Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/c43d4f-f52c-4387-9362-b3c01d1a6c85/1/56UP8GO-Uwre0IUmmQmHy3409xE.roa
File: 56UP8GO-Uwre0IUmmQmHy3409xE.roa (raw, json)
Hash identifier: 0PRRGOv8a3mJknkWEunvcRflR5zuzyAoI8YF3cFi//0=
Subject key identifier: E7:A5:0F:F0:63:BE:53:0A:DE:D0:85:26:99:09:87:CB:7E:34:F7:11
Certificate issuer: /CN=952156c8847f24d09da60d5f5b10542b2ecf9016
Certificate serial: 126D2167
Authority key identifier: 95:21:56:C8:84:7F:24:D0:9D:A6:0D:5F:5B:10:54:2B:2E:CF:90:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSFWyIR_JNCdpg1fWxBUKy7PkBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/c43d4f-f52c-4387-9362-b3c01d1a6c85/1/56UP8GO-Uwre0IUmmQmHy3409xE.roa
Signing time: Sat 01 Jan 2022 12:55:45 +0000
ROA not before: Sat 01 Jan 2022 12:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12387
IP address blocks: 77.237.192.0/19 maxlen: 19
77.237.206.0/23 maxlen: 23
77.237.204.0/23 maxlen: 23
77.237.208.0/23 maxlen: 23
2a00:c10::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 309141863 (0x126d2167)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=952156c8847f24d09da60d5f5b10542b2ecf9016
Validity
Not Before: Jan 1 12:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7a50ff063be530aded08526990987cb7e34f711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:db:64:2b:7c:b0:04:66:66:13:a8:a8:d6:14:
ab:2d:45:8e:ab:8d:3b:b4:fe:a0:ae:93:a7:f2:a4:
b9:29:8d:e4:e7:43:cf:ed:03:bb:13:9a:72:75:98:
ea:7b:20:1d:94:5a:a4:8d:5a:82:c1:d6:bc:50:f8:
32:50:b5:af:80:e5:2d:ce:79:81:d9:26:7f:56:89:
72:0d:86:6c:b9:35:a9:4b:f6:78:74:8f:83:9e:a3:
5b:67:b8:ba:50:a9:e7:ea:a8:0a:00:44:bc:3b:20:
8c:cd:46:3a:70:86:f1:64:b5:1a:43:13:2b:fa:ff:
17:c3:9e:d0:1c:7f:20:12:f3:bb:a3:20:9d:da:c3:
bb:80:46:f3:b9:46:2a:5d:c1:0c:b8:32:03:4d:7a:
ef:a1:34:24:2d:4d:a1:bf:6a:11:fe:d5:e2:31:35:
d0:81:89:0e:32:56:2a:a9:63:26:da:26:46:90:1d:
75:e4:89:ec:db:05:f6:ca:34:3d:90:99:a2:d5:0f:
cb:2b:81:fb:8d:34:61:22:9e:76:01:da:1a:de:cf:
97:9b:7c:3b:65:ca:e5:6a:8c:54:85:7f:23:7a:42:
88:42:c3:a0:0b:55:2b:ac:bb:6e:5d:dc:ff:b6:66:
de:5d:f6:bc:bd:3a:7e:87:16:c5:71:40:31:b0:ca:
fc:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A5:0F:F0:63:BE:53:0A:DE:D0:85:26:99:09:87:CB:7E:34:F7:11
X509v3 Authority Key Identifier:
keyid:95:21:56:C8:84:7F:24:D0:9D:A6:0D:5F:5B:10:54:2B:2E:CF:90:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSFWyIR_JNCdpg1fWxBUKy7PkBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c43d4f-f52c-4387-9362-b3c01d1a6c85/1/56UP8GO-Uwre0IUmmQmHy3409xE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c43d4f-f52c-4387-9362-b3c01d1a6c85/1/lSFWyIR_JNCdpg1fWxBUKy7PkBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.237.192.0/19
IPv6:
2a00:c10::/32
Signature Algorithm: sha256WithRSAEncryption
a0:32:d7:e5:71:a1:e1:3c:1c:13:2a:81:3f:60:b8:c6:ff:16:
9c:c6:4f:0f:2d:42:6c:76:d1:01:31:1a:cd:56:b9:7e:70:9f:
75:a4:e8:b5:fb:67:6f:16:34:b8:f7:a0:eb:0d:c5:6e:76:50:
f2:69:15:7c:c4:49:bf:fd:c8:73:72:3f:d9:1d:e5:df:ae:31:
0b:1c:59:46:aa:cf:a8:8b:30:c9:ac:f2:37:2c:8c:9c:59:76:
ad:1e:a2:10:e9:64:77:5c:1c:51:c2:46:fa:55:a1:d1:c8:56:
a1:df:94:3e:e3:2c:f7:ac:9f:a4:a3:cb:5e:b0:b9:98:f9:80:
69:79:f6:bb:d4:af:4a:de:b3:fe:6f:87:cf:4d:dd:7a:92:0c:
7d:8a:d1:8a:9c:8b:84:7b:5c:56:14:18:c7:40:26:fe:ec:f6:
75:c2:0f:11:0c:b4:9e:6e:59:58:88:5d:20:b3:cb:2d:93:ff:
7b:66:b9:73:85:7e:95:09:d9:96:bf:c9:ed:3f:5a:27:e1:ee:
8d:7e:b1:3f:46:b7:37:ea:0f:57:d0:4f:6a:47:17:96:d0:c1:
e4:ea:fb:61:4c:83:13:56:8f:8f:c1:67:e1:d2:8a:14:ac:8b:
ba:ad:07:21:d1:e6:40:a4:32:33:82:d2:68:ae:73:47:f7:fe:
23:88:1a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:28 2025 by rpki-client