Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/1-Wt9_Wnmg2s3CQzod7IHviDJAQs.roa
File: 1-Wt9_Wnmg2s3CQzod7IHviDJAQs.roa (raw, json)
Hash identifier: YMouU2NZl6IGBiNDrEE68eMHqTxPQFV4xQAfC53Jvg8=
Subject key identifier: F9:6B:7D:FD:69:E6:83:6B:37:09:0C:E8:77:B2:07:BE:20:C9:01:0B
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 0183A1B261A3657A98103451B2205B739DEB
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/1-Wt9_Wnmg2s3CQzod7IHviDJAQs.roa
Signing time: Tue 04 Oct 2022 06:32:45 +0000
ROA not before: Tue 04 Oct 2022 06:32:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207967
IP address blocks: 77.73.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a1:b2:61:a3:65:7a:98:10:34:51:b2:20:5b:73:9d:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Oct 4 06:32:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f96b7dfd69e6836b37090ce877b207be20c9010b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:31:b6:9d:4b:12:d7:f5:d0:81:b8:5a:80:a5:
68:fd:ce:89:6c:20:71:37:7a:bc:c4:6b:b3:07:c3:
a7:ae:7c:89:43:0a:83:ee:e2:18:0a:85:b9:8b:42:
2f:94:d0:5f:d8:c1:78:e4:9e:e2:7d:66:6f:a2:41:
c4:f8:96:57:72:63:f1:5e:93:5a:d6:ab:d3:af:a3:
f3:84:21:5d:d1:41:99:e9:de:c3:d4:b9:a0:11:1d:
30:29:c9:75:1a:65:37:2f:f0:8d:87:84:35:ad:53:
c2:63:e6:28:43:7a:12:68:b7:4c:b0:64:3c:28:19:
51:96:1e:b4:db:a7:9d:bb:f7:92:a3:8d:c3:d3:07:
e6:3c:9c:70:f9:cd:39:fc:21:b5:ad:5a:ed:1b:bd:
56:ad:85:55:23:60:7e:8e:5f:82:38:dd:4e:6a:47:
70:4b:15:fb:4c:c4:27:b5:e1:64:fd:d4:e6:87:70:
5e:8a:ed:ac:b2:59:fa:df:c9:c7:f2:fb:1a:0d:64:
be:51:34:45:5a:c7:8c:82:98:11:9f:9a:99:3b:c7:
a6:74:83:ae:9e:f3:77:b8:34:cc:92:71:5c:0d:e7:
2d:fa:b7:6d:0e:2d:2e:eb:30:6f:b9:46:e6:7c:73:
c1:a0:3b:0e:b4:fc:af:1c:03:2a:3c:33:6d:76:5d:
cf:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:6B:7D:FD:69:E6:83:6B:37:09:0C:E8:77:B2:07:BE:20:C9:01:0B
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/1-Wt9_Wnmg2s3CQzod7IHviDJAQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.129.0/24
Signature Algorithm: sha256WithRSAEncryption
72:8f:12:ae:8a:8c:22:5a:10:88:9c:a8:32:55:65:63:91:2f:
fd:2b:cd:35:83:40:e5:f1:ce:e7:07:84:d2:3c:26:01:0a:3d:
82:f3:b7:a5:db:ba:9d:e0:72:2c:40:92:1b:19:8b:0d:dd:98:
23:a2:88:ca:9f:27:d2:fb:98:0d:af:42:8f:93:86:ae:f1:63:
20:10:c2:39:1e:03:9b:96:bc:ac:61:87:b4:8c:4f:be:b4:ea:
56:4b:9e:74:48:0c:7b:68:10:5b:05:8d:34:c8:10:ef:db:e2:
7b:f1:ce:e8:e3:e3:0e:3a:fc:30:62:6b:44:f5:36:f7:75:b4:
a9:bd:92:6a:79:f2:0d:db:43:3a:62:e0:71:3f:31:3f:5f:05:
07:11:61:56:95:25:ff:ed:ac:49:99:a6:c6:a2:b8:19:d5:8e:
86:dd:6b:65:53:fb:6c:7d:39:01:f0:24:fd:fe:c3:1c:49:c0:
f8:bf:df:1a:f1:46:1b:25:a2:fb:2d:74:26:01:1c:40:a1:4c:
03:3d:6f:52:57:ae:ea:ef:ff:f3:5e:25:95:38:91:6f:f3:60:
a5:00:a2:27:eb:3c:55:2c:28:9c:f2:fc:25:fb:d1:24:9d:20:
71:ce:3c:2d:a0:0a:8f:a3:7f:08:94:16:e1:72:27:43:f5:e4:
d3:c8:3a:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:18 2024 by rpki-client on console-ams.rpki-client.org