Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/Niy-zLoNGm_l1bCaxKikS8aGonA.roa
File: Niy-zLoNGm_l1bCaxKikS8aGonA.roa (raw, json)
Hash identifier: i3nibwq2tRrYP3MxT41eT1Zc9VaziKgvlm+6ZamtlMU=
Subject key identifier: 36:2C:BE:CC:BA:0D:1A:6F:E5:D5:B0:9A:C4:A8:A4:4B:C6:86:A2:70
Certificate issuer: /CN=03c33e43ef56527a169d6ac6d7e62c63d1973051
Certificate serial: 0181EDFC6496040077132E9D60E03EFFD09F
Authority key identifier: 03:C3:3E:43:EF:56:52:7A:16:9D:6A:C6:D7:E6:2C:63:D1:97:30:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A8M-Q-9WUnoWnWrG1-YsY9GXMFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/Niy-zLoNGm_l1bCaxKikS8aGonA.roa
Signing time: Mon 11 Jul 2022 15:59:09 +0000
ROA not before: Mon 11 Jul 2022 15:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198930
IP address blocks: 77.87.185.0/24 maxlen: 24
185.66.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ed:fc:64:96:04:00:77:13:2e:9d:60:e0:3e:ff:d0:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03c33e43ef56527a169d6ac6d7e62c63d1973051
Validity
Not Before: Jul 11 15:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=362cbeccba0d1a6fe5d5b09ac4a8a44bc686a270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:31:b3:06:a0:f4:9f:40:6c:48:7d:28:ce:50:
83:ea:07:f5:d1:b7:fa:a0:c6:57:f9:98:b4:f3:31:
5c:73:6f:18:0a:24:ab:46:c4:ca:38:08:a1:3d:23:
9a:d4:1d:57:31:85:d4:e4:79:af:0f:99:fc:41:5a:
8a:f9:e9:d9:de:a6:ca:19:1a:10:a0:4f:5d:af:9e:
fe:de:35:38:15:e4:21:f1:f5:7f:06:e8:a4:a7:87:
70:e5:2c:ad:e5:9d:4f:88:40:94:b5:26:25:c3:4b:
5a:1e:43:53:f4:a5:e2:0d:aa:5f:77:e4:00:a1:59:
fd:38:77:07:6c:3c:d7:25:0d:51:45:9a:c4:8b:2a:
69:e6:eb:aa:a4:fe:00:50:2c:99:3b:3d:79:64:07:
34:9a:75:4e:f4:10:ef:75:29:c9:71:54:f1:dd:d8:
cc:9f:68:b7:f2:5e:42:4c:95:ea:68:a1:1a:65:b7:
47:4c:27:94:3a:46:a3:82:b0:51:83:56:50:3f:34:
9d:02:f2:05:d5:ef:3b:3e:5a:b4:a2:11:aa:10:4e:
60:df:8b:a7:91:77:e3:05:14:c2:80:89:75:36:e4:
df:e3:80:bf:17:14:f3:bc:ba:3f:c6:3c:88:f1:02:
a9:a3:ad:a9:36:0e:42:a0:22:fa:a8:45:ca:9c:89:
9b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:2C:BE:CC:BA:0D:1A:6F:E5:D5:B0:9A:C4:A8:A4:4B:C6:86:A2:70
X509v3 Authority Key Identifier:
keyid:03:C3:3E:43:EF:56:52:7A:16:9D:6A:C6:D7:E6:2C:63:D1:97:30:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A8M-Q-9WUnoWnWrG1-YsY9GXMFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/Niy-zLoNGm_l1bCaxKikS8aGonA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c17c15-a142-4b37-b8fe-a3a3eb879f2b/1/A8M-Q-9WUnoWnWrG1-YsY9GXMFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.185.0/24
185.66.176.0/22
Signature Algorithm: sha256WithRSAEncryption
20:cc:f9:7d:10:23:7e:52:43:1e:8e:4f:7f:33:53:24:09:b7:
70:a9:cf:3e:60:bd:b9:5c:3e:07:20:d9:2e:b5:58:d8:5c:18:
eb:a2:04:d3:ef:d9:22:ab:2e:aa:c2:88:a2:db:83:7b:66:c2:
c3:09:12:62:8d:7f:f9:6f:d5:5e:36:79:f4:62:93:43:9d:6e:
6a:06:56:91:93:51:ff:f4:97:90:f2:fa:cc:8e:e8:d6:28:14:
09:cb:88:ab:04:6a:e5:a3:e7:95:1d:97:63:e2:0d:a4:da:f0:
54:7f:92:95:81:5a:24:c2:2b:bc:8d:e1:02:2c:c1:f7:7a:69:
74:b9:6d:e0:b5:f5:ce:20:0b:3e:15:db:9b:09:63:b6:b0:b6:
c4:15:05:0f:2d:77:4c:dd:61:03:7f:2d:f3:49:10:d3:1c:39:
72:ff:b3:69:de:45:3c:e0:55:ea:3a:3e:b8:0c:e5:34:12:ee:
88:f6:13:76:e6:be:d3:6f:3b:7a:28:27:1b:63:49:3f:04:c7:
fc:5e:63:4b:f7:b3:75:96:aa:e1:da:73:ed:e5:6f:a3:6c:8a:
6c:d9:3d:0b:9c:ef:a0:4f:ac:d4:05:2e:05:9c:ff:6a:3f:be:
bc:01:09:99:12:eb:fb:9d:5a:66:f7:d9:6c:04:35:75:e1:81:
c7:2e:84:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 18:12:32 2025 by rpki-client