Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/1-xr8dI3kPegtosscFCTuD2yPT6w.roa
File: 1-xr8dI3kPegtosscFCTuD2yPT6w.roa (raw, json)
Hash identifier: st8uoraP9Vfn6FZnYO2NGPdwE1GZmT6kyKiKh4AJGtE=
Subject key identifier: FB:1A:FC:74:8D:E4:3D:E8:2D:A2:CB:1C:14:24:EE:0F:6C:8F:4F:AC
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 05FBC2D5
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/1-xr8dI3kPegtosscFCTuD2yPT6w.roa
Signing time: Thu 21 Apr 2022 10:15:42 +0000
ROA not before: Thu 21 Apr 2022 10:15:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50386
IP address blocks: 77.73.130.0/24 maxlen: 24
77.73.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100385493 (0x5fbc2d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Apr 21 10:15:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb1afc748de43de82da2cb1c1424ee0f6c8f4fac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c4:7a:76:25:16:38:74:d4:1a:e4:b8:3f:ee:
b5:ba:4e:a0:a1:cd:d0:e6:61:19:c3:16:e1:e6:bf:
8f:2f:13:64:49:f1:99:d0:d5:c1:17:c3:96:c8:ad:
23:c3:96:29:a2:de:32:f1:19:86:89:8a:6d:d9:e0:
dc:3b:a2:66:a9:75:7a:b5:5d:66:e9:1e:56:28:b9:
b5:80:66:d6:b5:01:b8:09:91:56:f7:28:7e:93:a6:
00:09:ff:85:48:fe:69:fe:35:a5:f5:d8:21:47:e5:
79:1b:2c:4f:ed:08:87:74:bc:66:0b:1c:48:f9:5b:
e7:9a:bb:19:5b:25:97:15:3e:2d:09:70:58:d7:30:
9c:59:44:c6:03:ff:58:86:af:38:58:7b:19:1f:b9:
38:c3:9c:25:70:0e:30:bc:d9:f9:c7:86:9b:d7:3d:
f2:f8:ea:31:5a:f9:d5:68:69:fd:05:eb:21:d9:26:
a2:da:e4:4a:6f:c7:fb:5c:59:d4:31:f1:7b:67:97:
55:a5:61:7c:b2:f1:fb:57:33:db:4b:2c:06:31:9d:
bf:08:11:53:4e:54:90:27:96:68:e8:e3:20:cd:72:
66:0f:93:4f:55:43:bf:41:f3:4f:aa:7f:53:9f:1d:
e4:9f:0c:c0:8b:ca:89:a3:3f:00:f0:73:8c:d3:c5:
af:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:1A:FC:74:8D:E4:3D:E8:2D:A2:CB:1C:14:24:EE:0F:6C:8F:4F:AC
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/1-xr8dI3kPegtosscFCTuD2yPT6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.130.0/24
77.73.135.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:17:2d:bb:83:aa:59:82:59:06:5b:92:28:67:f5:8c:5d:0e:
2c:b0:3e:b9:1b:37:7a:18:33:e3:99:cb:4a:25:3b:6b:ea:ec:
76:ad:34:ba:cb:e0:44:7f:14:a7:6b:90:57:74:36:8a:42:2d:
f0:85:ba:48:b1:00:b5:f7:d0:27:b6:d2:46:4f:fd:ec:fc:62:
1d:44:99:3a:7a:38:32:d6:d3:08:d7:f7:ed:cf:0a:a8:2a:0d:
9e:81:51:46:e1:b5:f9:e3:12:c5:9d:cc:38:30:bf:3a:6e:05:
ff:46:3b:88:b4:58:34:0e:11:3f:5c:87:7e:c1:ef:64:87:65:
a2:26:5e:2f:78:a2:4d:17:22:28:3d:8c:89:ef:2b:eb:2b:83:
a4:9e:80:b7:ed:c4:23:b3:1b:f2:43:79:cf:f9:12:83:f8:59:
82:85:45:3e:80:bc:ba:3e:84:fa:2f:04:03:43:fd:cb:f6:24:
96:7c:13:f8:ac:12:c0:25:ea:3c:8d:22:fe:cd:3e:e9:d4:60:
58:76:08:70:4e:86:b5:35:cc:7c:18:55:57:cc:6d:3a:67:91:
db:47:bc:f8:c9:40:e8:c7:5d:45:a0:e4:b9:1a:77:5a:35:9f:
76:80:24:73:2c:63:01:13:4e:21:cd:29:c3:0a:25:7d:20:cb:
a2:dc:a0:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:32 2025 by rpki-client