Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/5q7b7OnlWp-9zeIG-k6IUn3WNu4.roa
File: 5q7b7OnlWp-9zeIG-k6IUn3WNu4.roa (raw, json)
Hash identifier: xGmyphGEfIT+jYM0zRzpjXAFhV3takE94jJO3lagLSA=
Subject key identifier: E6:AE:DB:EC:E9:E5:5A:9F:BD:CD:E2:06:FA:4E:88:52:7D:D6:36:EE
Certificate issuer: /CN=7415fec4ae76b24e4f02991649917b99b740044a
Certificate serial: 0185299C4F01472ED0A699D613D80EDB1B1F
Authority key identifier: 74:15:FE:C4:AE:76:B2:4E:4F:02:99:16:49:91:7B:99:B7:40:04:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBX-xK52sk5PApkWSZF7mbdABEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/5q7b7OnlWp-9zeIG-k6IUn3WNu4.roa
Signing time: Mon 19 Dec 2022 08:59:47 +0000
ROA not before: Mon 19 Dec 2022 08:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42031
IP address blocks: 77.105.132.0/24 maxlen: 24
77.105.131.0/24 maxlen: 24
77.105.130.0/24 maxlen: 24
77.105.129.0/24 maxlen: 24
77.105.128.0/24 maxlen: 24
77.105.135.0/24 maxlen: 24
77.105.134.0/24 maxlen: 24
77.105.133.0/24 maxlen: 24
77.105.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:29:9c:4f:01:47:2e:d0:a6:99:d6:13:d8:0e:db:1b:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7415fec4ae76b24e4f02991649917b99b740044a
Validity
Not Before: Dec 19 08:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6aedbece9e55a9fbdcde206fa4e88527dd636ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:58:b6:2b:06:f1:cc:eb:f9:8d:e5:d4:3f:f6:
99:e0:99:e1:2e:08:a4:dc:e0:60:af:f4:38:0f:6e:
82:e4:40:0d:1d:72:76:f0:79:ee:a9:d5:40:47:bc:
05:76:95:5d:17:95:46:db:e7:ea:0c:7d:83:ac:c4:
9b:d2:61:d9:bd:a2:69:cc:98:a1:cb:d2:e3:8f:8d:
7c:30:05:f8:a2:af:e7:d2:98:32:da:4d:59:20:6c:
d3:ed:e0:23:89:68:48:8e:1a:77:2c:2b:96:f8:1c:
40:cf:fa:0e:26:f1:a1:00:c1:d2:98:41:1f:9b:50:
0b:1d:52:59:17:b3:89:82:e4:dc:6c:b6:6e:d9:a5:
90:17:ed:cf:86:ac:ce:7c:66:12:03:0f:c3:9c:cd:
c3:e0:2b:53:54:d3:96:02:e6:a7:99:fa:6f:e0:c4:
fe:26:34:70:e9:5d:64:4c:51:51:52:a5:dc:c4:5e:
cc:5b:3a:f4:0f:90:68:4a:3e:73:1b:15:71:07:16:
ec:aa:88:a6:b1:6c:91:d8:84:50:1d:16:5d:bb:1e:
d8:2d:7a:1c:d0:5b:93:99:ab:1c:24:2f:4e:6f:96:
ef:7e:8d:35:05:85:28:5d:58:ad:b4:24:b7:c9:e8:
5e:23:87:78:ae:2e:a7:58:a3:4b:18:7a:28:a9:70:
7c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:AE:DB:EC:E9:E5:5A:9F:BD:CD:E2:06:FA:4E:88:52:7D:D6:36:EE
X509v3 Authority Key Identifier:
keyid:74:15:FE:C4:AE:76:B2:4E:4F:02:99:16:49:91:7B:99:B7:40:04:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBX-xK52sk5PApkWSZF7mbdABEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/5q7b7OnlWp-9zeIG-k6IUn3WNu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/dBX-xK52sk5PApkWSZF7mbdABEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.128.0/21
77.105.144.0/24
Signature Algorithm: sha256WithRSAEncryption
53:d8:3f:a7:92:cc:cc:69:df:9f:1b:a0:bc:27:64:72:62:1c:
37:0b:30:6b:a4:6a:fd:74:e6:7c:de:5f:41:28:1c:61:6b:ed:
cb:81:59:c9:b9:42:aa:84:cb:b0:fe:b0:67:48:d9:ce:1e:c9:
b3:b5:a6:ab:6d:fd:94:e7:39:38:91:e4:d9:fc:33:1c:c8:d8:
ac:bf:a5:d5:7c:e4:81:aa:25:0d:90:f2:c6:a6:6b:c0:64:8e:
bc:36:33:73:25:75:d3:5c:8c:ac:84:93:de:d5:fc:c1:72:c5:
8c:bc:70:e9:f5:61:92:31:a1:3e:16:ac:e1:07:64:d4:70:d4:
11:c4:92:d2:ca:b3:76:3f:09:5d:be:2d:f1:b3:c0:90:6f:8b:
a8:f1:21:cf:ca:ef:9e:09:79:6f:bb:ac:67:1d:ee:fb:56:c7:
78:80:e5:16:17:07:37:41:21:e7:48:fa:e7:93:8b:f7:2e:c6:
f0:d6:9a:ab:fc:54:f8:fd:07:06:08:7f:17:62:0e:b2:6d:af:
28:1e:34:33:c7:75:4d:1c:d6:c8:ca:ff:d9:60:99:2f:e0:fb:
91:0c:3c:5a:b6:66:0f:03:d9:85:bd:42:f5:42:72:e8:88:79:
e4:cc:c9:be:e7:c0:a2:d1:5a:58:50:53:41:8e:1a:eb:dd:32:
6d:5d:5e:b6
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYUpnE8BRy7QppnWE9gO2xsfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0MTVmZWM0YWU3NmIyNGU0ZjAyOTkxNjQ5OTE3Yjk5Yjc0
MDA0NGEwHhcNMjIxMjE5MDg1OTQ3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNmFlZGJlY2U5ZTU1YTlmYmRjZGUyMDZmYTRlODg1MjdkZDYzNmVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh1i2KwbxzOv5jeXUP/aZ4JnhLgik
3OBgr/Q4D26C5EANHXJ28HnuqdVAR7wFdpVdF5VG2+fqDH2DrMSb0mHZvaJpzJih
y9Ljj418MAX4oq/n0pgy2k1ZIGzT7eAjiWhIjhp3LCuW+BxAz/oOJvGhAMHSmEEf
m1ALHVJZF7OJguTcbLZu2aWQF+3PhqzOfGYSAw/DnM3D4CtTVNOWAuanmfpv4MT+
JjRw6V1kTFFRUqXcxF7MWzr0D5BoSj5zGxVxBxbsqoimsWyR2IRQHRZdux7YLXoc
0FuTmascJC9Ob5bvfo01BYUoXVittCS3yeheI4d4ri6nWKNLGHooqXB8FwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOau2+zp5Vqfvc3iBvpOiFJ91jbuMB8GA1UdIwQY
MBaAFHQV/sSudrJOTwKZFkmRe5m3QARKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEJYLXhLNTJzazVQQXBrV1NaRjdtYmRBQkVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy85ODc5NzktOTY5My00NWUzLTg1YmEt
ZWQ1MzU4YjZkYTMxLzEvNXE3YjdPbmxXcC05emVJRy1rNklVbjNXTnU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy85ODc5NzktOTY5My00NWUzLTg1YmEtZWQ1MzU4YjZkYTMx
LzEvZEJYLXhLNTJzazVQQXBrV1NaRjdtYmRBQkVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDTWmAAwQA
TWmQMA0GCSqGSIb3DQEBCwUAA4IBAQBT2D+nkszMad+fG6C8J2RyYhw3CzBrpGr9
dOZ83l9BKBxha+3LgVnJuUKqhMuw/rBnSNnOHsmztaarbf2U5zk4keTZ/DMcyNis
v6XVfOSBqiUNkPLGpmvAZI68NjNzJXXTXIyshJPe1fzBcsWMvHDp9WGSMaE+Fqzh
B2TUcNQRxJLSyrN2Pwldvi3xs8CQb4uo8SHPyu+eCXlvu6xnHe77Vsd4gOUWFwc3
QSHnSPrnk4v3Lsbw1pqr/FT4/QcGCH8XYg6yba8oHjQzx3VNHNbIyv/ZYJkv4PuR
DDxatmYPA9mFvUL1QnLoiHnkzMm+58Ci0VpYUFNBjhrr3TJtXV62
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:31 2024 by rpki-client on console-ams.rpki-client.org