Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/5mg3A_0vjwlBVTjG3BwsFtvGj4c.roa
File: 5mg3A_0vjwlBVTjG3BwsFtvGj4c.roa (raw, json)
Hash identifier: /klnSjvH/pb8I/H9Cd/78boQzhCPy0Ev1LWbH3gJZG0=
Subject key identifier: E6:68:37:03:FD:2F:8F:09:41:55:38:C6:DC:1C:2C:16:DB:C6:8F:87
Certificate issuer: /CN=e9ad14362f52569616f0fd5536c5a1a208def29d
Certificate serial: 09D62913
Authority key identifier: E9:AD:14:36:2F:52:56:96:16:F0:FD:55:36:C5:A1:A2:08:DE:F2:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6a0UNi9SVpYW8P1VNsWhogje8p0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/5mg3A_0vjwlBVTjG3BwsFtvGj4c.roa
Signing time: Fri 08 Apr 2022 14:27:53 +0000
ROA not before: Fri 08 Apr 2022 14:27:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22653
IP address blocks: 77.83.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165030163 (0x9d62913)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9ad14362f52569616f0fd5536c5a1a208def29d
Validity
Not Before: Apr 8 14:27:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6683703fd2f8f09415538c6dc1c2c16dbc68f87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6f:41:c8:dc:ce:59:73:13:1a:6a:ca:bd:ae:
24:6e:59:cf:7f:d0:41:a2:38:88:11:03:50:a9:21:
47:ba:4e:fa:d4:33:62:86:8b:3c:db:1d:47:df:9e:
1a:50:02:d7:d4:fa:e5:7a:3b:bd:71:19:31:39:dc:
92:ab:82:a5:74:78:f1:6f:06:4e:f2:fa:1b:81:cd:
c0:c3:7a:49:73:2f:a6:bb:7b:f0:03:7f:7c:8d:ff:
16:b0:89:b6:f9:e8:e6:75:10:14:6f:53:6b:46:e3:
7c:41:a1:4a:6c:5a:09:c0:d6:45:59:10:3a:23:ca:
d6:34:f2:f7:e5:b1:56:25:49:a9:25:a5:36:d4:97:
7d:e8:fd:7b:b2:b6:18:72:1f:5d:2a:a7:1f:66:fe:
68:a3:42:0f:8c:d8:a4:49:bc:e1:0a:57:79:b3:d3:
1b:b0:22:c9:34:da:23:a0:19:59:84:99:65:27:31:
93:4a:e5:59:53:da:64:4d:c6:87:6b:bc:2f:fe:e3:
9a:6c:b4:5a:63:78:b9:e8:e5:92:3c:74:87:78:0b:
69:f7:19:d5:06:17:f5:64:8e:7a:f9:f8:83:5f:a4:
f5:3c:f2:2c:d8:74:30:80:02:97:3f:f0:99:d7:cf:
c1:71:a4:0a:33:ba:60:c8:6d:69:ca:92:5a:b2:55:
61:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:68:37:03:FD:2F:8F:09:41:55:38:C6:DC:1C:2C:16:DB:C6:8F:87
X509v3 Authority Key Identifier:
keyid:E9:AD:14:36:2F:52:56:96:16:F0:FD:55:36:C5:A1:A2:08:DE:F2:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a0UNi9SVpYW8P1VNsWhogje8p0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/5mg3A_0vjwlBVTjG3BwsFtvGj4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/6a0UNi9SVpYW8P1VNsWhogje8p0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.132.0/22
Signature Algorithm: sha256WithRSAEncryption
17:bd:6f:23:1b:bf:0d:04:4d:22:0c:8c:d9:1d:a9:7c:1d:9a:
51:a4:8e:9a:41:d7:56:21:83:05:db:bc:23:6d:e3:e4:a5:7f:
02:af:aa:fc:8a:36:c4:0d:76:ee:22:a4:5a:66:6a:bc:e3:b8:
96:95:ec:e1:02:91:d7:b3:33:0e:15:3b:fa:8e:0a:6d:33:43:
77:b7:01:3a:3b:fe:75:61:7e:74:75:7e:34:b8:c3:20:86:f9:
d2:78:1b:e1:1d:e1:13:ba:08:be:49:11:2d:1b:65:16:01:ac:
fd:2a:41:fc:1b:4a:44:3e:e5:90:44:2f:d0:cf:a1:a2:3a:9e:
1f:39:fb:c4:54:2b:c2:fe:78:84:3a:e0:ab:b1:70:25:2c:ca:
2a:10:83:79:06:74:eb:67:c3:f2:cf:a9:f9:63:bf:da:d6:64:
d6:cb:42:93:4d:da:4f:33:4c:94:2c:37:68:98:fc:d4:b0:55:
de:3c:40:24:85:cc:50:7a:bb:2e:5c:48:98:c6:8c:64:35:ec:
69:d9:f2:30:86:33:42:00:29:54:dc:cb:1b:e3:8b:e9:d2:36:
0d:19:b8:97:18:ce:0b:51:7b:1f:aa:a7:31:c4:fc:5e:4f:bd:
6f:26:55:71:7d:d1:d7:45:78:0c:fa:d4:46:ea:ac:21:1c:96:
e5:1e:57:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:24 2023 by rpki-client on console-fra.rpki-client.org