Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/AdWSC0a-XZ_fN6ask6SPXg538r4.roa
File: AdWSC0a-XZ_fN6ask6SPXg538r4.roa (raw, json)
Hash identifier: Lrt86X3yW1ZJ8uYe3TBr35qbZga7UdIwi71avxTctAw=
Subject key identifier: 01:D5:92:0B:46:BE:5D:9F:DF:37:A6:AC:93:A4:8F:5E:0E:77:F2:BE
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 09027B91
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/AdWSC0a-XZ_fN6ask6SPXg538r4.roa
Signing time: Sat 01 Jan 2022 15:03:01 +0000
ROA not before: Sat 01 Jan 2022 15:03:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26476
IP address blocks: 77.67.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151157649 (0x9027b91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 1 15:03:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01d5920b46be5d9fdf37a6ac93a48f5e0e77f2be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:eb:fb:66:0e:27:84:16:6b:21:c1:52:5e:d4:
88:ef:23:4e:9f:03:be:da:6f:aa:d1:8d:e7:69:d6:
40:b2:e0:eb:c3:87:6a:cb:41:7e:d1:dc:61:83:cf:
ff:96:b0:49:b7:3b:2f:90:71:ca:22:56:e1:19:e5:
da:27:94:8b:e3:16:d5:6c:13:03:bf:f3:38:3f:05:
e2:d8:79:b9:e1:72:d5:43:69:38:6d:74:32:8e:f0:
4b:de:b1:cb:7e:df:c9:df:c3:07:91:9f:ae:59:3f:
41:75:57:35:8d:f5:5d:ac:38:a5:ca:f4:5b:c3:c7:
3e:20:34:de:27:8b:08:f9:25:95:25:b6:36:5e:f8:
bc:f9:0c:93:8e:36:15:72:31:69:ba:13:e3:ab:6e:
23:0d:c7:e0:8c:8b:d3:00:dd:2f:81:bc:1f:75:e6:
96:e2:41:ae:e4:8f:62:af:e9:f2:21:0f:01:7f:c6:
4f:db:01:66:cc:8e:ba:d5:6f:7c:41:12:ca:58:d6:
fd:db:b0:c8:c5:92:34:a1:80:97:fc:06:bf:4a:9d:
41:04:c5:66:85:0e:59:cf:6e:95:87:b2:2d:44:33:
20:bd:42:1e:63:a0:b2:76:67:3b:30:89:d2:19:4b:
cc:a1:08:ee:39:7a:f0:94:7b:37:bc:25:72:a2:ea:
20:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D5:92:0B:46:BE:5D:9F:DF:37:A6:AC:93:A4:8F:5E:0E:77:F2:BE
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/AdWSC0a-XZ_fN6ask6SPXg538r4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.67.38.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:36:c1:a6:9a:39:a3:2b:16:ee:bd:a7:51:04:9c:e6:42:24:
94:24:0b:13:33:23:69:30:d2:41:34:22:ac:14:ff:0f:a1:a1:
ee:4b:34:1f:9e:4b:17:0c:98:7d:31:79:fb:c4:3c:18:55:b1:
0e:25:e1:fc:b5:27:be:86:43:6c:21:6b:a5:2e:ac:f5:e5:46:
df:a3:55:05:80:dc:5f:a1:c3:b1:26:21:96:de:06:fa:79:6d:
84:0b:5a:f9:b9:d6:59:01:c6:aa:bf:5e:ce:40:c4:6d:f9:ef:
34:9c:c4:63:07:31:7c:5e:8e:08:2d:70:0b:f7:fc:d5:40:1e:
21:88:9f:4c:44:d9:f7:7d:c7:0a:80:79:dc:bc:48:44:54:72:
68:fa:d1:47:48:9f:49:9c:d4:07:7c:f2:05:74:92:90:1c:2a:
99:5b:e9:18:8e:bf:8e:05:43:0f:5b:bd:9d:6f:69:a8:69:08:
50:d7:d1:57:12:a4:a5:6b:06:0a:af:44:15:4a:e1:13:56:a2:
ce:a4:d7:de:ed:5e:1c:bc:b7:a4:c3:6b:94:76:2f:eb:07:c8:
07:50:5e:28:2a:0f:1f:fe:84:95:9c:74:a8:f5:5c:4e:c6:1c:
67:b5:1d:a7:84:07:58:c0:ba:2b:aa:10:5b:cc:d8:a8:9a:fb:
cb:70:4c:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:11 2023 by rpki-client on console-ams.rpki-client.org