Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/4OZCTUovaqsGTKV8GgyAD2dyMrg.roa
File: 4OZCTUovaqsGTKV8GgyAD2dyMrg.roa (raw, json)
Hash identifier: Yc8ndSCiyJFi6nbbyiWQaLXa+wqXQcUFFG9KZNV8N7U=
Subject key identifier: E0:E6:42:4D:4A:2F:6A:AB:06:4C:A5:7C:1A:0C:80:0F:67:72:32:B8
Certificate issuer: /CN=6b85894a84baa0eca0e6ef44a992fc2ba00f5277
Certificate serial: 0AE69A14
Authority key identifier: 6B:85:89:4A:84:BA:A0:EC:A0:E6:EF:44:A9:92:FC:2B:A0:0F:52:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a4WJSoS6oOyg5u9EqZL8K6APUnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/4OZCTUovaqsGTKV8GgyAD2dyMrg.roa
Signing time: Sat 01 Jan 2022 09:02:33 +0000
ROA not before: Sat 01 Jan 2022 09:02:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39582
IP address blocks: 37.77.3.0/24 maxlen: 24
37.77.2.0/24 maxlen: 24
37.77.1.0/24 maxlen: 24
37.77.0.0/24 maxlen: 24
37.77.4.0/24 maxlen: 24
37.77.6.0/24 maxlen: 24
37.77.5.0/24 maxlen: 24
37.77.9.0/24 maxlen: 24
37.77.8.0/24 maxlen: 24
37.77.7.0/24 maxlen: 24
37.77.10.0/24 maxlen: 24
37.77.16.0/24 maxlen: 24
37.77.15.0/24 maxlen: 24
37.77.17.0/24 maxlen: 24
37.77.12.0/24 maxlen: 24
37.77.20.0/24 maxlen: 24
37.77.18.0/24 maxlen: 24
37.77.23.0/24 maxlen: 24
37.77.22.0/24 maxlen: 24
37.77.21.0/24 maxlen: 24
37.77.24.0/24 maxlen: 24
37.77.30.0/24 maxlen: 24
37.77.29.0/24 maxlen: 24
37.77.28.0/24 maxlen: 24
37.77.31.0/24 maxlen: 24
37.77.27.0/24 maxlen: 24
37.77.26.0/24 maxlen: 24
37.77.25.0/24 maxlen: 24
77.79.95.0/24 maxlen: 24
77.79.94.0/24 maxlen: 24
77.79.93.0/24 maxlen: 24
77.79.98.0/24 maxlen: 24
77.79.97.0/24 maxlen: 24
77.79.96.0/20 maxlen: 24
77.79.92.0/24 maxlen: 24
77.79.106.0/24 maxlen: 24
77.79.111.0/24 maxlen: 24
77.79.112.0/21 maxlen: 24
77.79.120.0/21 maxlen: 24
89.106.31.0/24 maxlen: 24
89.106.26.0/24 maxlen: 24
89.106.25.0/24 maxlen: 24
89.106.30.0/24 maxlen: 24
89.106.29.0/24 maxlen: 24
89.106.28.0/24 maxlen: 24
89.106.27.0/24 maxlen: 24
77.79.64.0/24 maxlen: 24
77.79.68.0/24 maxlen: 24
77.79.67.0/24 maxlen: 24
77.79.66.0/24 maxlen: 24
77.79.65.0/24 maxlen: 24
77.79.71.0/24 maxlen: 24
77.79.70.0/24 maxlen: 24
77.79.69.0/24 maxlen: 24
77.79.74.0/24 maxlen: 24
77.79.73.0/24 maxlen: 24
77.79.72.0/24 maxlen: 24
77.79.78.0/24 maxlen: 24
77.79.77.0/24 maxlen: 24
77.79.76.0/24 maxlen: 24
77.79.81.0/24 maxlen: 24
77.79.80.0/24 maxlen: 24
77.79.79.0/24 maxlen: 24
77.79.85.0/24 maxlen: 24
77.79.84.0/24 maxlen: 24
77.79.83.0/24 maxlen: 24
77.79.88.0/24 maxlen: 24
77.79.87.0/24 maxlen: 24
77.79.86.0/24 maxlen: 24
77.79.91.0/24 maxlen: 24
77.79.90.0/24 maxlen: 24
89.106.4.0/24 maxlen: 24
89.106.3.0/24 maxlen: 24
89.106.2.0/24 maxlen: 24
89.106.1.0/24 maxlen: 24
89.106.0.0/24 maxlen: 24
89.106.6.0/24 maxlen: 24
89.106.5.0/24 maxlen: 24
89.106.9.0/24 maxlen: 24
89.106.8.0/24 maxlen: 24
89.106.7.0/24 maxlen: 24
89.106.11.0/24 maxlen: 24
89.106.10.0/24 maxlen: 24
89.106.17.0/24 maxlen: 24
89.106.12.0/24 maxlen: 24
89.106.16.0/24 maxlen: 24
89.106.15.0/24 maxlen: 24
89.106.24.0/24 maxlen: 24
89.106.19.0/24 maxlen: 24
89.106.18.0/24 maxlen: 24
89.106.23.0/24 maxlen: 24
89.106.22.0/24 maxlen: 24
89.106.21.0/24 maxlen: 24
89.106.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182884884 (0xae69a14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b85894a84baa0eca0e6ef44a992fc2ba00f5277
Validity
Not Before: Jan 1 09:02:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0e6424d4a2f6aab064ca57c1a0c800f677232b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e0:ce:2c:22:95:ac:d6:28:67:47:fb:6e:68:
d9:77:cf:21:f3:1b:1a:03:55:fe:60:6b:4f:b8:33:
3c:20:77:1d:de:0e:48:61:5c:29:ca:b2:e5:4c:c1:
a0:06:78:e1:c0:18:15:e0:d2:8f:0d:57:43:11:3d:
94:37:0e:2d:2a:9d:37:93:2e:07:ee:f1:3b:18:a1:
0a:5b:28:ec:d2:0c:aa:97:c3:c8:91:43:36:ad:e9:
91:fb:11:ce:3d:fa:31:2d:9e:c2:a1:d0:45:9d:9f:
b6:71:77:61:b8:1a:7f:b5:44:0f:32:8d:2f:49:bb:
4c:76:c3:6e:2a:a2:d4:4a:02:7d:4a:ce:26:c4:0d:
3b:c5:e8:ed:88:bd:d1:fb:fb:36:a4:aa:19:77:7c:
36:18:d9:69:37:b7:fa:f7:48:c1:9d:1c:a8:0a:b4:
d5:04:3e:9a:53:8c:45:de:3c:1c:7b:61:43:cd:44:
1f:44:cb:4a:46:eb:f1:f3:af:7d:1b:ef:dd:bc:25:
e3:24:ee:10:a9:a4:33:79:4a:80:11:60:75:20:92:
8a:36:97:52:36:2f:ee:62:72:23:fc:2a:50:a6:bb:
b8:26:03:e7:11:f3:23:8d:8b:49:71:8e:73:f0:50:
57:4c:44:4a:60:f2:dd:a0:78:7b:2c:c2:e7:f9:c7:
fc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E6:42:4D:4A:2F:6A:AB:06:4C:A5:7C:1A:0C:80:0F:67:72:32:B8
X509v3 Authority Key Identifier:
keyid:6B:85:89:4A:84:BA:A0:EC:A0:E6:EF:44:A9:92:FC:2B:A0:0F:52:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4WJSoS6oOyg5u9EqZL8K6APUnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/4OZCTUovaqsGTKV8GgyAD2dyMrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/a4WJSoS6oOyg5u9EqZL8K6APUnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.0.0-37.77.10.255
37.77.12.0/24
37.77.15.0-37.77.18.255
37.77.20.0-37.77.31.255
77.79.64.0-77.79.74.255
77.79.76.0-77.79.81.255
77.79.83.0-77.79.88.255
77.79.90.0-77.79.127.255
89.106.0.0-89.106.12.255
89.106.15.0-89.106.31.255
Signature Algorithm: sha256WithRSAEncryption
05:e2:a1:79:f9:ba:c6:4f:be:c4:47:99:ee:e4:85:fb:92:d3:
14:02:d8:63:f5:81:dd:3b:51:14:f5:4a:5b:4c:3d:df:2c:d8:
a5:b3:81:71:ac:af:f1:ce:09:0d:ce:34:bc:32:86:48:91:08:
27:b9:0d:ee:0b:e7:74:8c:af:2e:ca:b3:8a:4c:30:82:dd:4e:
db:96:b3:8b:28:ce:b3:7d:43:61:c3:3e:54:a6:b3:1e:b9:3c:
45:30:ed:f3:a4:cb:42:7b:85:8e:22:47:6b:5c:8b:26:59:b9:
d1:ef:5d:32:fc:c0:2d:a4:a8:62:fc:77:56:03:eb:20:d0:70:
a3:52:fd:3b:1b:a1:19:d3:4b:f3:5a:b2:7f:9c:c2:f7:dd:c3:
5e:7b:95:42:fa:2e:8c:31:cb:21:18:26:af:e6:bf:02:8c:e5:
c8:4c:95:15:6c:ee:29:a3:de:44:c7:34:b0:97:c1:6d:aa:ee:
38:1e:d1:51:fc:93:db:b5:ae:08:97:04:1e:c3:19:e7:13:1f:
8b:77:87:a7:17:24:9d:53:16:29:7d:3e:5c:5b:18:de:bd:46:
46:9c:ed:12:9b:06:dc:88:7d:68:e8:a3:47:6d:f3:0c:f9:c0:
d2:7f:65:d4:6a:4c:8e:8d:b5:cf:0c:a0:63:a9:07:5e:69:bf:
75:55:eb:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:05 2023 by rpki-client on console.sobornost.net