Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/stlkn0CtJu5nvUxk-N6piGfyVU8.roa
File: stlkn0CtJu5nvUxk-N6piGfyVU8.roa (raw, json)
Hash identifier: JIgYtFXKvaXcOgMcM+nBolFDyovUsCp1qS8VISfMGuk=
Subject key identifier: B2:D9:64:9F:40:AD:26:EE:67:BD:4C:64:F8:DE:A9:88:67:F2:55:4F
Certificate issuer: /CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Certificate serial: 0183AC21183C4EFC5C1B27DFDB613EB99239
Authority key identifier: 73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/stlkn0CtJu5nvUxk-N6piGfyVU8.roa
Signing time: Thu 06 Oct 2022 07:09:53 +0000
ROA not before: Thu 06 Oct 2022 07:09:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43391
IP address blocks: 185.80.72.0/24 maxlen: 24
77.223.132.0/24 maxlen: 24
77.223.128.0/19 maxlen: 24
77.223.136.0/24 maxlen: 24
77.223.135.0/24 maxlen: 24
77.223.143.0/24 maxlen: 24
93.187.200.0/21 maxlen: 21
93.187.206.0/24 maxlen: 24
93.187.205.0/24 maxlen: 24
93.187.207.0/24 maxlen: 24
195.244.32.0/19 maxlen: 24
195.244.33.0/24 maxlen: 24
77.223.148.0/23 maxlen: 23
77.223.152.0/24 maxlen: 24
77.223.158.0/24 maxlen: 24
77.223.153.0/24 maxlen: 24
77.223.156.0/24 maxlen: 24
77.223.154.0/24 maxlen: 24
91.191.160.0/20 maxlen: 24
91.191.171.0/24 maxlen: 24
91.191.170.0/24 maxlen: 24
91.191.168.0/21 maxlen: 21
78.40.224.0/24 maxlen: 24
78.40.224.0/21 maxlen: 21
2a0a:be80::/29 maxlen: 29
2a01:aac0::/32 maxlen: 32
2a0a:be80::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ac:21:18:3c:4e:fc:5c:1b:27:df:db:61:3e:b9:92:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Validity
Not Before: Oct 6 07:09:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2d9649f40ad26ee67bd4c64f8dea98867f2554f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:af:8d:98:f7:2d:46:c9:e3:22:e9:f4:c6:6c:
c4:24:c5:26:11:81:ed:6b:57:fe:45:fd:63:07:94:
7a:f8:0d:e7:43:a2:16:bb:07:47:61:fd:e3:4b:c6:
35:97:78:89:8c:3b:14:09:30:86:f8:01:d1:c4:a7:
60:09:9e:2c:de:c4:bc:bc:ab:4a:da:38:bf:dc:03:
a2:50:84:c3:9c:03:c0:fb:4e:9b:0b:8e:b6:1c:61:
21:e7:ea:fc:89:ae:63:b7:7f:d3:c0:f6:68:a7:92:
67:a2:29:58:fb:73:98:14:1c:f0:6d:e1:74:34:59:
06:1d:bb:4e:e0:0e:bf:3a:fb:ce:6e:43:5d:37:5b:
69:45:1d:71:b7:1f:b6:b3:68:d2:2a:e1:66:3d:e0:
2b:c7:ee:16:5f:e1:34:51:30:ef:48:ce:82:34:3f:
ca:18:41:d8:4b:73:cc:22:b3:79:f9:12:ea:73:2b:
01:1b:cf:5a:cb:58:30:42:17:b1:3d:f2:bb:46:f3:
2f:ae:cf:24:98:40:df:b7:b2:bd:7a:e7:3e:e3:0b:
51:10:06:22:fc:50:1f:c4:7a:02:0d:50:99:74:0b:
83:c4:0e:64:f9:48:b7:3b:72:90:5e:b6:a4:84:6b:
ca:13:71:3d:d5:a9:12:4c:a2:53:24:09:f8:31:f4:
1a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:D9:64:9F:40:AD:26:EE:67:BD:4C:64:F8:DE:A9:88:67:F2:55:4F
X509v3 Authority Key Identifier:
keyid:73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/stlkn0CtJu5nvUxk-N6piGfyVU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/cwLNwp_coJ6aDz99IRPahafh1lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.223.128.0/19
78.40.224.0/21
91.191.160.0/20
93.187.200.0/21
185.80.72.0/24
195.244.32.0/19
IPv6:
2a01:aac0::/32
2a0a:be80::/29
Signature Algorithm: sha256WithRSAEncryption
00:a4:d3:44:36:3f:98:42:ae:bb:86:09:e7:9d:3b:da:05:e1:
43:a0:3f:5d:b5:61:3b:02:42:ea:93:cc:05:9c:78:6f:06:6a:
4b:06:64:16:32:b1:f6:f7:b7:e3:96:b7:80:e6:65:48:88:7b:
c5:a3:26:78:1f:de:5b:6b:b9:48:24:66:07:a1:59:11:68:09:
00:f6:59:7d:bf:50:af:36:ba:a7:aa:3f:1c:e4:78:52:ed:cb:
e3:30:a5:4c:7b:de:75:0e:dd:65:d7:a5:a2:8e:33:78:69:9f:
d4:d3:d3:f4:3e:a1:e2:16:ad:ea:53:ce:9b:e3:08:d4:8b:fc:
09:06:4e:66:b3:e8:8e:be:25:c0:91:0f:cc:69:1b:67:2f:64:
a1:5c:ea:32:b9:04:1d:14:4e:9e:af:33:74:ca:78:e2:22:cc:
7e:a8:11:8a:b1:10:7f:4a:34:46:bf:6b:83:d6:14:da:64:8a:
a2:13:f0:2a:53:0b:85:de:bd:ae:81:e6:f6:0e:73:f0:92:47:
66:09:13:87:3e:34:ef:aa:1c:54:c0:f4:e9:8d:a7:52:58:c8:
e1:b4:cc:83:9d:c6:f8:2b:8d:6d:b5:65:61:dd:e9:f4:cd:57:
52:04:66:69:ef:64:1c:67:4b:72:bb:d7:9e:5e:21:74:31:e8:
49:ec:b6:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:10 2024 by rpki-client on console-fra.rpki-client.org