Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Q9ugGNphHjxGnn5NVdt3EEJzi2s.roa
File: Q9ugGNphHjxGnn5NVdt3EEJzi2s.roa (raw, json)
Hash identifier: aCY5JfYu6XotEtvwWaJbwgOfFQQaFpCk51qpMLp9BT8=
Subject key identifier: 43:DB:A0:18:DA:61:1E:3C:46:9E:7E:4D:55:DB:77:10:42:73:8B:6B
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2CB920D4
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Q9ugGNphHjxGnn5NVdt3EEJzi2s.roa
Signing time: Sat 01 Jan 2022 04:59:46 +0000
ROA not before: Sat 01 Jan 2022 04:59:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205308
IP address blocks: 77.79.201.0/24 maxlen: 24
206.252.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 750330068 (0x2cb920d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43dba018da611e3c469e7e4d55db771042738b6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:10:65:68:16:7c:1c:7f:11:10:7f:53:8d:0f:
3b:3d:cb:00:7c:25:79:c5:c3:45:ba:b2:58:33:2c:
ce:40:62:6f:9f:c3:5f:17:83:d7:66:60:bc:19:13:
9f:35:9d:a2:2e:9a:91:27:d8:29:cc:9d:f2:37:a5:
ca:8b:b5:3b:df:06:0c:5f:ce:80:df:8a:26:98:34:
48:da:91:2a:a8:17:dc:65:7f:41:7d:c2:4e:1f:aa:
5d:cf:3a:65:3f:22:cf:18:ed:e7:a4:1f:d4:60:14:
66:16:48:b5:69:cd:20:d7:2a:69:e1:8c:d3:8c:2d:
de:b2:13:59:fc:90:d3:1d:1f:23:da:af:21:db:77:
01:88:dd:48:6b:b6:4f:51:8f:fc:b0:19:64:d6:cf:
17:85:c3:af:1f:3b:cb:a6:25:36:d4:f8:01:2c:0f:
d6:05:36:66:61:d0:f1:4b:55:ab:d5:48:df:ff:26:
2f:2d:8a:85:dd:83:2c:7d:4e:07:f9:07:cb:58:ba:
aa:55:a5:1e:77:45:df:c8:55:b2:54:3f:e6:07:4d:
e3:70:f9:72:47:c7:19:78:43:28:18:ea:4e:09:61:
81:0b:6e:9e:f6:53:b8:8d:24:f7:ad:d0:90:09:4b:
74:f7:64:0e:9e:0c:5a:72:fe:dc:40:41:ab:34:36:
6d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:DB:A0:18:DA:61:1E:3C:46:9E:7E:4D:55:DB:77:10:42:73:8B:6B
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Q9ugGNphHjxGnn5NVdt3EEJzi2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.201.0/24
206.252.224.0/24
Signature Algorithm: sha256WithRSAEncryption
48:15:eb:be:26:3b:db:b7:14:b7:95:1d:9c:08:a5:6a:2e:24:
5e:4b:42:89:3f:91:a9:58:ee:70:9e:d1:e7:64:b6:20:5c:f2:
e2:f0:2a:09:88:26:4a:87:1a:06:84:1a:9a:23:56:a0:5e:ab:
f4:0c:51:6e:f7:ec:ea:7f:31:51:5b:1c:bf:df:1a:38:2e:0e:
22:5e:ed:12:b6:4b:bb:7f:8d:37:db:91:11:cc:35:77:e1:68:
60:75:ed:05:a9:82:c2:9b:12:8d:20:98:45:6b:d8:76:38:d0:
de:ca:38:f2:55:2e:68:06:3a:d2:a1:14:de:d8:c0:86:eb:72:
44:47:02:7b:05:4d:d5:da:77:d4:e1:91:e8:ec:2b:3b:da:d7:
f8:29:1b:cd:69:ec:c3:92:ba:65:1b:36:88:d9:0d:78:33:a5:
e8:15:3a:10:09:0b:ea:b7:99:b6:78:d6:f2:79:e4:68:fb:86:
68:95:c4:35:a1:2b:06:d0:60:eb:dc:4e:d3:aa:9f:36:a1:81:
e9:29:0a:1b:55:b7:81:0b:2d:19:a6:a7:fc:50:f9:45:d5:7c:
c9:fa:c4:a8:3e:05:32:36:95:a3:9d:6f:61:7a:fc:ff:7e:a2:
09:2f:e5:15:fc:77:11:1d:e9:66:2b:d3:60:39:1e:f4:b8:10:
3b:79:ce:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:26 2025 by rpki-client