Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/dded95-cb8c-4335-aed0-64838df3977a/1/7LJYDcSthd5v_vBB0YYvdH1rPJ8.roa
File: 7LJYDcSthd5v_vBB0YYvdH1rPJ8.roa (raw, json)
Hash identifier: IyZCZavh02HNbIuztMBztvYGNMYuDgHaPmWoTiKYq6I=
Subject key identifier: EC:B2:58:0D:C4:AD:85:DE:6F:FE:F0:41:D1:86:2F:74:7D:6B:3C:9F
Certificate issuer: /CN=0195727f07b758f9868476c13cf977654bf380ee
Certificate serial: 01869BA67F252DC96D2F8786D889B509C1AF
Authority key identifier: 01:95:72:7F:07:B7:58:F9:86:84:76:C1:3C:F9:77:65:4B:F3:80:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AZVyfwe3WPmGhHbBPPl3ZUvzgO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/dded95-cb8c-4335-aed0-64838df3977a/1/7LJYDcSthd5v_vBB0YYvdH1rPJ8.roa
Signing time: Wed 01 Mar 2023 05:30:25 +0000
ROA not before: Wed 01 Mar 2023 05:30:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207228
IP address blocks: 77.243.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9b:a6:7f:25:2d:c9:6d:2f:87:86:d8:89:b5:09:c1:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0195727f07b758f9868476c13cf977654bf380ee
Validity
Not Before: Mar 1 05:30:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecb2580dc4ad85de6ffef041d1862f747d6b3c9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0e:de:4e:eb:f8:c4:86:33:78:f1:45:61:7a:
bb:5f:41:87:50:d1:3a:ee:8d:03:c3:67:10:96:b5:
0f:c5:c3:e1:00:b0:c2:56:f3:21:86:02:46:00:67:
bf:af:68:ea:38:0e:56:2c:51:d8:88:72:8c:1c:19:
2b:d6:35:0c:5c:95:b7:62:8f:32:84:c0:aa:e5:fa:
87:99:59:2d:57:7d:e5:97:0e:31:92:7b:75:1a:c1:
59:c9:28:f7:27:bf:79:cf:a7:c7:46:0b:9c:72:9c:
67:ec:4f:95:a0:5c:cc:04:b6:19:cb:54:c4:98:f8:
ae:93:ca:d1:79:33:8f:a3:81:99:8e:a1:65:ce:5d:
73:6f:7d:a3:98:15:a1:ff:9f:2c:98:bf:85:5d:7a:
84:3a:72:d6:90:67:4c:46:47:74:d0:ea:61:68:1e:
1d:27:a4:95:fc:03:8b:42:74:d0:d5:3d:d1:b8:3a:
1d:6f:48:14:87:80:b9:90:ef:ae:26:88:58:e5:f9:
3b:30:f2:c6:72:31:42:12:9e:97:2b:ae:6d:b1:e6:
3a:a4:77:19:66:38:4d:fb:69:98:3f:e4:b0:2c:88:
4b:f1:91:0c:86:44:9b:f0:e6:72:c0:b9:0c:1c:e0:
7a:ab:a3:bb:50:13:1a:f5:a4:34:76:9e:3b:cf:a0:
f2:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:B2:58:0D:C4:AD:85:DE:6F:FE:F0:41:D1:86:2F:74:7D:6B:3C:9F
X509v3 Authority Key Identifier:
keyid:01:95:72:7F:07:B7:58:F9:86:84:76:C1:3C:F9:77:65:4B:F3:80:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AZVyfwe3WPmGhHbBPPl3ZUvzgO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/dded95-cb8c-4335-aed0-64838df3977a/1/7LJYDcSthd5v_vBB0YYvdH1rPJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/dded95-cb8c-4335-aed0-64838df3977a/1/AZVyfwe3WPmGhHbBPPl3ZUvzgO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.243.126.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:b6:97:4c:7e:34:25:8d:48:ce:79:1b:40:ae:92:06:08:3e:
dc:a2:7e:ad:a4:73:7c:42:09:84:89:74:d9:d8:60:08:4f:fa:
ec:b9:5d:65:a8:98:bf:e8:3b:e0:13:2d:a8:dc:5a:09:e4:20:
d2:75:7a:ad:e3:f3:86:d9:8f:f7:14:de:94:5c:3b:aa:ea:8a:
9d:01:db:c5:56:bc:4e:60:4a:25:48:91:91:02:7e:2e:2f:aa:
82:78:07:3b:e3:03:37:48:ad:2a:6e:fd:17:bb:f0:12:44:cf:
81:8b:b4:3f:04:19:9c:df:a7:79:e3:91:c5:70:e9:25:8d:82:
f3:d5:77:e5:81:48:ea:67:0c:e9:f7:11:a3:95:4e:97:59:46:
53:af:2a:25:3a:38:72:f0:9b:ea:2b:57:60:64:2d:f5:a2:98:
87:1c:64:58:89:b3:76:2a:4e:11:88:93:5b:51:d5:6b:83:c2:
3d:37:01:cc:81:64:0a:2e:85:87:0d:08:8b:b4:19:50:3e:5b:
6e:cc:da:97:33:a2:70:25:8a:18:7e:d8:0c:ae:73:95:7f:a1:
3e:5c:c2:e9:20:94:bc:26:f3:36:a1:7b:01:c1:52:1e:8c:2d:
1d:28:90:f8:28:32:4d:22:5f:c7:9c:87:4e:85:6c:99:f1:2a:
b8:ab:02:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:09:59 2025 by rpki-client