Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/9iPA99Y2BhwfCyIKAoxzRZaLwNQ.roa
File: 9iPA99Y2BhwfCyIKAoxzRZaLwNQ.roa (raw, json)
Hash identifier: KWrt135Wy4RVixM4c82ybw1eSjLHpTM6SEXSTOUi2Ug=
Subject key identifier: F6:23:C0:F7:D6:36:06:1C:1F:0B:22:0A:02:8C:73:45:96:8B:C0:D4
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 1AFD4D89
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/9iPA99Y2BhwfCyIKAoxzRZaLwNQ.roa
Signing time: Sat 01 Jan 2022 13:05:42 +0000
ROA not before: Sat 01 Jan 2022 13:05:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21450
IP address blocks: 77.137.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452808073 (0x1afd4d89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 13:05:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f623c0f7d636061c1f0b220a028c7345968bc0d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:16:60:d3:4f:f3:98:ae:5e:cd:35:5c:ce:7b:
75:ed:c5:46:04:bf:23:12:4b:be:54:a7:7b:de:c7:
23:67:60:a1:ad:0e:5b:72:e2:5f:bd:b6:22:07:30:
ad:91:b6:20:49:bb:f0:f4:92:a6:e4:4e:b7:f8:ad:
09:3c:44:dd:1e:ea:39:97:93:2f:26:ef:41:f6:1c:
18:f3:5a:f6:ba:3a:7a:1a:ad:3b:75:a1:35:25:e4:
50:31:09:d2:0a:22:d2:41:2a:9e:c6:f0:f3:ff:c5:
bb:1a:10:c8:91:2e:ac:5c:4f:90:5b:2d:7d:9c:2f:
cd:90:c8:1c:fa:4d:ab:c4:15:25:33:c5:68:e1:1d:
d9:b8:a4:59:1d:dd:98:42:2d:a5:a4:92:37:dd:da:
84:9b:9f:fb:bd:ed:06:57:04:2c:3f:46:a8:cb:b5:
22:ab:a3:00:6b:70:2d:b3:ab:73:8d:fe:f8:ae:0d:
02:6b:7e:dc:ef:20:e8:fc:b2:fe:67:5a:20:4c:3d:
1c:74:4c:32:05:82:1c:db:72:35:fe:95:9d:f1:cb:
d7:c5:dc:31:0e:89:60:36:82:93:1b:17:15:04:af:
e8:79:62:98:31:b3:59:e3:a1:1f:76:f0:13:9a:b6:
83:5a:df:98:e7:be:f2:73:e8:f1:e6:97:e9:82:34:
39:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:23:C0:F7:D6:36:06:1C:1F:0B:22:0A:02:8C:73:45:96:8B:C0:D4
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/9iPA99Y2BhwfCyIKAoxzRZaLwNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.137.128.0/18
Signature Algorithm: sha256WithRSAEncryption
52:00:77:b5:29:a6:76:24:38:2d:79:ae:14:21:d3:6a:7b:48:
ed:bb:94:95:1f:42:71:43:64:ce:28:a0:fe:90:7f:52:94:6e:
4d:b2:81:09:01:7a:38:7a:fb:30:b4:3b:33:68:0d:21:61:70:
a4:b6:c4:56:2c:02:bd:a9:e1:ec:a6:ba:05:68:cc:ee:60:21:
3c:76:08:81:8c:0c:b0:89:8f:89:4c:f7:ac:bf:c3:0d:2e:d4:
9a:6b:28:bd:a7:e1:df:63:18:d8:cd:5b:47:7b:60:42:09:d5:
14:41:c5:14:dc:66:c8:7c:27:00:eb:24:11:d4:da:d8:3f:0f:
3f:87:f6:cb:7d:a4:7a:c0:7e:80:f4:d7:9d:b8:7a:fb:8f:5b:
74:83:20:d7:6e:fd:8b:00:e9:87:14:3b:85:6e:a9:28:d7:c1:
6c:30:83:cd:fb:9d:36:54:a2:91:7e:76:24:45:40:94:fb:77:
7f:4e:a1:ca:89:62:74:86:f7:f4:6c:de:b3:10:ca:9e:91:90:
9c:8c:19:5f:21:ca:a0:4b:0c:61:e6:90:ce:66:d5:01:ab:51:
14:d9:2d:6a:6c:ad:27:9a:00:7d:ce:3e:7f:ee:6b:c5:22:28:
14:f9:89:8c:5c:c2:8a:f6:fc:1c:ce:0a:ce:bc:93:da:16:91:
3d:50:a7:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org