Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/QKKI6DekrFdqS9Xr-jzhw_q9F1k.roa
File: QKKI6DekrFdqS9Xr-jzhw_q9F1k.roa (raw, json)
Hash identifier: NcrOy4lc28qUYyZ3wPXwkFSYoG8g1UfTW6ee+WW6vvc=
Subject key identifier: 40:A2:88:E8:37:A4:AC:57:6A:4B:D5:EB:FA:3C:E1:C3:FA:BD:17:59
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2DBF88E6
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/QKKI6DekrFdqS9Xr-jzhw_q9F1k.roa
Signing time: Thu 21 Apr 2022 07:50:28 +0000
ROA not before: Thu 21 Apr 2022 07:50:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200094
IP address blocks: 77.79.252.0/22 maxlen: 22
77.79.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 767527142 (0x2dbf88e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Apr 21 07:50:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40a288e837a4ac576a4bd5ebfa3ce1c3fabd1759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:86:65:a3:17:25:b7:4e:f6:b8:b6:ef:bd:22:
73:a5:72:77:ac:4e:dc:d7:96:c5:5d:b0:5b:76:6d:
76:d2:61:55:e8:77:6f:35:83:32:d0:7a:cb:6a:53:
34:54:9d:d2:af:c2:01:4f:cc:ec:7b:19:b9:bb:ac:
1f:e0:3c:4a:36:35:3f:33:5a:2d:d8:ab:3c:6f:45:
64:76:2d:58:7f:df:8e:d5:d9:dc:2a:01:c5:d3:74:
0c:2a:e1:b2:4d:f6:bc:9b:59:9c:25:62:e7:fa:b7:
4e:5f:b1:0a:41:4a:28:18:8d:7c:e7:07:f8:ed:60:
d2:fd:b8:d5:1c:61:a3:8a:d8:bf:b6:0b:2a:04:0e:
6d:94:cb:70:44:ce:16:1a:d3:25:58:01:fd:3c:76:
e4:53:8c:43:e7:95:19:e5:08:e7:5f:d1:c8:57:d8:
c8:2f:66:c7:17:d2:9d:ec:87:5f:40:1d:8f:27:ae:
24:a4:4e:d3:0f:c1:3a:10:8f:d0:cd:85:7a:a8:7f:
a0:b2:7c:2d:35:4b:88:08:c7:0e:bc:ed:a5:76:01:
89:63:ce:34:d6:3d:c2:13:f5:b0:64:c4:f9:57:a4:
ee:22:92:fd:4a:ca:13:a9:c1:92:ed:72:c8:9f:ac:
30:06:bc:dd:74:f8:7e:d1:21:d6:be:0b:0e:8a:96:
97:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A2:88:E8:37:A4:AC:57:6A:4B:D5:EB:FA:3C:E1:C3:FA:BD:17:59
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/QKKI6DekrFdqS9Xr-jzhw_q9F1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.252.0/22
Signature Algorithm: sha256WithRSAEncryption
75:61:1d:0e:41:3d:3a:5d:a1:df:9c:ec:0e:6e:9a:c7:89:6d:
b3:f0:d9:d5:f1:04:a1:d6:8d:bf:b4:27:e7:09:eb:46:f9:05:
64:23:63:02:41:4a:52:f0:87:12:95:4f:4a:5c:7c:7d:01:d2:
39:34:58:dc:69:59:cf:92:dd:bb:3f:ea:0f:08:c9:8d:5f:7c:
8d:77:cb:69:8f:ff:a1:85:15:03:71:43:dd:d4:70:14:33:d4:
e6:be:f3:61:cf:45:7d:91:d5:0b:7a:11:90:80:64:de:28:9d:
ee:f8:b9:e1:cb:dc:4c:5e:68:73:04:ce:09:79:f3:9d:e3:17:
87:39:a7:ae:e1:7f:17:e2:e2:76:aa:e8:b0:18:15:bf:a4:fc:
60:40:5a:f4:cb:e8:24:00:db:7e:b4:a3:d0:ff:86:9e:5d:b9:
73:6c:92:3f:61:e5:95:95:3f:26:2e:3e:dd:80:e2:85:1d:4b:
26:34:91:d2:40:71:df:38:d1:c2:0b:bd:d7:51:b7:49:99:b1:
37:fa:f4:98:e0:d5:ff:4a:08:04:5f:07:1c:6e:75:6c:82:20:
60:f3:d1:71:d5:04:58:0d:50:f3:7d:2d:bb:60:a3:99:73:a1:
d6:ad:17:02:3d:b0:58:45:7a:72:14:71:5c:8d:54:a4:14:d2:
48:f5:ce:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:05 2025 by rpki-client