Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/54c70d-f57a-4a56-b20c-1399ad37c4e3/1/aqP9_I6rYw8Ix0OLmOu6M7J24C0.roa
File: aqP9_I6rYw8Ix0OLmOu6M7J24C0.roa (raw, json)
Hash identifier: GHyHCwFUi1sfTANqDX82pMjjQ12egAko8E5GNAq79XE=
Subject key identifier: 6A:A3:FD:FC:8E:AB:63:0F:08:C7:43:8B:98:EB:BA:33:B2:76:E0:2D
Certificate issuer: /CN=432ebe0b60bae2ecbf21ef14fc5fdc9ddb9a3f21
Certificate serial: 03591605
Authority key identifier: 43:2E:BE:0B:60:BA:E2:EC:BF:21:EF:14:FC:5F:DC:9D:DB:9A:3F:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qy6-C2C64uy_Ie8U_F_cnduaPyE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/54c70d-f57a-4a56-b20c-1399ad37c4e3/1/aqP9_I6rYw8Ix0OLmOu6M7J24C0.roa
Signing time: Sat 01 Jan 2022 09:04:27 +0000
ROA not before: Sat 01 Jan 2022 09:04:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 77.73.210.0/24 maxlen: 24
77.73.209.0/24 maxlen: 24
77.73.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56169989 (0x3591605)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432ebe0b60bae2ecbf21ef14fc5fdc9ddb9a3f21
Validity
Not Before: Jan 1 09:04:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6aa3fdfc8eab630f08c7438b98ebba33b276e02d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6e:02:00:3b:e0:65:31:89:55:ff:f2:92:35:
fb:05:1b:89:af:72:af:79:0e:96:da:7f:18:03:fd:
3d:08:9c:46:29:3b:fd:c8:d0:1f:c7:2c:7f:90:e4:
87:92:12:2e:6f:55:80:14:a5:bd:ee:65:b5:02:e3:
5b:63:3d:fa:60:0e:9e:8e:6e:bb:65:5c:1f:5e:ea:
68:76:7b:f8:1a:98:e7:2c:79:16:09:68:2d:d5:06:
ba:b8:b4:2a:35:6a:6a:bc:7f:08:cc:46:fc:3a:2a:
c5:37:26:58:df:03:4d:40:4e:53:8d:3f:7b:8c:7b:
e8:0e:8d:f9:10:48:92:1c:b3:0e:60:db:a6:de:cd:
16:d1:a0:71:85:15:2a:c1:fe:c3:35:69:91:99:18:
08:12:fb:26:d4:61:77:d1:ed:3d:e3:c8:b7:2e:8f:
a3:82:c0:e3:40:91:28:04:84:99:b9:c7:77:1f:06:
63:fa:79:09:f8:45:77:85:28:4c:b4:d3:a0:3a:32:
00:9d:30:30:3f:cb:91:a6:55:63:6e:b5:38:59:da:
9d:08:2a:c8:84:70:6f:a2:fa:e1:a4:68:1c:ce:11:
2f:38:98:20:cd:42:03:68:28:4b:40:48:a0:fd:59:
ea:e4:72:d0:16:02:06:cc:66:e4:aa:f9:2d:bc:53:
84:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:A3:FD:FC:8E:AB:63:0F:08:C7:43:8B:98:EB:BA:33:B2:76:E0:2D
X509v3 Authority Key Identifier:
keyid:43:2E:BE:0B:60:BA:E2:EC:BF:21:EF:14:FC:5F:DC:9D:DB:9A:3F:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qy6-C2C64uy_Ie8U_F_cnduaPyE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/54c70d-f57a-4a56-b20c-1399ad37c4e3/1/aqP9_I6rYw8Ix0OLmOu6M7J24C0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/54c70d-f57a-4a56-b20c-1399ad37c4e3/1/Qy6-C2C64uy_Ie8U_F_cnduaPyE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.208.0-77.73.210.255
Signature Algorithm: sha256WithRSAEncryption
9d:d2:b9:3d:11:9d:a8:06:64:89:90:61:eb:b5:25:42:e6:37:
51:8d:84:94:0f:5d:e7:ab:9f:14:38:6b:10:0f:87:71:3e:4b:
31:78:f9:01:77:ab:a5:ac:c0:ea:48:fe:81:38:f3:00:7b:58:
a5:7b:1c:0d:75:f0:bd:c0:98:f9:8b:99:48:c4:d7:8b:20:2b:
0f:ca:1a:95:14:9e:29:95:e3:d6:01:dd:2a:c5:ca:42:f6:5e:
93:e2:73:39:9e:8b:59:d7:94:c5:f6:bd:23:bf:4e:45:18:16:
31:2e:87:2f:c7:75:8a:e2:40:48:7a:88:69:73:b2:a0:d0:24:
93:5e:93:94:3d:5b:f0:e9:34:e7:16:c4:3d:bf:3a:87:af:66:
72:c5:53:20:df:66:37:83:12:d3:83:94:1d:63:57:1d:56:2d:
04:3b:70:8a:33:b0:c7:e5:ac:37:f9:c4:50:23:5b:3e:51:8a:
bb:5a:1b:04:7a:33:68:f5:f4:80:d7:da:06:d6:51:76:b5:f8:
f8:96:00:f0:78:2f:8c:5a:4e:a0:0d:92:b6:b4:15:07:fc:86:
5d:c6:06:5a:22:8c:8a:cc:68:cc:50:61:a2:c6:b5:0e:11:25:
dc:32:e7:07:60:73:00:9a:56:0c:fd:13:16:3d:f9:5b:ee:26:
7f:e3:66:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:55 2024 by rpki-client on console-fra.rpki-client.org