Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4ba46f-3469-42b0-9b9e-61949356a9a0/1/yHV67dXIBz3q5W2VpQXPLxWI8W8.roa
File: yHV67dXIBz3q5W2VpQXPLxWI8W8.roa (raw, json)
Hash identifier: NwoeoVOcHmHk3T89mT2mlu5jgEuaVa+ZjGE77MK7xB4=
Subject key identifier: C8:75:7A:ED:D5:C8:07:3D:EA:E5:6D:95:A5:05:CF:2F:15:88:F1:6F
Certificate issuer: /CN=d44820729a0f9abfb6cac3b5f96c27198d76391b
Certificate serial: 06B669E6
Authority key identifier: D4:48:20:72:9A:0F:9A:BF:B6:CA:C3:B5:F9:6C:27:19:8D:76:39:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1EggcpoPmr-2ysO1-WwnGY12ORs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4ba46f-3469-42b0-9b9e-61949356a9a0/1/yHV67dXIBz3q5W2VpQXPLxWI8W8.roa
Signing time: Sat 01 Jan 2022 01:57:57 +0000
ROA not before: Sat 01 Jan 2022 01:57:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42228
IP address blocks: 77.108.128.0/18 maxlen: 18
45.137.48.0/22 maxlen: 22
77.108.154.0/24 maxlen: 24
77.108.158.0/24 maxlen: 24
77.108.160.0/24 maxlen: 24
2a00:6300::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112617958 (0x6b669e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d44820729a0f9abfb6cac3b5f96c27198d76391b
Validity
Not Before: Jan 1 01:57:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8757aedd5c8073deae56d95a505cf2f1588f16f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4c:ee:fb:eb:dc:77:2e:9f:ff:61:b9:b0:43:
a8:ca:27:53:b8:84:4f:89:82:b3:2b:22:59:64:4d:
83:27:9b:a8:26:db:83:d9:ff:40:3f:a6:41:ee:ea:
9c:86:20:3c:20:e6:64:be:b3:94:d6:97:aa:18:77:
12:ab:9f:95:66:99:67:a4:d6:a4:4a:9d:03:18:2e:
68:23:ed:73:bf:45:15:b5:65:0d:bb:37:97:a2:08:
a5:02:cd:b7:e9:fb:43:29:10:14:fd:2e:aa:54:83:
51:61:8b:27:86:cd:f4:13:c4:22:47:99:16:ff:65:
09:5e:fb:40:8f:da:93:a3:5e:c5:bf:e1:5a:d7:48:
f1:61:12:7b:9e:5b:10:04:b0:23:22:59:e5:17:c7:
eb:36:98:77:1d:06:10:2e:c2:0a:4d:4a:2d:e0:2e:
66:dd:f5:a9:c5:6c:c2:fd:c6:6c:06:a6:91:f2:75:
bb:68:63:08:17:79:3f:08:b8:51:ee:5b:2f:1e:e9:
61:b7:c3:24:6b:2f:46:9a:07:7d:3f:a5:a7:aa:37:
4b:23:04:6f:f2:e0:80:0c:fd:a0:88:d9:5e:37:8b:
45:c6:ae:30:2c:e2:9b:56:72:be:9a:5c:1f:1a:c4:
97:c2:21:34:bf:16:72:36:53:8d:e9:6e:ec:8e:ab:
9f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:75:7A:ED:D5:C8:07:3D:EA:E5:6D:95:A5:05:CF:2F:15:88:F1:6F
X509v3 Authority Key Identifier:
keyid:D4:48:20:72:9A:0F:9A:BF:B6:CA:C3:B5:F9:6C:27:19:8D:76:39:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1EggcpoPmr-2ysO1-WwnGY12ORs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4ba46f-3469-42b0-9b9e-61949356a9a0/1/yHV67dXIBz3q5W2VpQXPLxWI8W8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4ba46f-3469-42b0-9b9e-61949356a9a0/1/1EggcpoPmr-2ysO1-WwnGY12ORs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.48.0/22
77.108.128.0/18
IPv6:
2a00:6300::/32
Signature Algorithm: sha256WithRSAEncryption
01:ea:ec:6d:53:10:14:0f:9e:a5:66:c2:d4:bd:a3:3b:36:62:
d8:d6:37:88:c4:ed:a3:01:fe:c6:8f:00:60:12:a2:67:5b:85:
8e:fb:14:01:3c:cd:9f:0c:f5:4a:4a:28:87:35:ab:59:57:8e:
e0:a8:09:97:ee:40:6e:f6:0a:6c:55:15:36:cc:aa:b1:89:94:
0a:5c:d5:23:c7:3c:5f:88:b5:dc:7a:a4:9f:a2:c4:f9:6d:4a:
b8:fc:80:89:eb:a3:eb:80:66:13:d9:a4:ac:a6:3a:f3:9c:da:
9f:34:93:c4:2d:7d:dc:91:83:c8:5e:89:8b:16:c6:7d:89:e2:
84:89:3f:57:ab:a2:6a:b1:3d:c7:87:a5:3c:6f:71:92:f4:1f:
06:21:59:96:56:df:03:28:32:0b:40:f7:44:90:66:f6:6e:6b:
86:47:2a:de:bb:4c:16:58:be:10:da:26:42:8f:57:da:74:61:
29:16:c6:f9:d6:a1:c5:2c:8f:f1:0f:d9:69:4c:77:fc:5a:11:
27:15:36:0a:78:06:14:37:9a:b5:eb:81:6d:e2:b8:fc:b4:e3:
e5:d4:e6:6f:a6:9c:a0:87:bc:3b:85:8e:46:26:39:77:f8:d7:
47:bc:fe:fa:94:69:36:33:d3:f0:52:0b:bf:d7:7f:85:72:33:
01:37:18:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:17 2024 by rpki-client on console-ams.rpki-client.org