Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/qiM8UxYHlxXFeJsoqVUQkj8NI4g.roa
File: qiM8UxYHlxXFeJsoqVUQkj8NI4g.roa (raw, json)
Hash identifier: EvNQAyeC/9qAswCIJsWtVFOaeF6P5eE7ywd7MoFvsNk=
Subject key identifier: AA:23:3C:53:16:07:97:15:C5:78:9B:28:A9:55:10:92:3F:0D:23:88
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 05DE8E2F
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/qiM8UxYHlxXFeJsoqVUQkj8NI4g.roa
Signing time: Mon 14 Mar 2022 23:27:40 +0000
ROA not before: Mon 14 Mar 2022 23:27:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 77.81.77.0/24 maxlen: 24
188.214.232.0/23 maxlen: 24
188.214.234.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98471471 (0x5de8e2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Mar 14 23:27:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa233c5316079715c5789b28a95510923f0d2388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e0:5a:53:eb:9e:50:63:ec:ed:ec:4a:b1:76:
5f:0f:06:7f:7c:88:86:dc:36:1a:6c:73:87:05:6d:
4e:a7:7c:c5:d8:20:31:63:54:d7:b0:b4:f8:cf:65:
b6:ad:1e:94:87:33:bc:6e:3c:c8:82:b5:a6:6e:87:
49:8c:e8:85:3c:98:f9:c1:05:7f:cc:af:dd:97:89:
65:14:35:e1:f2:f7:03:3d:22:fb:a4:97:fb:17:52:
22:91:e1:9f:8c:57:af:37:e3:0d:67:c5:b6:c0:e1:
9f:41:fc:d1:47:84:69:fd:e8:a2:fe:98:d1:a5:45:
df:81:b3:12:af:7a:17:47:41:20:10:d7:5a:d9:be:
9c:ca:ce:c8:25:d1:6b:14:c4:88:3b:ad:88:bd:b3:
47:a6:d5:46:6b:ff:af:07:4a:ba:38:f6:f8:85:c5:
48:8b:d5:a9:e7:ff:66:2b:92:49:24:ac:11:74:14:
d2:40:3b:15:32:2f:5b:b1:ee:97:33:29:67:bf:3c:
84:aa:f9:b7:aa:21:1f:f0:49:66:24:92:55:25:6f:
3b:6d:25:15:64:a6:a1:b4:0b:50:90:cf:5a:fd:6e:
6b:71:fd:cf:ff:98:3a:24:81:45:82:9a:4c:82:0d:
1b:93:e1:e7:c3:91:7c:e7:62:b3:78:18:c3:ed:3e:
3b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:23:3C:53:16:07:97:15:C5:78:9B:28:A9:55:10:92:3F:0D:23:88
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/qiM8UxYHlxXFeJsoqVUQkj8NI4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.77.0/24
188.214.232.0/22
Signature Algorithm: sha256WithRSAEncryption
47:61:34:72:b6:f9:7c:8f:58:5a:17:34:60:82:f7:c7:38:ce:
87:71:e2:a0:d9:46:83:41:bb:09:d7:97:35:d9:04:e8:c0:67:
6a:29:47:1e:0c:6b:96:c8:8c:36:7e:bd:3b:35:9e:e7:d3:96:
ee:4e:db:f5:49:c1:64:48:60:2e:55:63:01:4d:54:19:b4:58:
59:17:c3:75:7c:e6:b3:fd:e4:93:de:ca:e1:82:ee:e6:cb:ee:
48:98:b9:82:8d:5a:4e:45:9c:8a:a9:56:81:e8:97:01:f9:cf:
79:ec:5d:2e:f4:d7:ff:76:77:69:60:57:1b:cd:ea:34:24:ec:
4a:ff:0f:54:c9:db:5a:1a:dd:3d:76:d8:2b:cc:3b:fd:54:5d:
ea:3b:8f:a9:79:14:e2:91:8a:5e:9a:6a:b8:ee:1c:e1:6e:b5:
1c:53:76:78:96:39:6b:f2:f1:3e:a3:ae:71:2d:81:3d:f1:b5:
cc:b4:13:12:c8:9a:f1:ae:82:8b:82:83:f8:89:81:50:80:61:
50:81:02:ca:c6:15:7b:ef:ac:a4:dd:a2:10:d1:53:80:77:96:
0c:f1:94:b5:ca:5c:84:7b:64:ca:07:0a:f2:ca:e2:ec:76:b9:
32:d7:3e:8a:e8:4e:34:5d:df:15:58:3b:aa:2d:03:4b:61:6e:
d3:75:f7:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org