Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/jyA6Lc8EexQNCe11G9ro9V2tBcI.roa
File: jyA6Lc8EexQNCe11G9ro9V2tBcI.roa (raw, json)
Hash identifier: 9pzoRxJFPDZ8cvF4TKlF31AwolR5OUaIjQfXb0NmGuI=
Subject key identifier: 8F:20:3A:2D:CF:04:7B:14:0D:09:ED:75:1B:DA:E8:F5:5D:AD:05:C2
Certificate issuer: /CN=8f2ae45c509041a796a968953581f51d45bfce55
Certificate serial: 018571555ED37C53F3B5CCEB01C0BF160C1A
Authority key identifier: 8F:2A:E4:5C:50:90:41:A7:96:A9:68:95:35:81:F5:1D:45:BF:CE:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jyrkXFCQQaeWqWiVNYH1HUW_zlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/jyA6Lc8EexQNCe11G9ro9V2tBcI.roa
Signing time: Mon 02 Jan 2023 07:14:58 +0000
ROA not before: Mon 02 Jan 2023 07:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1299
IP address blocks: 77.75.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:5e:d3:7c:53:f3:b5:cc:eb:01:c0:bf:16:0c:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f2ae45c509041a796a968953581f51d45bfce55
Validity
Not Before: Jan 2 07:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f203a2dcf047b140d09ed751bdae8f55dad05c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:62:a0:26:78:c6:df:dc:4e:66:39:a7:7f:33:
1a:74:af:5f:3b:c0:10:71:b9:37:48:cc:e2:b5:eb:
79:ec:75:2d:2c:73:a1:bb:cc:bd:f2:9a:08:5f:aa:
5d:cd:bf:c6:06:31:27:bf:05:a7:29:ce:2e:ad:5e:
21:f0:a9:82:42:17:cc:b3:90:52:af:8d:b1:5f:f9:
88:6d:21:47:0b:05:f8:32:7d:65:5a:c7:42:3d:ae:
0d:21:75:88:69:9b:54:aa:9e:d6:58:07:80:76:e9:
a4:3f:c3:d2:12:31:6a:26:03:af:c2:f5:1b:35:af:
1d:13:be:e5:82:c0:65:e8:f7:db:f8:c5:6f:28:50:
d9:3e:5a:03:92:5d:3e:52:1b:5b:21:3c:57:af:60:
cb:87:19:61:e8:d3:3c:dc:bf:15:c0:4c:8f:59:d3:
f0:fe:a6:03:28:b9:de:63:2b:6f:a1:30:e1:f9:a7:
88:b8:ba:de:64:82:ee:b9:c8:a9:0a:4b:71:25:69:
9d:66:c5:57:b9:ad:c4:2c:d9:b9:6a:d4:4a:b9:83:
bc:7e:9b:5b:89:87:68:59:6b:06:21:7d:cf:98:1a:
77:08:b7:08:8d:31:99:7a:f6:c1:99:b0:ab:60:b8:
d0:d7:29:d1:b8:f3:fb:d8:4b:3e:aa:31:de:fd:66:
37:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:20:3A:2D:CF:04:7B:14:0D:09:ED:75:1B:DA:E8:F5:5D:AD:05:C2
X509v3 Authority Key Identifier:
keyid:8F:2A:E4:5C:50:90:41:A7:96:A9:68:95:35:81:F5:1D:45:BF:CE:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jyrkXFCQQaeWqWiVNYH1HUW_zlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/jyA6Lc8EexQNCe11G9ro9V2tBcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/jyrkXFCQQaeWqWiVNYH1HUW_zlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.112.0/21
Signature Algorithm: sha256WithRSAEncryption
5f:f7:61:a9:85:12:82:af:f1:8d:4f:41:ce:92:cb:04:7d:10:
77:27:d1:70:72:f5:b4:ee:b5:04:58:53:22:25:d9:0f:b0:04:
ad:69:3b:47:13:13:43:6d:51:b6:95:0c:84:a6:19:6d:8b:26:
a4:99:c3:a3:e3:94:50:00:ba:86:be:84:a1:34:6b:e0:82:15:
62:68:7b:92:d5:33:22:15:da:84:b2:de:1d:f3:e4:02:04:f9:
2c:ba:ff:82:ee:cf:93:f3:33:21:8b:3f:63:c9:e3:e3:d9:1d:
c0:fb:e0:66:a0:83:13:4c:48:af:3c:64:4a:a6:e0:e8:29:e0:
f2:28:62:bd:05:a5:06:62:b1:73:7d:e9:0a:5e:4e:2e:4a:a0:
4b:8b:51:55:fb:2a:94:27:a1:f9:52:ac:18:05:2d:21:ff:e8:
5b:62:47:8b:e9:fd:aa:5a:8f:0b:57:00:f9:da:d1:41:b7:43:
97:ed:b1:e6:a7:d1:44:07:08:41:3b:a5:5e:92:d5:a7:64:cc:
ef:37:19:37:51:87:51:66:26:00:60:74:e4:6d:85:f8:2f:7f:
12:ac:aa:ac:7a:5a:32:2c:32:6a:9b:2c:1d:06:1c:cc:d3:cd:
a5:92:47:e7:5e:86:5b:31:5f:fe:57:0e:e4:ec:ba:6d:dd:37:
cd:6a:e1:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:12:19 2025 by rpki-client