Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/7a78uwYK3TzAeBxkn3cqh9sy00Y.roa
File: 7a78uwYK3TzAeBxkn3cqh9sy00Y.roa (raw, json)
Hash identifier: 5MxVa3997mVts0DxE/rg7Hj6CF5DM35bPBYInucDwy0=
Subject key identifier: ED:AE:FC:BB:06:0A:DD:3C:C0:78:1C:64:9F:77:2A:87:DB:32:D3:46
Certificate issuer: /CN=d504e641e55a48aee0141e2c0d26227102caa6d4
Certificate serial: 0148EC50
Authority key identifier: D5:04:E6:41:E5:5A:48:AE:E0:14:1E:2C:0D:26:22:71:02:CA:A6:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QTmQeVaSK7gFB4sDSYicQLKptQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/7a78uwYK3TzAeBxkn3cqh9sy00Y.roa
Signing time: Wed 19 Jan 2022 14:31:13 +0000
ROA not before: Wed 19 Jan 2022 14:31:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13259
IP address blocks: 77.232.128.0/20 maxlen: 24
77.232.156.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21556304 (0x148ec50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d504e641e55a48aee0141e2c0d26227102caa6d4
Validity
Not Before: Jan 19 14:31:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=edaefcbb060add3cc0781c649f772a87db32d346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d7:e4:55:5e:bc:b3:2a:92:f8:1b:9e:ad:b4:
91:e4:b0:80:a7:6d:7e:f2:a8:1f:cc:4e:36:94:21:
9f:e7:51:38:fb:ed:03:74:97:d2:25:d9:f8:97:24:
4b:ca:36:9c:b7:76:08:ba:ad:77:ee:33:7b:38:3e:
9e:3e:55:29:df:be:dd:70:ea:e7:d6:f6:d9:26:c0:
2c:79:e4:ba:8b:ff:e9:62:98:9e:71:10:91:b0:cb:
1f:27:9e:5f:d9:29:74:0c:82:95:b3:7c:4f:a4:70:
5e:5c:77:4d:2d:fe:cb:e6:a5:0c:00:5e:32:2d:9a:
88:bf:c0:b4:2b:c7:fc:c2:85:d0:8a:52:2e:5e:0e:
44:7a:21:a6:b9:6a:1b:d1:1b:10:b3:7d:57:c4:50:
79:5d:ac:bf:8c:d0:b7:83:2b:4c:94:a0:6a:11:d3:
b8:11:63:8c:9a:23:0a:0f:7d:41:81:a5:fe:5d:cc:
90:1e:2a:dc:d1:ff:b2:9f:1a:5d:67:37:fd:91:a9:
a2:92:25:75:81:00:6f:b4:97:ca:d3:b5:7b:63:2d:
fc:6b:d3:a6:b8:c7:0d:39:36:85:34:be:00:98:e9:
42:e3:fa:82:a9:6d:00:7c:e4:d6:90:50:78:d9:da:
8b:a5:76:8c:00:4e:95:2a:a2:88:1b:87:a5:8e:04:
7c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:AE:FC:BB:06:0A:DD:3C:C0:78:1C:64:9F:77:2A:87:DB:32:D3:46
X509v3 Authority Key Identifier:
keyid:D5:04:E6:41:E5:5A:48:AE:E0:14:1E:2C:0D:26:22:71:02:CA:A6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QTmQeVaSK7gFB4sDSYicQLKptQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/7a78uwYK3TzAeBxkn3cqh9sy00Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/1QTmQeVaSK7gFB4sDSYicQLKptQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.232.128.0/20
77.232.156.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:cd:ef:4b:89:30:af:a3:dc:6f:99:2a:01:1e:1d:61:66:9f:
19:4a:d4:b4:c5:29:43:41:04:c0:16:a4:97:28:5c:70:de:6c:
e5:0d:c7:e0:df:25:8a:27:a9:4a:b9:73:93:71:ba:1c:77:ef:
09:72:29:7a:e4:88:e8:f6:b0:8e:23:e2:8f:e5:71:39:0f:35:
66:71:3d:09:bf:35:ba:37:65:00:65:19:11:79:e9:7e:65:3b:
d2:13:c0:5f:b0:67:9a:1d:97:c0:4e:9a:a6:b0:07:42:54:d1:
3a:08:bf:db:5b:41:ba:79:10:e7:30:ed:83:f1:6e:26:e6:95:
05:cd:4c:14:e2:79:0e:ca:78:49:da:f0:66:3f:96:88:ec:78:
84:67:57:03:83:fc:cc:8e:df:f6:90:4e:16:88:54:33:02:c7:
c4:24:d6:09:95:43:c5:08:0e:14:e2:3a:50:10:72:c3:8a:0f:
25:8e:d1:61:fb:40:29:16:cd:0b:61:01:c3:af:e7:03:cb:e6:
95:44:37:51:1b:ac:ee:ef:a1:fa:08:71:b6:50:d0:c8:94:6a:
c0:6a:d0:df:dc:8c:57:88:e8:99:32:f2:83:06:ab:50:67:57:
5c:85:a0:2c:34:c4:86:6f:f0:20:fa:2f:7f:ba:8a:51:c0:bc:
03:71:d9:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:51 2023 by rpki-client on console-ams.rpki-client.org