Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/0222fe-dcc8-4a7d-bfa2-eca978c3cb85/1/p-k9ZWz2wg7SmwyB1xi_0l0YPQo.roa
File: p-k9ZWz2wg7SmwyB1xi_0l0YPQo.roa (raw, json)
Hash identifier: 5JQNFEocjR14HoSJA1fhCFT9BX7HO4X07XVScY7GOaM=
Subject key identifier: A7:E9:3D:65:6C:F6:C2:0E:D2:9B:0C:81:D7:18:BF:D2:5D:18:3D:0A
Certificate issuer: /CN=c9dcb695c70db4b96370600750918a4b3a8a21a9
Certificate serial: 191E868D
Authority key identifier: C9:DC:B6:95:C7:0D:B4:B9:63:70:60:07:50:91:8A:4B:3A:8A:21:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydy2lccNtLljcGAHUJGKSzqKIak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/0222fe-dcc8-4a7d-bfa2-eca978c3cb85/1/p-k9ZWz2wg7SmwyB1xi_0l0YPQo.roa
Signing time: Sat 01 Jan 2022 07:02:41 +0000
ROA not before: Sat 01 Jan 2022 07:02:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42943
IP address blocks: 77.240.83.0/24 maxlen: 24
77.240.82.0/24 maxlen: 24
77.240.81.0/24 maxlen: 24
77.240.80.0/22 maxlen: 22
77.240.80.0/24 maxlen: 24
77.240.91.0/24 maxlen: 24
77.240.86.0/23 maxlen: 23
77.240.86.0/24 maxlen: 24
77.240.90.0/24 maxlen: 24
77.240.89.0/24 maxlen: 24
77.240.88.0/24 maxlen: 24
77.240.88.0/21 maxlen: 21
77.240.87.0/24 maxlen: 24
77.240.93.0/24 maxlen: 24
77.240.92.0/24 maxlen: 24
77.240.95.0/24 maxlen: 24
77.240.94.0/24 maxlen: 24
85.184.232.0/22 maxlen: 22
85.184.232.0/24 maxlen: 24
85.184.233.0/24 maxlen: 24
85.184.236.0/23 maxlen: 23
85.184.235.0/24 maxlen: 24
85.184.234.0/24 maxlen: 24
185.109.179.0/24 maxlen: 24
185.109.178.0/24 maxlen: 24
185.109.177.0/24 maxlen: 24
185.109.176.0/22 maxlen: 22
185.109.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 421430925 (0x191e868d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9dcb695c70db4b96370600750918a4b3a8a21a9
Validity
Not Before: Jan 1 07:02:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7e93d656cf6c20ed29b0c81d718bfd25d183d0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:97:9f:00:5c:2b:72:0c:3e:39:41:ee:14:14:
30:ae:a3:eb:99:95:6d:a1:b5:6d:a0:7d:6c:88:36:
f2:8d:f8:a1:25:01:1f:0b:52:ff:c7:ce:55:6a:14:
72:ea:1f:9c:b1:9c:53:80:dc:af:4d:09:e4:23:b5:
e7:56:f4:00:15:56:34:a0:03:37:14:16:3b:c6:6c:
a3:0d:5b:e9:8a:0e:38:c7:53:5a:69:24:ac:38:e8:
5d:1e:8d:c6:b9:27:04:15:cc:05:a4:d6:b3:08:a5:
f0:2f:59:88:11:bf:23:ea:a1:e3:52:3a:2d:04:6e:
e0:86:f3:e3:b3:a7:7e:74:dc:97:dd:6c:b9:d3:8f:
2c:ed:41:7c:b4:17:45:b6:6b:f8:3d:17:05:2c:9a:
37:3b:ee:79:12:73:71:e3:ed:72:c0:8d:fb:d7:9d:
d3:70:4e:cf:17:5c:ab:e3:c1:f3:b7:65:23:ae:48:
52:70:6c:89:d9:b5:95:2a:22:65:36:0c:2d:48:0e:
f9:97:9b:2f:80:33:bc:67:56:cb:66:b9:55:a3:2b:
6c:45:6f:2a:c7:2f:74:79:00:08:f7:41:b7:70:04:
37:b1:d8:2b:04:d9:3f:6b:ac:cc:20:34:57:06:47:
6e:83:fb:2a:3c:63:49:b0:78:9e:86:b8:54:5a:40:
68:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:E9:3D:65:6C:F6:C2:0E:D2:9B:0C:81:D7:18:BF:D2:5D:18:3D:0A
X509v3 Authority Key Identifier:
keyid:C9:DC:B6:95:C7:0D:B4:B9:63:70:60:07:50:91:8A:4B:3A:8A:21:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydy2lccNtLljcGAHUJGKSzqKIak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0222fe-dcc8-4a7d-bfa2-eca978c3cb85/1/p-k9ZWz2wg7SmwyB1xi_0l0YPQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0222fe-dcc8-4a7d-bfa2-eca978c3cb85/1/ydy2lccNtLljcGAHUJGKSzqKIak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.240.80.0/22
77.240.86.0-77.240.95.255
85.184.232.0-85.184.237.255
185.109.176.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:bb:19:d1:fb:4a:77:0d:2f:f0:1a:f6:5e:1b:78:1d:14:06:
fe:f6:79:64:7b:40:e4:35:17:18:31:be:09:26:ab:e8:cb:25:
6b:22:1a:88:4d:c5:c4:6c:81:8d:81:b5:8d:e7:48:36:14:f6:
b9:52:f1:d9:d3:2d:76:a6:7f:b6:d4:cf:1c:dc:d3:20:98:03:
9b:b5:ef:b0:88:74:73:1f:d3:23:da:3f:c1:00:52:8f:ce:82:
58:70:f7:45:43:09:77:fa:de:81:07:8c:15:f2:a3:27:ac:a8:
e5:1b:fa:fd:1f:95:77:16:68:7e:fb:c7:88:ec:03:51:c1:30:
b9:4e:fd:78:1d:af:ca:46:cb:75:93:38:1a:85:a5:d5:e6:4a:
65:43:e1:2f:23:cc:8f:b1:19:b0:08:81:9a:15:f8:7e:6e:7e:
5f:d9:9a:96:e0:d6:51:92:bf:2d:2f:61:55:dc:f8:03:e2:3f:
74:99:6c:60:e2:8c:40:a2:60:e2:16:bd:46:38:62:02:fb:3f:
ec:e5:49:ee:58:b2:bf:20:8c:36:4d:87:47:07:8b:67:9e:e3:
9d:19:cb:cd:e6:87:40:90:8e:72:aa:ad:cc:b4:86:fe:b6:43:
06:db:23:a9:59:6b:26:ad:80:b5:69:3f:50:f4:1a:df:c6:b8:
0f:38:bd:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:59 2024 by rpki-client on console-fra.rpki-client.org