Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/Q5SQ8-nO9xss-qXeqY7g8zQPR70.roa
File: Q5SQ8-nO9xss-qXeqY7g8zQPR70.roa (raw, json)
Hash identifier: dl7TLemTMYX9M3Ft3HZyXtJK8RxPipXkqesGwVPMtVc=
Subject key identifier: 43:94:90:F3:E9:CE:F7:1B:2C:FA:A5:DE:A9:8E:E0:F3:34:0F:47:BD
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 05CBF5D5
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/Q5SQ8-nO9xss-qXeqY7g8zQPR70.roa
Signing time: Tue 08 Mar 2022 02:00:05 +0000
ROA not before: Tue 08 Mar 2022 02:00:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210134
IP address blocks: 77.81.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97252821 (0x5cbf5d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Mar 8 02:00:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=439490f3e9cef71b2cfaa5dea98ee0f3340f47bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b7:9e:93:5a:e9:56:56:fb:14:50:39:15:44:
ea:d6:c3:82:41:4f:dd:96:ec:df:c1:07:25:62:86:
3b:57:7a:3d:34:fe:b3:2c:60:2c:c0:0b:1a:8c:9a:
4c:c2:ba:21:ca:0b:9b:56:fe:c8:d0:07:a9:22:1b:
53:97:63:6f:15:79:ea:d2:2e:f6:41:59:b5:5f:3e:
3a:d0:4b:0d:27:84:74:57:10:a3:f4:fa:48:7b:cb:
8a:a8:30:b2:fc:8b:cb:e4:28:46:be:05:61:b1:75:
56:b9:a8:9a:2f:4c:ba:bb:3f:41:10:c0:7d:be:ab:
fb:6e:f3:b9:d1:f2:6c:e2:d7:ea:d4:7f:76:a7:fc:
d4:bd:f0:57:cb:ce:0f:e0:d4:17:20:37:a8:93:4a:
35:0d:3f:de:01:60:f9:f6:d7:09:9c:78:fb:e5:5d:
3d:70:3f:40:e5:c4:f9:60:53:7f:5a:a2:9c:90:af:
9d:89:33:d0:18:12:2d:32:02:39:f4:8b:c9:e0:25:
07:5a:f6:d4:42:40:f3:bb:b1:fd:5c:e2:17:81:6f:
cc:47:fc:4c:b8:5e:1e:fb:19:a9:31:5c:aa:a6:4e:
45:56:0c:86:dc:ea:0a:a7:8d:e3:bd:c8:fb:fa:2e:
bd:4b:21:85:39:c9:46:7b:ca:e7:23:d9:00:66:24:
43:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:94:90:F3:E9:CE:F7:1B:2C:FA:A5:DE:A9:8E:E0:F3:34:0F:47:BD
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/Q5SQ8-nO9xss-qXeqY7g8zQPR70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.79.0/24
Signature Algorithm: sha256WithRSAEncryption
59:8b:18:d6:b1:c9:12:19:e9:78:80:eb:00:74:f3:d7:9c:5e:
1c:00:51:95:28:88:0c:79:62:a4:cf:90:83:63:34:50:5d:2a:
e0:48:f1:14:16:7f:ca:c6:eb:04:49:97:48:a1:87:74:18:d8:
61:19:fe:a6:7e:88:1f:69:8d:27:8b:db:3f:7c:4d:60:7a:e6:
d6:f3:7b:f2:9e:0a:11:6f:2c:0e:c1:68:2f:cc:8e:97:5b:6a:
f5:af:d1:e5:62:4a:2e:60:92:79:9a:14:4e:9b:74:43:b8:82:
39:c9:a0:f4:01:99:a0:7f:2e:35:92:b0:9e:41:a9:67:d5:12:
1a:4c:1f:44:a1:0c:a4:f6:45:37:59:15:fc:f0:0a:21:67:0c:
fe:34:50:d9:c8:d7:0c:3f:0b:a6:7b:ae:6f:a7:35:0f:72:0b:
ca:5e:5d:1c:21:ef:7f:53:6b:a9:33:80:6d:42:c3:68:76:09:
b8:32:ff:bc:a8:44:3d:69:78:b0:6e:53:d8:9d:68:d5:cb:80:
fa:ee:bb:ce:67:22:ff:20:58:a9:a8:28:b6:cc:8f:0b:0e:2c:
fd:36:3c:63:df:fc:76:a2:a4:1d:73:ca:de:b3:24:09:66:b8:
fc:a4:1d:da:a8:88:1b:4b:33:a8:93:57:30:96:0b:ff:d4:54:
81:47:68:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org