Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/5xeN9ff9gBA056fqS2_zt_DcrrM.roa
File: 5xeN9ff9gBA056fqS2_zt_DcrrM.roa (raw, json)
Hash identifier: 1QV1vWjcZCswe5qG9FU2i4whU6BVLA4kMbMpdpOsylo=
Subject key identifier: E7:17:8D:F5:F7:FD:80:10:34:E7:A7:EA:4B:6F:F3:B7:F0:DC:AE:B3
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 04FE1E32
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/5xeN9ff9gBA056fqS2_zt_DcrrM.roa
Signing time: Thu 21 Apr 2022 08:33:07 +0000
ROA not before: Thu 21 Apr 2022 08:33:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34854
IP address blocks: 77.73.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83762738 (0x4fe1e32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Apr 21 08:33:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7178df5f7fd801034e7a7ea4b6ff3b7f0dcaeb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b9:21:03:b4:ae:2a:6c:6a:78:c2:27:e7:dd:
75:e1:60:d7:38:41:bb:8f:fd:ca:62:d4:56:10:55:
ef:81:54:ee:35:5f:58:1f:37:d3:7f:1a:f3:cb:34:
fb:96:32:6b:8f:41:9c:e9:9b:4e:63:34:7b:39:04:
06:c3:f6:3a:c8:4f:ac:68:7d:e3:a5:86:aa:8f:d0:
64:51:22:d6:b8:ed:00:fa:73:b3:f3:21:ec:67:28:
be:f5:ca:97:19:24:f2:62:28:36:7d:a3:46:ff:4b:
06:97:1d:a1:27:42:cc:ab:06:2f:e5:da:61:45:cd:
ba:fa:56:89:47:e9:ca:a7:56:57:b7:5d:fb:f4:e6:
1c:aa:77:5f:36:c3:a8:22:9c:37:9b:76:df:ce:f0:
f9:11:93:a2:7a:a5:08:7a:0d:7f:48:f2:f2:c5:e1:
49:8c:aa:91:ca:e0:7d:13:6d:77:f3:9b:44:cb:68:
db:22:bf:94:23:f3:f8:c0:94:2f:44:b7:25:5d:4e:
c9:72:10:c9:92:12:2f:91:2c:cc:d9:94:9a:da:f3:
6e:e4:0d:56:eb:b9:5b:49:74:33:8d:bb:9d:5f:48:
71:b5:f0:40:67:63:48:b9:31:fb:7e:c7:ea:62:56:
dc:50:e2:96:5e:96:cd:a6:18:9f:30:24:92:f5:15:
44:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:17:8D:F5:F7:FD:80:10:34:E7:A7:EA:4B:6F:F3:B7:F0:DC:AE:B3
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/5xeN9ff9gBA056fqS2_zt_DcrrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.35.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:83:c2:8c:1a:a4:2f:66:8d:14:49:e6:ba:9d:75:c6:92:5e:
bb:aa:3b:4a:eb:11:21:18:01:e1:ee:b0:a9:0f:1a:e6:ed:cd:
c6:df:1a:12:4b:40:58:91:a5:c8:fd:cf:43:6f:59:e5:36:73:
a4:86:94:67:ac:74:d6:cc:25:6a:89:26:fe:45:c6:66:cb:7d:
84:0a:80:ba:2a:69:5d:f9:ec:f0:c5:55:92:cb:98:a9:58:d0:
56:13:2e:91:ab:b5:1c:55:6f:fe:34:8b:e2:a4:51:f0:94:91:
dc:cd:b5:b8:98:1c:dd:ed:58:63:df:61:e6:c4:a0:96:88:1b:
cf:a4:70:03:28:5d:59:1b:b7:99:34:b7:04:a9:1a:72:39:19:
91:81:6c:e8:1a:e7:66:46:a3:78:bd:5b:db:b7:89:ae:34:22:
69:b0:36:32:85:75:93:d6:d9:9f:84:f8:1b:2a:09:46:20:84:
a9:28:56:5f:a8:06:be:c6:11:5b:35:1d:f1:b6:e0:85:4c:fc:
34:9d:ef:2f:67:ec:b8:55:60:8f:ad:fe:57:77:49:e4:3e:80:
2f:2f:59:e7:34:0c:88:85:28:1e:4a:a2:39:9d:87:ff:ac:16:
43:58:68:08:64:fc:ae:73:e1:3b:10:75:a6:a6:b7:d4:49:8c:
72:f2:08:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:28 2023 by rpki-client on console-ams.rpki-client.org