Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/7qllPsQrT5IIIQl8oUhQHPJ6q3g.roa
File: 7qllPsQrT5IIIQl8oUhQHPJ6q3g.roa (raw, json)
Hash identifier: Xf/2e9D6KiKEuv1WBN/vXGbpdQqHK3DJ2UEgfGa+Zn0=
Subject key identifier: EE:A9:65:3E:C4:2B:4F:92:08:21:09:7C:A1:48:50:1C:F2:7A:AB:78
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 01847FDDF71E61E858B037A7027B4945E870
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/7qllPsQrT5IIIQl8oUhQHPJ6q3g.roa
Signing time: Wed 16 Nov 2022 09:56:03 +0000
ROA not before: Wed 16 Nov 2022 09:56:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51765
IP address blocks: 185.77.218.0/23 maxlen: 24
185.77.217.0/24 maxlen: 24
77.83.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7f:dd:f7:1e:61:e8:58:b0:37:a7:02:7b:49:45:e8:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Nov 16 09:56:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eea9653ec42b4f920821097ca148501cf27aab78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:5e:03:d7:9f:cb:08:2e:28:fd:f5:07:b1:e6:
80:d1:d4:0f:cb:11:11:97:8b:6c:53:04:86:e5:44:
1c:c2:60:01:f3:d8:61:f3:d1:61:bc:1c:dc:d4:24:
a1:6a:a7:9d:7c:94:77:6d:ae:3a:58:57:f8:ea:05:
35:c5:1a:38:71:29:ef:24:c3:4c:7d:2a:82:7b:9e:
ad:15:db:90:56:e9:8d:cd:6e:10:40:5a:62:c2:00:
ed:28:92:bc:48:0e:6d:e3:68:74:c6:56:69:60:62:
a4:22:85:d2:3c:a4:99:da:6a:97:ea:39:dd:d7:76:
34:a6:b5:9b:f3:48:a4:39:bc:f9:0a:82:ed:26:ba:
92:f6:fd:8f:36:86:e8:4a:e4:eb:c9:89:e5:8b:1a:
7e:33:f7:2e:e3:56:ce:df:d9:b7:d3:f9:2b:e6:b8:
0c:43:e4:7b:3f:6f:06:a9:4f:d6:7c:8f:37:d6:cd:
d9:3a:eb:35:d2:c1:97:6b:76:09:3f:d7:df:72:d2:
7f:5f:a5:05:21:21:81:58:22:a6:b4:95:e0:92:15:
12:6d:9a:6c:7d:a7:55:41:af:fe:ab:c4:04:d0:41:
08:ea:1c:34:0a:d6:eb:be:d8:bb:05:f1:1c:dd:8a:
3d:8b:22:2c:9d:5d:68:37:42:42:d1:d3:13:0d:21:
5b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:A9:65:3E:C4:2B:4F:92:08:21:09:7C:A1:48:50:1C:F2:7A:AB:78
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/7qllPsQrT5IIIQl8oUhQHPJ6q3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.247.0/24
185.77.217.0-185.77.219.255
Signature Algorithm: sha256WithRSAEncryption
a3:43:bc:9f:34:9d:15:06:47:fb:35:2a:8c:02:0a:69:b3:01:
f9:f6:18:da:00:7b:5f:25:c6:dc:82:52:af:8b:24:bf:57:b8:
d1:c4:a1:a5:7a:8d:67:72:88:c9:ae:32:97:49:ca:2a:7b:3c:
6d:54:85:64:8a:a8:48:50:02:bd:1b:7a:68:50:72:31:81:c8:
4e:5e:cf:84:cc:d6:4c:f7:9d:e3:f4:37:87:4f:f7:92:a8:1a:
bf:43:92:78:f5:08:c6:d3:e8:41:7f:c7:dc:bc:5c:74:c7:7f:
a4:7c:14:2e:f6:bb:39:ad:ee:25:c3:1f:8a:91:b3:ef:5b:4d:
db:90:82:26:35:5e:91:92:7c:d7:ad:6e:0c:77:e7:bd:f2:e3:
fb:94:43:41:ce:79:b9:1f:b1:02:68:c6:60:79:e0:08:b0:6e:
ed:72:29:cf:7c:14:b7:5d:8a:af:23:7d:0e:9a:82:19:31:f7:
3d:cc:41:57:5e:cc:21:b8:83:76:2d:2e:2f:a1:15:6f:c6:41:
15:a2:17:f7:4c:b9:41:df:e3:47:47:75:36:82:d9:68:6a:17:
c2:ca:0e:bd:ac:28:96:6f:b4:24:01:ab:98:88:12:78:66:12:
b7:a9:5f:f4:a0:f4:4b:f2:2b:a0:4f:47:01:88:ef:9d:a7:13:
02:40:77:a1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org