Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/1L-uT6Rf57W1Arj-SYFmLcc2gr8.roa
File: 1L-uT6Rf57W1Arj-SYFmLcc2gr8.roa (raw, json)
Hash identifier: LCNO32AmBFDSGf2JQQH3di+MrS+/f20pH635r5I2adA=
Subject key identifier: D4:BF:AE:4F:A4:5F:E7:B5:B5:02:B8:FE:49:81:66:2D:C7:36:82:BF
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 05533058
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/1L-uT6Rf57W1Arj-SYFmLcc2gr8.roa
Signing time: Tue 08 Feb 2022 17:03:08 +0000
ROA not before: Tue 08 Feb 2022 17:03:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50386
IP address blocks: 77.73.131.0/24 maxlen: 24
77.73.128.0/24 maxlen: 24
77.73.132.0/24 maxlen: 24
77.73.129.0/24 maxlen: 24
77.73.130.0/24 maxlen: 24
77.73.134.0/24 maxlen: 24
77.73.135.0/24 maxlen: 24
77.73.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89337944 (0x5533058)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Feb 8 17:03:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4bfae4fa45fe7b5b502b8fe4981662dc73682bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:4c:c8:26:08:62:4e:4a:29:1d:1f:0e:d2:a9:
9e:07:4c:7b:d2:ac:66:8a:38:37:d4:81:94:b8:06:
79:e5:f8:68:b5:3d:fa:48:6f:6d:ae:5d:c2:2d:70:
f8:bb:e7:3d:d6:6d:6a:14:de:e0:4a:67:13:a9:e5:
03:bf:de:9c:0c:a7:37:06:73:d6:e3:7d:40:e5:51:
4e:44:fe:f3:7c:ac:a9:2a:b2:66:63:86:82:50:b6:
df:fa:dc:d7:92:5e:f7:1f:d1:78:b8:64:2c:1c:78:
0a:8f:f8:3d:e1:c0:67:82:22:13:93:93:49:a1:f0:
63:2a:1c:6e:cb:f4:8c:9c:cf:e4:c2:ce:aa:27:35:
e5:2c:00:b2:d9:d1:ec:b5:34:02:45:4a:51:60:ca:
cb:bd:57:2b:18:7e:e4:63:b2:7c:44:36:3d:78:d3:
d9:13:7a:38:cc:e3:7c:7f:57:22:ba:b9:b1:e6:e3:
8e:2d:6a:8a:89:85:bd:83:d4:d8:e7:dc:88:3a:35:
d0:9f:57:8e:85:1c:35:ec:e3:cc:09:76:64:f3:20:
b0:86:92:e3:0a:60:a0:6c:6e:46:22:0e:5b:24:d8:
ec:a9:a4:ca:be:18:ac:4e:3b:b4:82:3a:ce:07:d6:
b6:55:7c:ee:74:9c:ad:9c:09:84:97:4a:3e:c9:4a:
aa:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:BF:AE:4F:A4:5F:E7:B5:B5:02:B8:FE:49:81:66:2D:C7:36:82:BF
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/1L-uT6Rf57W1Arj-SYFmLcc2gr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.128.0/21
Signature Algorithm: sha256WithRSAEncryption
d0:ee:6c:f9:db:ff:f5:b8:1d:e2:40:6e:dd:94:04:e6:78:fc:
76:f3:7b:37:b6:df:2b:c5:90:78:54:11:de:1a:f9:85:c8:8b:
79:f1:97:23:89:87:38:f1:fa:c4:bc:17:94:cf:31:df:37:0c:
f6:43:6d:30:54:a3:dc:44:8d:75:7f:b4:51:0f:b6:3f:b3:5b:
9e:3c:d6:da:8b:29:26:a8:2e:df:eb:72:64:77:34:7a:76:0f:
0d:2c:02:5c:54:2c:45:62:cf:c6:45:c8:4b:01:bd:71:fe:37:
6a:32:2a:9a:4e:72:d2:a5:85:00:67:a2:bf:83:48:b7:84:d8:
1b:0b:67:a7:cd:69:f4:ce:d5:65:b7:3b:d2:f9:9f:10:c7:eb:
bd:dd:e8:56:0a:13:ff:bc:e8:90:4c:07:ab:d4:af:03:53:f0:
23:47:4e:8f:fd:79:b6:ba:39:6f:d7:6f:0e:ac:ec:7f:5a:4e:
97:8d:08:67:f3:b8:5c:6c:fa:06:40:21:22:fd:2b:eb:db:39:
36:32:91:df:2f:2f:78:d3:d9:4f:5e:71:e0:74:a6:20:2a:19:
6d:9a:b3:ff:83:b6:c9:95:82:83:b0:a4:d6:39:29:c9:cd:c1:
f3:1b:e2:97:11:05:32:ae:dc:87:17:ab:8a:dd:88:42:c2:de:
93:1f:a2:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:51 2023 by rpki-client on console-fra.rpki-client.org