Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/RYaRI3uhBvMkNnxgoWa-zYyQle0.roa
File: RYaRI3uhBvMkNnxgoWa-zYyQle0.roa (raw, json)
Hash identifier: ZV970JldxNdcxmeiewb7LJEt/TZrIAIvb4aYAunMufQ=
Subject key identifier: 45:86:91:23:7B:A1:06:F3:24:36:7C:60:A1:66:BE:CD:8C:90:95:ED
Certificate issuer: /CN=1a2a4bfd2c0c69765a8299ef74965f862a7148b7
Certificate serial: 0184ECC9374ACC394DC9F3AAE55A2667C2DD
Authority key identifier: 1A:2A:4B:FD:2C:0C:69:76:5A:82:99:EF:74:96:5F:86:2A:71:48:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GipL_SwMaXZagpnvdJZfhipxSLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/RYaRI3uhBvMkNnxgoWa-zYyQle0.roa
Signing time: Wed 07 Dec 2022 13:32:00 +0000
ROA not before: Wed 07 Dec 2022 13:32:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41176
IP address blocks: 212.76.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ec:c9:37:4a:cc:39:4d:c9:f3:aa:e5:5a:26:67:c2:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a2a4bfd2c0c69765a8299ef74965f862a7148b7
Validity
Not Before: Dec 7 13:32:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=458691237ba106f324367c60a166becd8c9095ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0c:1e:1f:4d:51:30:6b:b9:34:7b:fa:7c:b3:
8c:e4:e8:7c:b1:b6:a4:6f:d0:c0:66:5f:34:1a:4b:
db:aa:03:9d:93:92:2e:c1:1f:2c:e5:b2:33:23:6a:
fc:b8:88:4a:df:c4:85:49:5b:fd:5b:50:88:69:0f:
c1:da:26:40:34:d0:70:7c:b1:7b:38:bc:91:99:84:
4c:23:ae:b0:6b:56:6d:b3:da:08:95:1c:8a:72:6e:
c9:bb:d2:2a:ab:a7:c0:9e:a3:eb:ae:6b:34:93:b9:
a2:39:f6:38:c4:10:12:b1:a6:7f:e5:32:54:5e:80:
69:b8:b7:21:d9:cf:d5:35:8a:88:62:57:1a:d4:eb:
9f:fe:0f:f7:f0:ad:57:1a:c1:a4:a5:eb:09:e4:f7:
4e:3e:2e:ce:08:58:e5:fb:34:e5:cb:c1:9c:3b:79:
1c:b1:92:44:b8:fb:31:aa:a9:25:37:85:90:83:0b:
ba:bc:1d:28:07:58:ac:41:c9:42:e6:bd:82:b5:c0:
13:63:11:63:b3:6b:d9:16:58:a4:ad:83:5f:af:98:
81:6b:2b:2b:cf:4b:b7:98:3e:76:49:61:d6:90:74:
6b:09:f8:0f:76:65:aa:11:be:0a:0b:44:9f:e8:42:
50:d9:ed:62:b6:b6:9c:de:70:b1:cc:8d:b7:92:a3:
b0:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:86:91:23:7B:A1:06:F3:24:36:7C:60:A1:66:BE:CD:8C:90:95:ED
X509v3 Authority Key Identifier:
keyid:1A:2A:4B:FD:2C:0C:69:76:5A:82:99:EF:74:96:5F:86:2A:71:48:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GipL_SwMaXZagpnvdJZfhipxSLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/RYaRI3uhBvMkNnxgoWa-zYyQle0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/677af8-853e-493b-8b85-bb70800c2a65/1/GipL_SwMaXZagpnvdJZfhipxSLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.76.69.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:7b:c1:aa:9c:e8:02:e2:55:6e:76:bc:e3:18:b2:05:bd:34:
71:e1:a4:8f:32:f5:e1:4b:37:ab:94:71:0b:c7:66:62:9c:a7:
12:51:e8:4f:28:d8:e6:94:40:d2:64:c5:ac:67:c4:02:a1:ef:
cd:43:43:db:11:57:60:81:58:f5:6a:93:f1:39:45:46:1d:41:
29:f7:cb:54:99:0f:6f:5a:a8:52:d8:39:37:7f:3b:c3:b6:21:
5c:19:75:01:5a:45:14:9f:ed:a2:0a:1f:75:53:d5:7e:dc:aa:
fb:91:aa:4b:75:84:74:b4:fa:ab:1f:ed:b5:d5:ae:c4:ba:ca:
e5:67:f8:d1:de:43:bd:ee:aa:d0:15:76:39:1e:df:47:e0:03:
92:7d:80:09:d4:1f:81:34:73:9b:3a:f1:5f:c5:7a:94:0a:40:
ef:83:fe:6d:14:cc:4f:18:d0:f4:5c:c7:d2:21:a0:90:bd:36:
64:8f:60:a3:79:16:c9:8a:16:b2:0b:d3:0a:4c:4d:c3:38:d8:
11:d3:d4:b3:41:f6:68:c6:1e:09:b4:af:48:a9:f4:68:64:9e:
e0:2f:35:84:30:8b:5f:de:a3:c6:c7:49:85:85:50:2b:27:63:
ec:52:52:29:71:6e:f8:e7:00:4b:50:52:e3:5f:52:21:a0:af:
6a:3c:5d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-ams.rpki-client.org