Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/oqM_HWDOk70IBkQkKkUgdrGNx3Y.roa
File: oqM_HWDOk70IBkQkKkUgdrGNx3Y.roa (raw, json)
Hash identifier: RhFHsAhvw/pzqzYCE4DRE2T3TpehaW3yIsVwFkF1E2c=
Subject key identifier: A2:A3:3F:1D:60:CE:93:BD:08:06:44:24:2A:45:20:76:B1:8D:C7:76
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 055AA2E9
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/oqM_HWDOk70IBkQkKkUgdrGNx3Y.roa
Signing time: Thu 10 Feb 2022 12:16:55 +0000
ROA not before: Thu 10 Feb 2022 12:16:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204197
IP address blocks: 77.73.128.0/24 maxlen: 24
77.73.129.0/24 maxlen: 24
77.73.132.0/24 maxlen: 24
77.73.131.0/24 maxlen: 24
77.73.134.0/24 maxlen: 24
77.73.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89826025 (0x55aa2e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Feb 10 12:16:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2a33f1d60ce93bd080644242a452076b18dc776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bf:87:78:cc:cb:7e:89:79:73:b7:27:34:cc:
3e:a5:9f:88:d7:43:3d:8b:43:32:19:4f:23:c3:fa:
c6:a1:4e:82:95:93:ee:c7:61:42:55:50:d8:03:51:
76:d2:31:f0:e4:ed:ec:b2:1f:ad:d3:94:2d:e6:11:
d9:cb:e0:a2:19:30:35:69:b9:5c:31:36:98:40:ff:
1c:49:bb:21:0e:d6:3a:78:ef:88:7c:7b:96:fe:28:
8b:e9:37:91:db:7e:24:69:93:74:cd:0e:c9:91:03:
60:97:02:a0:de:24:72:cd:53:65:53:3e:1c:6d:90:
ba:28:95:88:c4:85:5f:64:3d:53:ce:46:e9:f3:5b:
93:dc:ed:da:54:4d:69:45:77:5b:4c:3f:dc:9a:23:
57:9d:a7:45:fa:3c:1e:02:15:c9:fa:4f:f4:68:85:
52:fe:64:bb:f6:f0:24:88:db:9d:59:03:23:f2:5d:
76:ca:ea:f0:63:a1:9c:6c:a8:69:86:20:f6:e4:7a:
7e:7c:3b:31:e5:d8:b3:22:28:a0:64:c8:87:fa:c5:
be:a4:e3:b4:06:b0:63:6d:a5:cd:3c:ca:ec:b1:72:
93:d5:3f:40:c8:4b:ce:cf:23:b8:b7:ab:ac:aa:e9:
35:b8:70:96:50:e9:23:fc:6b:64:1e:64:8c:2e:0b:
df:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A3:3F:1D:60:CE:93:BD:08:06:44:24:2A:45:20:76:B1:8D:C7:76
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/oqM_HWDOk70IBkQkKkUgdrGNx3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.128.0/23
77.73.131.0-77.73.134.255
Signature Algorithm: sha256WithRSAEncryption
57:03:ab:ce:dd:7f:94:74:a9:9d:4f:35:ab:2f:b3:6d:77:41:
51:71:ab:7c:98:9e:ee:a8:3a:7c:4f:2f:42:0b:ee:a5:d5:97:
58:28:21:2f:55:cb:42:5f:17:c5:6a:04:9e:0e:d7:4b:32:c9:
94:4f:d5:67:d2:72:3d:4d:12:ea:82:64:28:49:74:98:02:82:
54:28:73:ef:02:40:a3:eb:c3:46:67:0f:51:f9:13:5a:66:bd:
ca:d6:ee:c1:84:9b:3e:62:54:08:c8:66:67:9e:eb:75:83:76:
e0:a9:22:20:4d:3c:1b:4e:cf:36:4e:e5:d8:e8:b6:8c:3e:08:
83:c1:37:79:43:74:65:59:1f:7a:77:cd:4c:ab:75:8e:e4:a3:
53:4b:f9:c4:a0:17:01:7d:ac:97:4e:b3:a8:1c:0d:ad:b8:54:
dd:4c:92:ff:84:b7:59:3a:5d:09:65:44:f1:96:47:fc:87:60:
07:59:ac:89:8b:bb:65:55:bf:10:53:d6:56:99:df:08:34:f1:
82:29:e1:5a:12:22:48:75:f7:fa:c1:30:4a:0e:12:59:fb:e5:
3b:60:3f:37:59:81:0b:a4:3c:92:1f:20:37:7f:63:18:e4:c9:
2c:18:54:89:a9:c3:8f:cd:55:0b:bd:c1:de:1d:b4:23:5f:60:
33:34:ae:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:51 2023 by rpki-client on console-fra.rpki-client.org