Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/HLp-XKGF7gBRYdKcVmrjg8vkj5M.roa
File: HLp-XKGF7gBRYdKcVmrjg8vkj5M.roa (raw, json)
Hash identifier: x3Q/I9lYt/TGxmWFtiomgjZxMKA+z1a4ts6oeg/6wR0=
Subject key identifier: 1C:BA:7E:5C:A1:85:EE:00:51:61:D2:9C:56:6A:E3:83:CB:E4:8F:93
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 0559686E
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/HLp-XKGF7gBRYdKcVmrjg8vkj5M.roa
Signing time: Thu 10 Feb 2022 12:16:55 +0000
ROA not before: Thu 10 Feb 2022 12:16:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50386
IP address blocks: 77.73.130.0/24 maxlen: 24
77.73.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89745518 (0x559686e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Feb 10 12:16:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cba7e5ca185ee005161d29c566ae383cbe48f93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cc:4e:1b:80:94:68:a8:6d:57:32:9a:5a:cd:
e7:c0:2c:f2:15:02:ba:18:91:35:b0:4e:8f:46:11:
39:37:2f:8e:66:f7:60:1c:8b:2b:56:ff:6c:48:1d:
b1:24:1d:34:0d:8d:01:c8:50:95:1e:37:5b:c9:95:
f2:7e:f6:ba:aa:be:ea:48:ef:6a:6e:db:22:fc:d6:
c6:38:0f:db:52:6d:a6:00:70:c3:ad:e9:1b:a9:6f:
ad:96:82:14:96:f6:a1:f0:f3:1e:ab:1d:f9:b7:1c:
1f:b3:2f:ed:a7:42:89:2a:04:8b:58:ce:57:2d:d4:
d0:c8:4e:0e:bb:87:ae:8b:bf:8e:48:c2:46:7c:23:
b7:70:ae:e1:21:69:e8:d2:78:6b:3f:01:1b:bf:34:
87:27:b4:bb:59:7c:3e:ac:ee:85:2f:57:35:50:2a:
5d:36:8e:31:ca:24:32:37:8c:0b:53:96:f1:56:ac:
af:d7:7c:12:eb:4b:99:c8:c9:e2:24:85:21:7f:34:
ea:f2:6f:76:05:88:05:72:8e:e8:24:fd:7e:85:aa:
65:c9:4d:1c:f0:c1:77:89:78:f7:40:82:44:c1:c1:
5b:4c:8f:a4:81:95:5d:f7:9a:e5:b8:0b:95:83:3e:
7c:fb:12:29:27:c1:2a:42:aa:dd:99:3a:ec:8a:c7:
76:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:BA:7E:5C:A1:85:EE:00:51:61:D2:9C:56:6A:E3:83:CB:E4:8F:93
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/HLp-XKGF7gBRYdKcVmrjg8vkj5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.130.0/24
77.73.135.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:4d:e3:f3:82:a4:3f:d2:11:3c:7a:38:fe:27:94:fa:5e:24:
1a:d5:41:4a:9c:b7:78:cd:35:f6:87:02:87:72:e9:07:1b:ef:
66:6e:37:cd:c0:23:27:21:0d:a7:0a:3b:d2:04:8e:12:c9:3b:
26:a2:7a:6e:54:0c:12:1c:92:44:c7:ce:cd:b2:aa:93:b4:e0:
18:4d:5f:24:39:6f:d0:19:8c:60:0b:4a:43:02:9d:a7:fc:00:
55:12:3c:9a:cb:2b:c4:be:ba:8d:e8:c3:f4:45:6d:b4:a4:10:
36:88:cf:f8:c1:d4:d0:d2:17:f2:9d:9a:2d:ec:d9:ab:0f:7f:
8c:9a:0a:cb:32:bd:a7:e0:bb:3d:8e:54:9e:81:89:e7:45:49:
4c:94:72:33:54:44:7d:b2:7e:92:af:96:f4:b0:9f:eb:5a:30:
ef:63:5b:80:b7:04:25:68:d9:a9:b7:2e:57:68:35:c3:ea:76:
0b:26:ec:32:34:26:37:ce:67:b7:74:d8:6f:10:5e:a8:dd:23:
4a:d9:e4:0f:0c:03:d2:94:78:d2:a8:7b:b3:47:76:aa:9f:78:
ea:ec:0f:c3:a2:00:63:37:6f:34:15:e5:f9:b0:cc:cc:1a:82:
f5:f0:37:c2:9f:cd:47:fe:2b:c6:d9:24:fc:9c:e1:f9:1e:7a:
36:9e:d7:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:36 2023 by rpki-client on console-ams.rpki-client.org