Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/l8wt674MOfehT9z_iIOtg2DDTus.roa
File: l8wt674MOfehT9z_iIOtg2DDTus.roa (raw, json)
Hash identifier: qAHZwmZFzhatIkEEsO+rZD19Hv72ne0rHTmoZM7VsQo=
Subject key identifier: 97:CC:2D:EB:BE:0C:39:F7:A1:4F:DC:FF:88:83:AD:83:60:C3:4E:EB
Certificate issuer: /CN=c089423af1be03027196d1f81df22992978cda6e
Certificate serial: 01877FAA048740670328AB95825755C13137
Authority key identifier: C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/l8wt674MOfehT9z_iIOtg2DDTus.roa
Signing time: Fri 14 Apr 2023 12:07:41 +0000
ROA not before: Fri 14 Apr 2023 12:07:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 11161
IP address blocks: 109.206.244.0/24 maxlen: 24
93.177.77.0/24 maxlen: 24
93.177.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7f:aa:04:87:40:67:03:28:ab:95:82:57:55:c1:31:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c089423af1be03027196d1f81df22992978cda6e
Validity
Not Before: Apr 14 12:07:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97cc2debbe0c39f7a14fdcff8883ad8360c34eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:22:69:f9:ab:9c:a0:a3:10:e4:36:39:4e:db:
92:dd:89:c7:a9:de:3d:01:32:ec:79:e0:da:ef:9b:
bd:d8:a1:40:18:87:60:ab:4b:22:e2:62:b7:88:77:
13:85:a3:5d:e8:d9:68:17:e4:bb:2d:d5:89:55:5c:
7f:f2:c6:2e:bc:a1:8b:05:79:c1:b4:06:3a:de:1e:
cc:ab:f0:04:a5:9e:8f:0d:05:ad:9f:b4:8b:02:b8:
98:1f:2b:82:cc:83:96:b4:a1:c3:8c:1a:26:a1:f8:
0c:61:2e:91:08:04:88:07:cf:2c:60:0e:73:88:0a:
d8:22:71:8c:a2:89:f2:05:d9:36:1b:86:a1:03:0a:
22:21:cb:0b:0c:58:2b:d0:64:5c:a7:37:44:b4:44:
f0:46:f2:84:2b:8d:e4:4e:77:a2:a7:81:5f:2e:4e:
d2:3c:c8:2d:17:da:7d:94:b3:17:b5:b6:a3:66:b5:
dd:22:16:f9:e3:f9:98:23:9a:f4:cf:07:44:75:2a:
c1:bd:8f:41:4c:6a:07:f1:41:e2:2c:f3:a4:9a:a1:
3b:53:91:b0:44:4a:77:7c:de:21:e7:ba:bd:f1:78:
27:6f:cc:e8:9a:19:8f:7f:91:0a:1f:25:81:38:df:
ec:aa:0a:07:cf:55:54:01:ee:7a:ed:1a:dd:e7:34:
b9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:CC:2D:EB:BE:0C:39:F7:A1:4F:DC:FF:88:83:AD:83:60:C3:4E:EB
X509v3 Authority Key Identifier:
keyid:C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/l8wt674MOfehT9z_iIOtg2DDTus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.76.0/23
109.206.244.0/24
Signature Algorithm: sha256WithRSAEncryption
66:4f:84:89:7d:81:84:92:14:dd:b7:73:68:28:b7:a4:ee:75:
a2:ba:5d:14:75:78:dc:7c:2b:85:5a:93:44:b8:fc:f9:df:40:
07:f3:ec:70:a6:a2:f6:54:9d:d6:78:9a:65:bd:b0:c5:db:e5:
49:3a:58:2a:48:ce:8b:c7:ad:62:9b:31:26:14:4e:63:f7:87:
7d:90:de:8a:cd:4e:59:68:33:dd:60:25:e3:ff:56:f1:a2:38:
8b:c2:96:5d:47:e6:0e:1d:da:f8:d9:7c:16:71:7d:fc:46:93:
d6:38:59:0e:d6:76:e2:a8:cd:51:83:a6:62:2f:f6:3d:bb:8a:
ba:59:5e:5b:ea:ee:76:8b:1b:6a:7d:17:19:4c:74:9d:c1:0f:
b1:c6:56:f6:41:1a:f2:57:27:62:f1:2b:df:f1:7d:09:46:78:
db:94:b2:ae:14:c2:a6:19:ac:70:54:8b:75:5a:4b:af:8e:30:
3a:0f:4f:80:96:aa:d7:75:7b:c3:94:c8:42:39:06:76:7b:99:
7c:c2:36:9d:a6:6f:97:4a:6e:37:1d:d0:07:0f:f9:8c:83:a7:
e1:06:9c:3d:11:80:21:e6:ee:c7:89:75:08:bb:e2:d9:56:fc:
3a:a2:63:0a:ca:ac:b5:d6:72:5e:41:db:ac:d9:03:be:0a:95:
89:de:18:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:40 2025 by rpki-client