Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/HP2tMhzoK5fFTJnsr1IcOuTrgYo.roa
File: HP2tMhzoK5fFTJnsr1IcOuTrgYo.roa (raw, json)
Hash identifier: E4Ys1ZYkiMEIOLLZ0KSjyOw4na1/SyNoVY08XwrK7eI=
Subject key identifier: 1C:FD:AD:32:1C:E8:2B:97:C5:4C:99:EC:AF:52:1C:3A:E4:EB:81:8A
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 04F27A65
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/HP2tMhzoK5fFTJnsr1IcOuTrgYo.roa
Signing time: Sat 01 Jan 2022 00:55:51 +0000
ROA not before: Sat 01 Jan 2022 00:55:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 77.73.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82999909 (0x4f27a65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Jan 1 00:55:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cfdad321ce82b97c54c99ecaf521c3ae4eb818a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:47:03:b0:59:66:69:ee:af:40:84:6b:c4:21:
0a:6f:a4:c9:fa:07:5e:e6:98:cc:7e:a9:f2:7d:55:
90:8a:19:5b:0d:de:ed:48:29:a5:63:80:7f:ff:65:
13:d9:fc:21:95:cd:87:60:a3:65:da:86:fc:7e:ca:
13:b1:1a:2c:2b:d6:fb:78:a1:e5:8d:98:00:0d:36:
4c:01:24:87:05:79:9e:9a:eb:8e:c2:7c:ef:e3:7e:
95:b6:b3:8c:be:a4:79:b0:36:2f:29:11:84:e1:fb:
63:4e:89:d6:8b:e2:40:f2:3a:29:30:fc:ca:b6:e5:
a4:d0:71:54:c0:77:35:e9:4e:bb:ae:d6:02:be:20:
74:09:06:f3:12:f2:f6:13:ae:69:5b:30:89:31:cc:
84:7a:9f:06:cb:05:b9:94:aa:ec:55:6b:29:42:e9:
92:95:f2:c9:21:f9:b7:9e:75:79:5f:8e:d8:16:5b:
5d:7c:aa:16:8f:4e:3c:e9:fc:02:c0:ba:e3:eb:15:
0d:e6:e7:05:a8:6a:7c:17:cf:bc:e3:10:e2:76:bd:
fa:61:90:11:51:bd:df:1e:3f:54:58:d9:e3:f6:00:
d6:5f:4b:67:de:2a:f6:2c:2e:a0:75:dd:82:9c:4c:
6f:a3:cf:fa:d1:14:32:32:59:b3:a2:2a:94:9b:12:
f8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:FD:AD:32:1C:E8:2B:97:C5:4C:99:EC:AF:52:1C:3A:E4:EB:81:8A
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/HP2tMhzoK5fFTJnsr1IcOuTrgYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.132.0/24
Signature Algorithm: sha256WithRSAEncryption
21:15:1b:44:75:ad:d9:0b:cd:41:4e:80:9e:27:5e:94:d4:0b:
e5:42:5f:68:a4:ba:68:b3:24:bd:65:73:2b:92:67:cb:4d:1e:
7a:a4:6e:fb:e2:c8:9b:41:0a:dc:b1:9e:30:43:a6:62:2d:31:
33:8c:c7:14:7a:07:96:ab:f2:89:8a:ac:d1:42:66:39:3b:f5:
e2:af:33:e2:3f:2d:99:07:dd:54:e6:da:19:c4:ef:ad:bb:17:
03:5d:02:c7:03:66:92:ca:2a:26:66:ae:e0:37:18:34:0e:22:
e0:0f:4f:43:7b:ff:60:3d:b6:90:1d:df:0e:4a:a3:fb:1b:04:
f6:8f:0c:c2:7e:37:eb:a9:88:fe:22:6d:82:b0:e6:30:6a:62:
2d:2d:ca:d5:98:c2:c8:53:82:4c:52:e7:20:1a:3f:c5:95:69:
d8:b8:c4:e9:9a:a0:3f:f8:7d:c2:a9:f2:40:c8:18:9c:89:20:
a9:01:f4:0f:a9:1f:66:24:6b:09:c5:ce:08:6e:68:94:f6:94:
d2:99:7e:12:e0:5c:43:a7:76:f7:6f:fa:28:5b:ec:4f:a4:4a:
00:8e:f9:b2:84:50:5b:b2:b9:9d:e2:b5:42:00:6f:92:b0:61:
9e:37:3c:1e:ff:3c:8e:ee:1e:a5:9e:8c:37:24:bf:a2:5d:65:
7e:61:84:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:18 2024 by rpki-client on console-ams.rpki-client.org