Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/01e613-9bb6-44d0-8e75-90b4f2d4c556/1/nYgpIngzwCvS5Obo1FqXNw26YV8.roa
File: nYgpIngzwCvS5Obo1FqXNw26YV8.roa (raw, json)
Hash identifier: VjeQ3lxlBQ93e+SlldZq+HgNGe2iZnv6GUlTG/ea2pI=
Subject key identifier: 9D:88:29:22:78:33:C0:2B:D2:E4:E6:E8:D4:5A:97:37:0D:BA:61:5F
Certificate issuer: /CN=263c3507760c5b82951a307cef932b0a4d36b363
Certificate serial: 01AD0B93
Authority key identifier: 26:3C:35:07:76:0C:5B:82:95:1A:30:7C:EF:93:2B:0A:4D:36:B3:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jjw1B3YMW4KVGjB875MrCk02s2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/01e613-9bb6-44d0-8e75-90b4f2d4c556/1/nYgpIngzwCvS5Obo1FqXNw26YV8.roa
Signing time: Sat 01 Jan 2022 03:55:45 +0000
ROA not before: Sat 01 Jan 2022 03:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35041
IP address blocks: 77.232.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28117907 (0x1ad0b93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=263c3507760c5b82951a307cef932b0a4d36b363
Validity
Not Before: Jan 1 03:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d8829227833c02bd2e4e6e8d45a97370dba615f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8f:b0:cd:3c:1e:9f:1b:88:81:3b:f4:6a:97:
88:84:57:55:3f:fd:98:4d:25:64:6d:e7:3e:d3:82:
10:21:c7:e2:43:98:d8:18:23:99:fa:2f:c6:3e:32:
5e:35:a8:e9:81:c0:f7:42:45:9a:35:f1:42:bb:ed:
76:62:ce:5a:4d:03:57:e3:fc:ab:da:49:7e:f2:5e:
fe:66:97:12:07:2c:97:91:55:71:3a:87:55:e4:3c:
d6:e4:42:15:5d:bf:44:dc:75:30:f1:45:d5:1a:66:
3f:c5:3e:13:23:4d:24:65:1e:f3:65:2a:fb:32:0b:
95:d8:74:19:f6:8d:f7:d7:b8:60:27:52:5f:19:37:
fc:74:f7:8c:bd:2e:2c:79:b7:c2:f7:54:c8:9e:60:
b7:42:cd:6c:22:0d:02:73:8f:f9:5c:b3:a2:bb:c9:
e7:42:4e:b1:c7:2d:a4:90:38:80:55:94:43:40:a5:
c0:ee:5b:d1:3c:cb:eb:6c:a9:42:4c:68:15:09:ff:
81:2d:03:3c:81:77:a9:0c:f6:76:37:39:3d:2f:70:
7e:75:94:94:db:b9:b3:4f:fd:d5:fa:3e:45:14:a0:
9a:45:0e:16:2f:81:17:6d:a2:d7:0b:e5:50:eb:ef:
94:49:18:bc:43:4f:a5:1f:fd:12:01:85:ec:82:c6:
8f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:88:29:22:78:33:C0:2B:D2:E4:E6:E8:D4:5A:97:37:0D:BA:61:5F
X509v3 Authority Key Identifier:
keyid:26:3C:35:07:76:0C:5B:82:95:1A:30:7C:EF:93:2B:0A:4D:36:B3:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jjw1B3YMW4KVGjB875MrCk02s2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/01e613-9bb6-44d0-8e75-90b4f2d4c556/1/nYgpIngzwCvS5Obo1FqXNw26YV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/01e613-9bb6-44d0-8e75-90b4f2d4c556/1/Jjw1B3YMW4KVGjB875MrCk02s2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.232.64.0/19
Signature Algorithm: sha256WithRSAEncryption
2a:29:bd:8b:0b:01:0e:7f:26:49:53:19:67:59:6b:50:98:40:
78:18:e1:67:f0:1c:74:41:13:be:be:0f:88:91:96:20:05:af:
89:57:db:b3:6c:d2:ac:eb:da:74:29:1f:ec:b7:fe:81:4b:59:
9a:6a:5a:c4:a5:a3:f9:bb:db:1d:05:53:ef:80:16:2f:d1:b0:
a9:0d:04:d2:6f:00:98:57:5a:5d:e5:65:1d:92:27:b8:48:aa:
b3:8b:c9:77:cc:c5:37:2e:26:90:7d:96:ca:9e:40:18:c7:33:
b5:48:fa:22:24:02:31:9c:85:53:86:9f:0d:52:07:6d:0f:4f:
79:27:ba:74:9c:35:cb:3d:5e:a3:21:3c:2d:2b:8a:41:53:24:
e3:99:ea:4c:8c:6c:32:99:8d:9c:9d:d2:a3:98:41:af:f3:84:
56:8b:0f:1f:32:4e:7d:8f:fc:c7:91:6b:53:31:0c:ba:3b:fa:
85:99:b0:75:d6:ba:7c:39:78:1d:c6:ad:67:20:38:8b:ea:70:
ae:9f:f1:e4:5a:ff:96:14:af:be:bb:f1:2f:ff:ce:2a:7a:35:
11:87:c4:a5:8a:0c:0a:b6:b0:8e:fb:1c:e9:15:20:7f:e6:8d:
79:e5:79:75:a0:52:91:68:4e:9b:22:d6:c2:7a:e1:3f:d3:a0:
bf:f2:37:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:45 2023 by rpki-client on console-fra.rpki-client.org