Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/GCkqNXDqVqTEYS3lNyFdQbpXrV4.roa
File: GCkqNXDqVqTEYS3lNyFdQbpXrV4.roa (raw, json)
Hash identifier: vVc1aKR5VpWKx/K0XP+HheLoANOIrzZnNuIu4pVXMe8=
Subject key identifier: 18:29:2A:35:70:EA:56:A4:C4:61:2D:E5:37:21:5D:41:BA:57:AD:5E
Certificate issuer: /CN=e9ad14362f52569616f0fd5536c5a1a208def29d
Certificate serial: 09B20E94
Authority key identifier: E9:AD:14:36:2F:52:56:96:16:F0:FD:55:36:C5:A1:A2:08:DE:F2:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6a0UNi9SVpYW8P1VNsWhogje8p0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/GCkqNXDqVqTEYS3lNyFdQbpXrV4.roa
Signing time: Tue 22 Mar 2022 20:55:00 +0000
ROA not before: Tue 22 Mar 2022 20:55:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57674
IP address blocks: 77.83.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162664084 (0x9b20e94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9ad14362f52569616f0fd5536c5a1a208def29d
Validity
Not Before: Mar 22 20:55:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18292a3570ea56a4c4612de537215d41ba57ad5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:22:7a:ad:ce:a2:58:a7:53:0c:5a:66:a8:20:
a8:1a:09:9e:2a:4f:76:34:7e:e4:46:66:3a:0b:0e:
2d:d4:d2:d5:0a:5e:50:4d:18:db:ff:cb:19:fc:0b:
87:e4:43:c0:43:64:f5:59:26:ea:4d:c1:bf:3f:89:
29:60:cd:16:d9:bb:93:5e:fe:b7:9f:d9:d1:1c:fa:
ce:0f:c9:b0:00:3a:14:a3:f6:ef:06:db:92:f4:ad:
10:f4:68:1c:d1:3a:37:48:0d:97:d1:c3:d3:ac:23:
91:be:d4:e7:4d:33:c4:b2:57:e4:cc:c7:50:5e:96:
8e:f6:5b:b1:08:1a:5d:7e:07:2c:12:d9:5b:22:0a:
82:d0:7a:32:85:ef:96:b4:8b:5d:2d:13:cd:ba:66:
00:24:ba:3b:3b:c7:04:2d:71:0d:bd:51:66:3d:ac:
12:85:15:09:90:db:c4:7c:b8:c6:9d:59:36:22:82:
70:ca:92:0a:c4:75:a8:ac:1f:83:48:16:62:de:a6:
8a:25:e0:f9:29:10:e9:6f:75:1a:de:38:b8:53:e5:
88:6a:d9:6f:32:db:b8:21:6f:fa:8e:a1:49:81:0c:
62:ca:33:41:ec:57:7b:f6:c2:f7:08:e6:24:39:aa:
b7:f8:7e:71:34:f2:24:b3:79:6a:33:d5:ca:a1:12:
de:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:29:2A:35:70:EA:56:A4:C4:61:2D:E5:37:21:5D:41:BA:57:AD:5E
X509v3 Authority Key Identifier:
keyid:E9:AD:14:36:2F:52:56:96:16:F0:FD:55:36:C5:A1:A2:08:DE:F2:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a0UNi9SVpYW8P1VNsWhogje8p0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/GCkqNXDqVqTEYS3lNyFdQbpXrV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/6a0UNi9SVpYW8P1VNsWhogje8p0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.132.0/22
Signature Algorithm: sha256WithRSAEncryption
47:a1:cd:45:fd:2b:9f:aa:d2:3d:2f:ba:f0:06:1d:22:54:ae:
46:d9:ba:b1:d5:0f:60:89:f2:d3:75:83:d4:3e:71:ef:0a:10:
69:4c:97:b1:df:44:24:f1:54:34:df:1e:aa:7a:04:fe:03:7c:
74:f5:72:20:ee:75:8d:61:27:96:0d:a9:50:5b:71:42:b8:97:
d8:c4:6e:1c:86:98:56:0e:67:31:9b:7a:3d:bb:a1:38:02:51:
73:fc:39:a3:44:1c:21:26:dd:dd:90:ed:dd:ad:c4:06:40:e7:
e1:1f:8d:c2:be:29:92:91:4e:4a:ac:f0:d0:a4:9d:b3:c9:2e:
76:13:e0:d7:57:9e:d0:30:fe:42:8f:b3:cf:a4:fe:8d:c1:8a:
44:81:ee:81:66:4b:68:a9:8e:6d:89:de:9d:f4:df:0f:73:3b:
44:04:92:0f:a0:5c:d9:22:f6:b3:a1:a7:a6:84:54:26:03:f7:
85:10:1e:dd:21:5d:50:d3:a3:e7:93:86:4e:20:28:c0:69:57:
ba:2d:6e:4e:a1:f6:4b:0e:47:de:55:67:0a:2e:20:48:04:e3:
e3:37:1b:4e:f1:d1:d9:7c:3e:8c:6c:48:5f:4a:12:19:82:d0:
74:04:0f:aa:14:fc:5e:eb:e4:9f:b7:bc:4d:53:6b:c3:4f:38:
2b:3e:f9:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:24 2023 by rpki-client on console-fra.rpki-client.org