Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/fiI4ogBwWWG2b5V0r_9Q8JfHdq4.roa
File: fiI4ogBwWWG2b5V0r_9Q8JfHdq4.roa (raw, json)
Hash identifier: ajbr3kcT9bcNE/x2pGl9281GEG3TIpv1g4fIyV2TZsU=
Subject key identifier: 7E:22:38:A2:00:70:59:61:B6:6F:95:74:AF:FF:50:F0:97:C7:76:AE
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 01833AF4CAA968DDC64CC2C7ED78660F169E
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/fiI4ogBwWWG2b5V0r_9Q8JfHdq4.roa
Signing time: Wed 14 Sep 2022 07:44:24 +0000
ROA not before: Wed 14 Sep 2022 07:44:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57428
IP address blocks: 77.73.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3a:f4:ca:a9:68:dd:c6:4c:c2:c7:ed:78:66:0f:16:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Sep 14 07:44:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e2238a200705961b66f9574afff50f097c776ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:82:56:fc:22:e3:ce:9a:75:1e:67:9e:30:28:
da:17:f3:8c:82:6a:9e:27:e4:f6:67:22:79:5f:82:
b5:cf:4d:96:73:6b:a3:47:39:c3:ec:dd:fe:15:3f:
da:54:0e:f3:fd:2a:96:17:cb:1f:b8:9b:31:17:9f:
8e:42:ab:fa:9c:6c:4a:a2:6d:66:67:07:b7:b1:d0:
87:c8:f3:94:b8:08:48:a4:21:82:09:5f:73:d7:b8:
e0:81:3f:3b:83:fe:df:70:f3:0b:ea:db:70:0b:83:
f0:1f:98:d1:26:c3:2a:41:55:b4:1c:f1:71:55:d1:
4c:6c:a4:54:f5:b7:1d:51:74:fa:78:19:f7:e5:c7:
48:f6:2f:14:d9:70:f5:b5:91:3f:c3:0a:a9:09:fe:
81:75:83:ef:1f:43:62:d2:a0:56:b1:f0:48:4d:5a:
02:34:95:9e:50:dc:59:74:59:90:12:40:b9:10:c5:
a5:2e:11:71:21:da:18:9f:6f:fc:80:14:a9:e1:d2:
7b:36:45:16:c4:e3:01:92:9e:8e:a5:d6:d9:45:3e:
0f:3b:e1:5e:ba:66:6d:85:e5:82:f3:a6:b0:af:42:
d4:b5:df:72:07:15:61:b3:fd:b3:6f:93:24:88:29:
73:56:bf:6d:b0:45:85:56:a7:85:2a:fa:6c:85:25:
1f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:22:38:A2:00:70:59:61:B6:6F:95:74:AF:FF:50:F0:97:C7:76:AE
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/fiI4ogBwWWG2b5V0r_9Q8JfHdq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.129.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:81:87:0a:cf:00:3f:e5:2f:7c:83:c6:1f:1f:7c:02:0d:23:
f1:16:40:02:a1:02:d2:49:21:ba:c1:5a:73:e7:8e:c8:3c:9e:
b6:e7:ad:a1:df:d1:0d:bc:3a:49:3e:56:f3:d7:e8:83:07:bd:
2e:83:47:c2:18:f8:ac:89:08:0c:73:90:a4:c2:72:a3:d4:54:
cd:9e:7a:5d:b7:f7:cf:9c:2a:eb:63:32:4b:02:ef:3b:3a:25:
99:38:f7:55:8f:8c:f6:32:2b:c7:c9:d8:1f:11:6a:f3:b0:73:
e7:7e:c9:c4:e0:84:b5:c1:8c:9d:37:88:4f:94:b0:2e:11:3e:
ed:28:c3:a5:26:af:94:6c:f5:05:d3:26:4b:94:85:e1:ec:45:
79:d3:e7:50:6b:79:f5:98:df:cc:4a:a7:e8:c8:dd:57:4c:b3:
94:7d:40:9c:4c:9a:21:0d:94:00:29:1e:2a:95:51:ba:82:bf:
8d:28:8f:48:7b:07:76:eb:e6:16:d8:31:19:3b:7e:6f:ff:1e:
a1:49:87:04:4a:c4:50:ea:a5:5a:6b:84:93:82:dc:10:41:0e:
65:c5:a5:09:94:9d:e8:fd:48:95:ae:f6:cf:34:6c:4c:c4:5e:
db:dd:f1:fb:70:39:8c:bc:e6:9b:59:db:b2:d2:38:4c:35:31:
6f:0d:9b:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:37 2023 by rpki-client on console-ams.rpki-client.org