Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/5a725f-15da-4c12-86fe-9001db8d4c64/1/6GlBYYhhOTWLuYoU42mqMHklIzU.roa
File: 6GlBYYhhOTWLuYoU42mqMHklIzU.roa (raw, json)
Hash identifier: GCoJ2oPgyUbAYYd4C5Pt4gvHt58GByte+lJi5LpRXz0=
Subject key identifier: E8:69:41:61:88:61:39:35:8B:B9:8A:14:E3:69:AA:30:79:25:23:35
Certificate issuer: /CN=8452ee73277f39d24809746b7262261829b8dfe5
Certificate serial: 01022899
Authority key identifier: 84:52:EE:73:27:7F:39:D2:48:09:74:6B:72:62:26:18:29:B8:DF:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFLucyd_OdJICXRrcmImGCm43-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/5a725f-15da-4c12-86fe-9001db8d4c64/1/6GlBYYhhOTWLuYoU42mqMHklIzU.roa
Signing time: Sat 01 Jan 2022 01:53:53 +0000
ROA not before: Sat 01 Jan 2022 01:53:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 77.72.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16918681 (0x1022899)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8452ee73277f39d24809746b7262261829b8dfe5
Validity
Not Before: Jan 1 01:53:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8694161886139358bb98a14e369aa3079252335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:27:a0:32:9f:14:e3:64:1a:8d:3e:15:db:dd:
8c:db:04:02:97:2b:07:af:a7:2d:8c:c5:f0:36:2b:
63:b2:7b:67:20:c7:ea:31:b3:80:75:b8:87:75:50:
ba:13:68:93:73:64:39:e7:ab:fb:b1:23:3d:50:4b:
09:3d:35:ac:0f:31:b4:2c:e9:96:3f:8b:c2:9c:4f:
50:c7:ce:81:9d:3b:d4:28:2d:ba:2b:a2:13:17:ec:
57:34:24:e3:d7:d0:82:8a:f2:6c:43:b8:26:97:1d:
0c:15:83:4c:34:55:cb:49:7e:73:39:bd:eb:5a:51:
b2:7b:1a:c3:5a:e8:1f:5c:3a:2a:40:e8:ef:7b:90:
34:92:39:0b:0c:c6:a3:66:c1:c6:8f:c2:60:55:4b:
3a:4e:eb:a1:7b:b4:27:21:9d:29:cc:b9:8f:9b:40:
1b:68:2a:48:df:f2:c8:72:ee:d5:0d:a1:46:88:2f:
d9:13:4e:9c:64:e1:44:ef:3c:1b:80:a6:17:a4:53:
38:a3:5e:76:2e:04:c1:36:8e:9c:e7:5d:a6:0c:0c:
dd:e2:19:5c:19:27:82:1b:59:da:cb:9d:f8:b3:d5:
c4:8e:38:56:bb:16:ca:9f:da:18:42:30:83:54:19:
67:e6:95:0d:01:b6:29:4c:87:ef:f4:4a:cb:0d:d5:
52:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:69:41:61:88:61:39:35:8B:B9:8A:14:E3:69:AA:30:79:25:23:35
X509v3 Authority Key Identifier:
keyid:84:52:EE:73:27:7F:39:D2:48:09:74:6B:72:62:26:18:29:B8:DF:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFLucyd_OdJICXRrcmImGCm43-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5a725f-15da-4c12-86fe-9001db8d4c64/1/6GlBYYhhOTWLuYoU42mqMHklIzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5a725f-15da-4c12-86fe-9001db8d4c64/1/hFLucyd_OdJICXRrcmImGCm43-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.82.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:fa:dd:09:fe:c2:5a:f5:c6:ab:18:35:94:54:78:a6:26:1b:
b2:13:b4:4c:3e:12:06:2f:44:52:ae:da:3a:dc:47:10:cb:15:
ad:5c:b4:8a:e0:a2:1d:32:a3:08:3d:7b:d7:33:43:a3:7b:72:
82:f1:0a:08:58:ed:9b:d0:6e:d2:64:d5:72:9e:a0:33:c6:fb:
9c:c9:a4:b1:1f:70:65:0d:bd:69:77:58:04:91:b9:eb:4d:a0:
9c:60:1c:c2:41:db:80:e0:7e:93:78:fe:18:f4:7d:86:cf:b8:
a6:f4:0c:87:f1:61:d1:42:ff:dd:67:eb:7c:0f:eb:76:39:ca:
43:f8:1a:41:62:12:61:4b:3e:c3:8d:fc:6d:a0:97:12:9d:02:
5f:03:69:8b:bc:f9:19:42:a1:7d:ae:e7:87:55:4a:98:df:26:
f2:e5:25:0f:4b:c0:be:43:e7:40:db:d8:31:4b:87:dd:6f:c7:
06:0b:d0:22:f6:a6:c2:c2:15:29:d5:1b:97:0c:6c:5b:df:1d:
a8:7b:3e:49:df:2b:40:fa:d0:0a:34:44:90:b8:18:9a:db:79:
30:a5:87:7d:6c:3f:88:3f:43:d7:dc:5d:c7:70:63:b0:0b:41:
02:b4:e8:b0:6d:e1:78:04:31:8c:fd:99:a3:da:06:e0:41:19:
46:b1:f6:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:11 2023 by rpki-client on console-fra.rpki-client.org