:69:d8:76:43:fe:cc:7a:4c:8e:b8:f9:e6:3b:6c:
8b:53:ec:37:58:a8:be:82:04:ee:80:6c:95:39:bc:
0c:82:18:e7:3f:41:5c:d7:d0:25:e3:c3:3a:80:24:
fc:f0:60:8e:27:dc:05:3c:2c:de:75:4b:0b:e2:10:
5f:bd:ab:18:8d:0b:59:da:9c:fd:48:70:a6:bd:22:
3e:40:6e:e3:a2:9f:d1:3a:3c:80:e1:ba:6c:47:6b:
15:0b:df:34:e9:31:c9:86:3a:d6:ba:6b:16:f7:b0:
10:d6:49:71:a7:8b:d2:48:3f:c5:64:82:01:90:71:
82:5f:3e:ea:81:82:d8:33:36:f4:6d:90:72:36:7c:
99:47:d1:f0:ec:ce:41:fd:bc:13:0a:d8:f8:0e:4f:
ee:8b:20:4f:83:9d:97:75:a8:54:e0:18:d8:66:69:
99:ab:99:f3:1f:41:15:a1:61:d6:c3:90:1b:5e:43:
ac:e2:d5:75:ff:1d:a6:bd:be:10:63:be:f8:09:f5:
c6:14:d6:fe:ec:f1:8d:c8:cb:c5:1d:a2:d1:a5:0f:
c6:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B7:0A:BA:B2:24:07:92:D9:06:60:1F:36:DA:31:67:E1:ED:A1:9E
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/hrcKurIkB5LZBmAfNtoxZ-HtoZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.132.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:64:9f:07:84:68:f2:f8:7d:f0:bf:0a:17:4a:6d:fe:09:c0:
be:64:92:8f:ae:0a:a1:64:7f:a4:2f:13:11:8a:e2:6a:db:00:
2d:a8:1b:19:15:bc:20:ca:b7:fc:46:f5:2e:bc:4c:68:8e:41:
08:eb:64:93:14:42:5c:09:63:1c:73:c9:56:60:a4:56:44:f6:
0a:97:d4:c9:9e:50:12:04:c3:90:0c:59:93:f3:51:00:5d:6a:
d9:97:10:97:bb:6f:81:62:f9:2d:e5:d2:d6:09:7f:a8:ce:2b:
fe:83:fd:11:41:cf:01:3b:5e:cd:eb:07:56:c9:51:ce:98:12:
d8:b7:ba:c8:0a:7f:60:6e:75:3e:4f:14:ce:fa:b3:32:2e:ae:
91:67:05:6e:f4:37:1f:6a:38:8d:b4:32:75:1d:de:e8:b5:61:
ce:77:75:0f:b7:2a:ec:12:fa:20:42:db:5c:db:9d:1f:63:42:
23:eb:8e:9f:e7:b1:be:a9:bd:8a:2b:21:2e:b5:7e:c5:d4:90:
1a:6c:f4:37:b3:ae:0f:e5:4e:d9:e7:8e:4a:db:99:3a:8a:3e:
0b:70:af:7e:95:f1:c8:5b:f1:9c:45:eb:37:8a:f9:02:f8:2c:
2f:4f:80:6d:39:68:50:5c:3f:d9:4d:49:e6:78:a4:b4:ac:5d:
f5:7b:79:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:18 2024 by rpki-client on console-ams.rpki-client.org