Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/sfX7weicPlJ6F0FXpTKWLaS3kbU.roa
File: sfX7weicPlJ6F0FXpTKWLaS3kbU.roa (raw, json)
Hash identifier: oDe3g/TJGC3yNeNcNSN3fsjMsuBs2RorylKkVXwqXmM=
Subject key identifier: B1:F5:FB:C1:E8:9C:3E:52:7A:17:41:57:A5:32:96:2D:A4:B7:91:B5
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 05D6B63B
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/sfX7weicPlJ6F0FXpTKWLaS3kbU.roa
Signing time: Tue 05 Apr 2022 13:23:53 +0000
ROA not before: Tue 05 Apr 2022 13:23:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50386
IP address blocks: 77.73.132.0/24 maxlen: 24
77.73.129.0/24 maxlen: 24
77.73.130.0/24 maxlen: 24
77.73.134.0/24 maxlen: 24
77.73.135.0/24 maxlen: 24
77.73.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97957435 (0x5d6b63b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Apr 5 13:23:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1f5fbc1e89c3e527a174157a532962da4b791b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2a:5f:9c:95:1c:10:2a:d9:35:93:40:8d:94:
56:d8:df:13:90:92:1c:2a:d9:41:4b:bf:37:0c:22:
b1:44:46:69:8c:83:23:25:53:73:43:5c:7d:03:e4:
a4:78:f0:90:6c:6a:2d:5f:dd:b3:36:eb:dd:80:18:
ff:73:32:f6:85:8f:31:e0:6b:f9:48:d6:07:fb:84:
e3:00:3c:96:01:70:18:b5:ed:d9:b2:d0:a9:66:81:
91:75:37:02:33:3e:8a:82:29:d7:30:d5:96:8c:bb:
15:03:33:75:04:a7:58:bf:0e:85:d1:b0:51:cf:7a:
8d:e2:06:73:73:92:5a:58:3b:a8:d0:02:cf:ca:3a:
a9:6e:b3:0f:f4:7d:69:44:f9:7a:eb:8e:22:0c:bb:
29:8a:bb:29:ba:a6:78:46:a1:07:02:58:57:28:8a:
9f:10:8c:4f:79:e7:cd:fe:1f:fc:db:83:d6:98:ab:
dd:f2:99:90:e4:7e:ad:8f:b5:1f:6b:21:cf:5b:3c:
e3:19:5b:4f:97:5f:82:54:11:46:47:cb:7d:ae:d2:
03:d6:3f:c3:3a:bb:02:ea:ea:49:40:69:bf:b2:8b:
a7:1e:b7:8a:fb:76:1e:ba:b0:63:e9:11:e1:5c:82:
54:b4:2b:6d:f6:1a:9f:3c:8f:af:05:9d:ca:89:c3:
3e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:F5:FB:C1:E8:9C:3E:52:7A:17:41:57:A5:32:96:2D:A4:B7:91:B5
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/sfX7weicPlJ6F0FXpTKWLaS3kbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.129.0-77.73.130.255
77.73.132.0/22
Signature Algorithm: sha256WithRSAEncryption
57:ad:46:b6:96:69:bf:68:ae:9f:d8:04:b4:52:11:46:aa:be:
56:b6:bd:68:64:e0:ab:40:20:d1:10:9e:49:7c:53:6d:34:a2:
1f:c5:92:64:6a:0d:6d:fe:5d:be:ea:64:ae:ba:d9:9e:6c:ae:
14:f2:c8:eb:80:d8:fe:ed:fa:a5:a2:a6:ed:85:91:05:ca:6c:
33:f8:86:ed:d5:e6:21:e8:96:7c:72:c1:5c:e3:88:a0:40:b2:
47:9e:73:17:85:01:0c:d8:c9:67:c2:df:88:42:18:88:cc:0e:
c1:3e:b6:a0:4e:28:a7:cb:dd:d7:46:6f:c1:ad:13:ff:96:ce:
94:0e:5e:4b:76:c9:54:36:d8:a0:70:8c:12:f2:4e:af:f3:18:
8f:93:40:f0:ef:79:03:92:e3:6e:50:21:9b:32:4e:a0:66:21:
29:f2:4d:9d:0e:b5:34:07:74:14:00:9a:cb:62:0c:10:55:7b:
71:cc:ce:d5:44:7c:b1:2a:23:68:cc:5a:37:df:07:09:ae:4f:
a7:a6:2e:08:4f:54:1e:75:17:b7:c5:d4:d4:6b:78:a5:f7:29:
36:5c:ec:2f:b3:43:4a:dd:6e:9b:93:5f:0e:a1:ac:9e:38:92:
cb:49:fd:4b:2c:96:5c:2d:02:e1:d9:5b:c0:42:b9:ca:16:88:
04:e6:b6:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:51 2023 by rpki-client on console-fra.rpki-client.org