Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Vh43HjI-IL-GgkFfOHapw0HCypw.roa
File: Vh43HjI-IL-GgkFfOHapw0HCypw.roa (raw, json)
Hash identifier: iwh3EVkdL8UKAqa6uYHxRS7z9W5upKNuEI4jANl5rsU=
Subject key identifier: 56:1E:37:1E:32:3E:20:BF:86:82:41:5F:38:76:A9:C3:41:C2:CA:9C
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 08FFCEBA
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Vh43HjI-IL-GgkFfOHapw0HCypw.roa
Signing time: Sat 01 Jan 2022 15:02:59 +0000
ROA not before: Sat 01 Jan 2022 15:02:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8001
IP address blocks: 77.67.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150982330 (0x8ffceba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 1 15:02:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=561e371e323e20bf8682415f3876a9c341c2ca9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:77:c6:a1:0c:a0:9a:07:6b:62:c8:f2:fe:33:
f5:61:2b:19:0d:64:0d:d6:10:cd:a1:d2:f6:19:58:
82:7e:a6:dc:8f:75:16:48:4a:11:40:6c:be:9d:ed:
78:25:71:e1:b3:4f:26:1b:7a:bd:5a:ee:9c:31:b4:
a3:31:fd:ea:96:8b:2b:27:3e:64:d4:46:be:1e:4f:
44:4f:0b:87:91:f4:ea:1a:9c:c7:45:f8:44:4d:d5:
a0:87:e0:27:a4:fd:ab:ac:d8:c5:4b:04:80:6d:41:
41:1c:5c:15:3f:74:6c:c4:bc:fd:c1:a3:b9:42:4f:
fb:d7:e2:c5:6b:1e:15:0c:0c:8e:14:22:0b:c3:0a:
f7:dc:96:c1:0a:ac:98:84:80:98:a3:4e:cc:38:8d:
d5:3f:46:56:35:94:d8:05:13:4c:78:ad:59:4f:ff:
ba:6c:82:01:e9:a3:db:c6:0a:b7:3c:7a:df:4a:a9:
36:ab:8a:aa:d3:c0:c6:4c:e8:c4:8a:75:d1:28:b7:
07:bf:f2:a2:69:1e:cd:46:8f:c8:78:6a:fc:8b:94:
c1:ec:7c:97:2f:59:97:8e:92:da:eb:91:10:31:9a:
31:d8:b4:6f:11:a1:71:53:05:b4:14:28:2e:fe:a3:
64:40:3d:d7:b6:0a:87:bb:0a:94:a8:65:42:2c:96:
96:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1E:37:1E:32:3E:20:BF:86:82:41:5F:38:76:A9:C3:41:C2:CA:9C
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/Vh43HjI-IL-GgkFfOHapw0HCypw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.67.101.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:36:bc:09:e8:d2:4d:ad:7c:51:4e:bc:49:55:b7:91:0f:54:
5e:87:29:6b:ed:e4:8b:ff:a6:6d:98:37:8c:51:4f:03:cd:c3:
7d:d8:d9:d3:ab:b3:08:ba:20:c6:d9:81:c4:a5:3d:28:14:32:
4a:6b:df:6e:b2:58:81:98:29:8e:68:76:3e:c8:f7:ee:e8:14:
41:f5:bf:43:d9:f3:37:e0:39:03:8f:fc:57:35:0b:df:5f:d7:
4e:ed:7a:f2:7c:dc:4c:e7:64:44:19:b2:92:86:4f:af:27:72:
20:4f:04:25:68:d1:dd:13:82:05:e3:c3:df:98:8c:45:14:9b:
4f:a3:05:18:63:d4:32:35:69:59:40:7d:73:cb:57:5f:fe:0d:
c3:6e:6e:0e:5c:7c:fc:d3:9b:60:1b:7c:1d:8f:3f:ff:3a:9f:
e1:cc:a8:d8:4e:3b:be:4d:8c:47:17:89:d7:1c:fd:0a:06:cc:
56:f9:af:44:91:ba:47:53:40:a2:37:b9:49:9e:e8:e6:67:e4:
b1:2a:49:19:d7:9b:f1:cb:1b:d5:05:29:aa:5f:3a:ff:b8:a0:
c7:e5:de:de:74:e3:dd:ca:ce:9f:4f:d6:a8:90:5b:cc:24:c4:
8b:c9:ba:a8:84:d6:9f:ed:7e:b1:1d:ac:ef:c2:21:18:48:b4:
41:75:14:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:11 2023 by rpki-client on console-ams.rpki-client.org