Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/IPOedwFLdovrk7Br9O57nUpDjwQ.roa
File: IPOedwFLdovrk7Br9O57nUpDjwQ.roa (raw, json)
Hash identifier: 5ftr9XYFEImL+ueh4NNyCD5km5V2uiePWmCg0+nj27Y=
Subject key identifier: 20:F3:9E:77:01:4B:76:8B:EB:93:B0:6B:F4:EE:7B:9D:4A:43:8F:04
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184141AD161C075C8AB3ABB0D073547BFBF
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/IPOedwFLdovrk7Br9O57nUpDjwQ.roa
Signing time: Wed 26 Oct 2022 11:43:32 +0000
ROA not before: Wed 26 Oct 2022 11:43:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204827
IP address blocks: 77.220.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:14:1a:d1:61:c0:75:c8:ab:3a:bb:0d:07:35:47:bf:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 26 11:43:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20f39e77014b768beb93b06bf4ee7b9d4a438f04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:8e:7b:79:07:c9:3b:be:77:59:d2:63:d7:79:
2e:43:b6:83:72:36:35:02:2f:a2:cd:35:2f:5b:31:
fa:19:d4:37:0a:93:57:ae:06:ba:d0:c1:14:e8:8f:
e3:1c:52:b6:9e:51:fc:9f:13:af:c6:db:40:9c:f4:
55:1f:cc:c8:64:52:df:e1:f6:cf:f3:ab:a5:d1:43:
6c:5b:e0:a5:c2:b8:b4:3e:fb:66:f7:92:60:6c:d8:
ec:19:ae:90:1a:b7:8c:30:8b:1a:ad:b3:aa:15:00:
d1:d5:b3:b2:e8:0f:90:6c:63:8d:a7:55:00:67:d7:
e4:e9:33:7e:c6:fb:86:eb:1a:66:17:f9:ce:c6:36:
21:b8:8b:ac:86:4f:5a:b8:72:e6:4b:3f:bf:93:7b:
fe:31:48:d5:24:38:4c:d3:f9:81:2d:1b:e3:b3:3b:
49:2d:2f:f6:bc:8d:84:92:e0:49:30:3d:ec:33:14:
9c:8e:fd:7e:da:8e:f1:03:7d:81:a5:9b:f5:8b:ad:
0c:19:b0:f0:62:8b:b1:a3:85:57:c0:49:9c:79:c0:
45:e6:34:31:4a:97:d2:e6:3d:5d:a0:9a:17:1d:2a:
73:72:63:87:20:b4:07:6c:0a:0f:de:50:d0:38:c2:
ef:d9:7e:66:7a:65:c0:3b:fb:48:7b:44:39:da:39:
9b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F3:9E:77:01:4B:76:8B:EB:93:B0:6B:F4:EE:7B:9D:4A:43:8F:04
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/IPOedwFLdovrk7Br9O57nUpDjwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.220.210.0/24
Signature Algorithm: sha256WithRSAEncryption
61:09:3d:df:0a:12:15:18:cc:b5:14:09:f4:a7:79:79:85:dd:
3a:07:ac:1a:a2:1f:35:ec:59:31:47:10:08:a9:8b:88:59:81:
e8:43:71:ca:68:1a:57:fc:17:e0:79:5d:b2:54:4f:df:b5:49:
d1:3c:b7:fc:bd:9c:e4:ca:c1:09:dd:f3:40:e5:a3:e2:98:5f:
71:97:e1:85:c6:f2:82:83:52:14:c0:86:02:15:68:31:94:c6:
0f:ee:05:94:61:85:ae:de:1a:03:a8:9f:a6:b0:cc:87:ce:60:
9d:6a:18:cd:ba:b8:3c:ef:55:d3:ee:9c:6e:1b:e8:b2:ac:9e:
e7:a3:14:80:21:26:3f:c5:0c:89:ee:a9:b1:1d:2a:fa:3e:af:
0e:60:d8:06:04:83:8e:e9:7d:5a:71:e7:dd:cb:a3:6c:3d:de:
c6:c4:84:a3:7a:51:0a:1e:78:f0:5a:34:ca:21:f2:7a:e0:8c:
8c:9a:7d:cd:3b:7a:42:34:30:42:e1:6b:1f:44:a2:26:0d:a1:
9c:72:a8:5b:53:82:ee:c0:6c:91:1b:bb:9f:40:77:61:23:ad:
de:7d:8c:34:0a:f4:f0:01:b9:45:68:b9:45:c5:0e:47:a0:4c:
d3:b0:aa:dc:91:9a:72:40:af:18:09:90:8d:89:2e:71:44:fc:
4f:0d:db:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:23 2025 by rpki-client