Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/b6ac2c-ba6c-4e55-b17c-84a1fe9d4b78/1/77jHP2QyV74pEGo6HCkmInWqxkg.roa
File: 77jHP2QyV74pEGo6HCkmInWqxkg.roa (raw, json)
Hash identifier: JprEgzlJVAEI5V8bc2nmWtg/9/cY5aWD+0uYdTIE1Lg=
Subject key identifier: EF:B8:C7:3F:64:32:57:BE:29:10:6A:3A:1C:29:26:22:75:AA:C6:48
Certificate issuer: /CN=ded55569177a889d337f03f2e698acabcccbb589
Certificate serial: 0361B88C
Authority key identifier: DE:D5:55:69:17:7A:88:9D:33:7F:03:F2:E6:98:AC:AB:CC:CB:B5:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3tVVaRd6iJ0zfwPy5pisq8zLtYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/b6ac2c-ba6c-4e55-b17c-84a1fe9d4b78/1/77jHP2QyV74pEGo6HCkmInWqxkg.roa
Signing time: Sat 01 Jan 2022 15:56:06 +0000
ROA not before: Sat 01 Jan 2022 15:56:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212417
IP address blocks: 37.77.136.0/21 maxlen: 24
2a09:9a00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56735884 (0x361b88c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ded55569177a889d337f03f2e698acabcccbb589
Validity
Not Before: Jan 1 15:56:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=efb8c73f643257be29106a3a1c29262275aac648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5f:61:e7:74:ec:4e:7f:76:55:4c:07:d8:0c:
53:01:7f:16:d6:a1:58:6e:c6:f6:4b:b1:ed:7b:92:
44:0e:40:70:1d:e2:61:46:81:a5:a1:af:dc:41:fa:
1d:92:42:a1:8e:dc:af:26:df:51:50:37:b1:11:cc:
2b:50:a0:78:64:a9:d1:c5:84:b7:e5:47:b4:aa:9a:
25:69:97:98:ca:74:3a:98:ab:be:49:ed:04:e1:e6:
80:f8:e6:e3:e0:ef:d7:c6:d9:9f:e4:3c:09:0d:7e:
3a:7d:1c:82:09:e0:29:fe:28:47:70:58:c0:db:75:
de:26:a5:a6:c7:df:08:60:6f:59:c3:c6:4d:e9:4a:
54:e6:9c:52:a7:93:4a:c8:13:6e:3c:32:32:7a:b3:
de:6f:34:36:ca:96:0b:54:a5:06:ec:ab:c5:7f:f4:
a3:fa:be:e5:91:1f:79:d7:71:73:a1:cd:8a:25:7b:
48:cb:16:ed:ef:26:9c:18:7a:6d:80:b2:02:24:3e:
35:9f:1b:6a:02:af:6c:30:63:7b:b8:5d:e2:96:34:
8b:91:f1:59:38:95:18:78:13:b3:fa:fc:41:76:32:
86:34:94:ff:6a:82:4c:ae:7b:5c:1b:e8:dd:c3:e2:
0c:1c:40:e1:1e:23:dd:b4:c3:d0:71:12:30:87:5d:
1e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B8:C7:3F:64:32:57:BE:29:10:6A:3A:1C:29:26:22:75:AA:C6:48
X509v3 Authority Key Identifier:
keyid:DE:D5:55:69:17:7A:88:9D:33:7F:03:F2:E6:98:AC:AB:CC:CB:B5:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3tVVaRd6iJ0zfwPy5pisq8zLtYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/b6ac2c-ba6c-4e55-b17c-84a1fe9d4b78/1/77jHP2QyV74pEGo6HCkmInWqxkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/b6ac2c-ba6c-4e55-b17c-84a1fe9d4b78/1/3tVVaRd6iJ0zfwPy5pisq8zLtYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.136.0/21
IPv6:
2a09:9a00::/29
Signature Algorithm: sha256WithRSAEncryption
19:07:96:2a:12:9e:20:c5:81:32:9f:e1:3a:57:9f:f6:bd:ad:
f5:02:bd:ba:37:ee:58:6b:ef:d7:06:3f:85:3e:1c:c2:42:d4:
0d:fb:8c:be:73:e6:ba:76:69:0c:86:5f:35:0b:78:5b:4c:40:
87:ee:62:15:78:ef:98:5b:24:d7:20:e7:8c:58:4c:5c:0e:bb:
60:99:2f:9d:af:d8:c5:79:9f:c5:7f:c8:1a:82:9c:cf:0d:67:
18:9b:a3:08:90:f4:47:67:32:cb:c6:7c:6c:bd:cc:60:00:be:
ff:00:b5:ed:a9:90:97:ec:9c:49:da:84:81:57:27:fd:ed:4b:
60:c1:45:0c:a7:c2:43:c6:7c:f9:e7:69:7c:6c:d6:1b:64:64:
ea:b3:87:c2:09:dc:ae:2b:4b:b6:08:07:88:c5:1c:2b:96:b5:
ae:21:bc:b0:b9:55:88:0c:1c:6d:7a:82:0b:d9:94:3f:6a:6a:
92:19:c1:8f:60:c2:48:32:fa:44:61:58:16:53:6c:28:81:3f:
ff:a7:8a:41:d4:92:e7:06:74:f4:a2:10:35:89:34:e6:3e:91:
bd:56:ec:77:58:2f:dc:96:b2:ee:be:db:25:1e:1c:ce:c3:cd:
1a:e0:b3:7e:29:43:0a:c9:38:67:65:32:b2:a4:a2:37:e9:a8:
4f:f0:92:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:25 2025 by rpki-client