Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/MOU-ob2GZo3r_pAHJY12tsV_VAU.roa
File: MOU-ob2GZo3r_pAHJY12tsV_VAU.roa (raw, json)
Hash identifier: bElXtHMCwmDgx8nP49AkDYAestRGuHrKSLKg1XZTx5A=
Subject key identifier: 30:E5:3E:A1:BD:86:66:8D:EB:FE:90:07:25:8D:76:B6:C5:7F:54:05
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 056B6BCF
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/MOU-ob2GZo3r_pAHJY12tsV_VAU.roa
Signing time: Fri 18 Feb 2022 09:59:32 +0000
ROA not before: Fri 18 Feb 2022 09:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18046
IP address blocks: 77.73.129.0/24 maxlen: 24
77.73.128.0/24 maxlen: 24
77.73.132.0/24 maxlen: 24
77.73.131.0/24 maxlen: 24
77.73.134.0/24 maxlen: 24
77.73.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90926031 (0x56b6bcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Feb 18 09:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30e53ea1bd86668debfe9007258d76b6c57f5405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:4c:e2:89:58:7c:a7:28:f9:a7:66:9e:93:cd:
9b:52:87:ac:df:eb:63:a2:76:b0:1e:5a:0f:29:77:
8c:c1:af:43:e1:b4:16:e2:ad:3f:fd:59:32:b5:9b:
57:21:06:2f:c7:5d:fa:f9:e7:20:8e:8e:ce:5a:83:
5c:26:89:37:fe:a4:d8:f4:13:3e:90:5e:ae:71:11:
12:88:33:8e:67:84:9f:7d:5a:a1:a8:be:92:52:b2:
34:d9:be:60:33:6c:dc:5b:0e:c0:ab:31:31:12:da:
ff:9c:ae:d5:7e:b2:6f:12:52:77:94:2f:39:28:52:
08:0b:77:79:bc:f8:92:94:03:5f:7d:69:ce:3b:fe:
2e:8b:86:fa:97:ae:b0:b2:93:70:d3:97:4f:7a:a3:
5c:4c:56:0e:43:77:21:d7:6f:00:21:74:58:45:f2:
aa:d0:e1:f2:80:0a:6a:ae:57:59:be:f0:55:1c:c7:
df:89:c8:aa:8a:70:f7:2e:74:f7:7f:2c:15:02:a3:
d7:a1:30:95:59:28:22:cb:9f:5a:d9:11:80:7f:b5:
d0:e4:b0:19:f7:09:8e:96:78:61:5b:f3:03:32:19:
4a:9b:8b:07:27:c4:7f:3c:be:04:21:9c:14:a7:22:
27:c7:8f:24:7b:74:b9:39:69:4b:0c:1d:eb:16:cd:
e2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:E5:3E:A1:BD:86:66:8D:EB:FE:90:07:25:8D:76:B6:C5:7F:54:05
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/MOU-ob2GZo3r_pAHJY12tsV_VAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.128.0/23
77.73.131.0-77.73.134.255
Signature Algorithm: sha256WithRSAEncryption
65:7a:26:57:55:53:59:33:eb:a4:dd:05:3a:7e:d3:42:53:0c:
b0:86:84:14:3f:95:2d:b2:30:24:2a:42:68:18:ee:ea:2e:e5:
47:23:54:32:02:5d:74:cf:c1:9f:7c:8d:3b:7c:5c:93:16:7a:
33:73:99:94:ac:fa:e2:b3:99:3a:7e:f7:33:2f:f1:26:cf:17:
2e:85:26:44:a6:4f:c7:b9:d4:1a:2a:fa:49:a3:c6:48:5a:33:
b6:11:80:ee:cd:12:88:93:b9:c9:79:b8:3f:22:14:9f:8e:8e:
f9:d8:d4:ef:67:70:e7:45:a3:19:4f:58:f9:dc:c9:4b:c6:49:
57:0f:07:e0:18:ec:f1:c2:56:71:f9:f3:83:0e:9f:88:ab:a2:
ad:84:fc:e0:f4:43:0f:f2:52:b7:f8:10:60:8c:83:e9:9d:b4:
6c:45:9e:03:7b:17:9f:57:8a:18:44:f4:03:31:0d:d3:a5:d2:
2c:c0:1d:fa:bd:60:33:ea:42:62:3c:17:11:d1:b5:91:c6:4d:
2b:e3:c4:a7:18:b4:21:7f:78:22:6f:2d:4f:03:a9:27:91:a4:
24:cd:58:f4:9e:bb:87:42:69:40:e6:ca:53:16:f1:5f:c0:20:
1c:18:53:40:72:73:85:34:9d:97:c2:de:9e:44:16:a3:9e:28:
dd:81:3f:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:23 2025 by rpki-client