Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/dKO0ybE5v_b3dRs7fZBxIg5gnyw.roa
File: dKO0ybE5v_b3dRs7fZBxIg5gnyw.roa (raw, json)
Hash identifier: O/zs1PpOnY93cKGh5zf84feYcR2ApuiUHkMD8XXihAg=
Subject key identifier: 74:A3:B4:C9:B1:39:BF:F6:F7:75:1B:3B:7D:90:71:22:0E:60:9F:2C
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 06215A8C
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/dKO0ybE5v_b3dRs7fZBxIg5gnyw.roa
Signing time: Fri 06 May 2022 06:42:16 +0000
ROA not before: Fri 06 May 2022 06:42:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 77.73.129.0/24 maxlen: 24
77.73.132.0/24 maxlen: 24
77.73.134.0/24 maxlen: 24
77.73.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102849164 (0x6215a8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: May 6 06:42:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74a3b4c9b139bff6f7751b3b7d9071220e609f2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:73:62:93:9b:7a:15:11:35:d2:99:23:6d:ec:
5e:3c:ce:14:de:f8:fb:03:93:26:38:d7:f4:e2:2a:
c7:03:c2:bb:ff:1d:22:79:eb:35:8f:e0:4d:cd:ec:
32:74:23:38:6b:7b:c1:39:04:74:75:e8:8b:a4:c3:
98:f8:cf:20:7d:09:59:37:18:c7:8a:50:34:a2:dc:
d5:7c:e9:6f:02:4c:2c:24:c5:ee:e8:bb:c5:ab:11:
6c:31:af:9d:e9:a0:90:ab:28:46:51:6e:eb:c9:c3:
b2:13:58:fd:37:2f:31:e9:54:37:d1:7e:59:3e:d2:
be:19:a5:a9:3e:72:9e:c2:d5:04:09:cf:4a:1b:5f:
1c:d3:2f:cb:82:0c:d7:15:db:c8:41:fa:bd:f6:d3:
37:2a:8e:69:90:8d:c0:c0:b6:96:a7:0e:ce:80:35:
dc:41:a5:29:6e:36:d7:96:86:3b:d1:d9:02:57:41:
fd:c9:c8:58:09:ea:da:df:f7:bd:a9:cf:b2:96:b8:
a9:7b:09:08:6d:6e:67:e8:62:f2:78:0a:ec:24:e4:
a5:ed:b4:67:06:cd:09:88:a9:43:2b:1f:63:94:b1:
68:f6:f1:f3:58:dd:04:f3:2a:e8:cb:ac:01:97:e7:
f8:28:e8:42:47:3e:5d:43:d0:c6:41:1f:87:c8:14:
0f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:A3:B4:C9:B1:39:BF:F6:F7:75:1B:3B:7D:90:71:22:0E:60:9F:2C
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/dKO0ybE5v_b3dRs7fZBxIg5gnyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.129.0/24
77.73.132.0-77.73.134.255
Signature Algorithm: sha256WithRSAEncryption
5c:2f:18:0d:42:73:05:09:c0:4f:fa:17:d0:f0:e9:b4:61:e2:
ae:b0:cb:b7:3e:81:4f:5c:82:df:5e:12:9d:62:b8:c3:df:9a:
a4:e9:ec:ba:2d:c3:bf:28:97:17:f3:62:61:20:7b:d8:97:71:
9d:aa:30:52:92:c1:11:e3:dc:00:26:2d:8a:f9:62:72:aa:9e:
10:40:e9:35:a7:f8:ba:e8:c6:e7:b4:1a:a8:67:db:84:65:0a:
1f:83:e9:95:0b:99:27:ee:cc:c6:41:9b:bb:88:9d:0f:c9:93:
b0:0e:21:cc:99:3e:5d:e3:58:18:9e:30:03:8a:4d:a8:5d:8d:
5f:04:41:b2:97:b6:9f:69:fb:f8:b0:7b:61:36:45:ae:03:bb:
cf:9f:a8:a7:b6:5e:2e:35:b1:88:44:88:42:e7:7a:ba:ff:ee:
ff:78:53:cf:9b:ca:ea:b1:bc:2c:6c:8e:10:d8:fe:74:28:47:
53:e4:83:3c:04:b7:90:1c:98:50:24:54:0d:1e:be:a6:2b:c1:
ea:39:fc:b2:6f:46:96:04:2b:4c:25:7c:c8:0e:5e:2c:d6:fb:
fe:d2:4b:14:af:4a:8d:36:c6:ea:26:82:2f:b9:3d:53:7b:b7:
65:02:67:b7:24:f7:6f:94:24:a4:ee:a8:08:0f:98:37:59:8c:
19:f7:3c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:37 2023 by rpki-client on console-ams.rpki-client.org