Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/791a4e-1be9-4976-bd95-6561c849057f/1/z3tI_1qXxmfaqBRMDSi1K1B4Bhk.roa
File: z3tI_1qXxmfaqBRMDSi1K1B4Bhk.roa (raw, json)
Hash identifier: AolZfD7nmJmZWLlG5enGaHL+BDHSe4PR19MdtZqDEbM=
Subject key identifier: CF:7B:48:FF:5A:97:C6:67:DA:A8:14:4C:0D:28:B5:2B:50:78:06:19
Certificate issuer: /CN=779d815db3226b7a848961262ad74ffc15557fa1
Certificate serial: 0183371B2758682B7999AEE7615AC44E2072
Authority key identifier: 77:9D:81:5D:B3:22:6B:7A:84:89:61:26:2A:D7:4F:FC:15:55:7F:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d52BXbMia3qEiWEmKtdP_BVVf6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/791a4e-1be9-4976-bd95-6561c849057f/1/z3tI_1qXxmfaqBRMDSi1K1B4Bhk.roa
Signing time: Tue 13 Sep 2022 13:47:49 +0000
ROA not before: Tue 13 Sep 2022 13:47:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51210
IP address blocks: 178.217.240.0/21 maxlen: 21
2001:67c:48::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:37:1b:27:58:68:2b:79:99:ae:e7:61:5a:c4:4e:20:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779d815db3226b7a848961262ad74ffc15557fa1
Validity
Not Before: Sep 13 13:47:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf7b48ff5a97c667daa8144c0d28b52b50780619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e2:a3:e8:d6:53:80:2c:a1:f6:de:c5:bd:2d:
d5:04:59:20:8c:38:be:c5:2a:9b:42:75:6e:ad:39:
0d:a8:00:a4:12:04:b0:86:e5:3c:23:3e:0e:1b:84:
bf:49:60:9a:5a:8b:9d:fd:3b:36:b5:db:ba:fd:8f:
7d:9f:0e:7a:bf:c5:33:b1:1b:32:f7:85:50:15:6d:
5c:83:ac:5a:44:54:0b:35:57:37:0c:91:82:75:39:
ae:98:99:d8:78:6d:d5:83:c4:18:c2:be:7d:47:56:
01:6c:49:01:f6:de:c2:3f:0c:4c:96:3f:03:76:2e:
e3:8c:72:07:59:92:dd:31:54:c3:92:74:48:b1:76:
bb:e7:19:71:da:ac:e8:a9:a3:ca:d9:ee:b5:05:6d:
42:9a:e1:77:f6:e0:26:b8:2f:55:69:63:18:34:b0:
78:4b:41:e3:14:0d:6f:d0:69:0d:ab:ae:7b:bb:a6:
d2:34:b0:1d:ca:72:f3:5f:f4:10:0c:f8:a0:c4:2e:
08:db:41:d8:df:16:7e:9e:c0:09:ac:f6:69:d9:ed:
ad:63:7c:59:15:11:b1:64:c3:74:54:63:bb:b6:f6:
ee:0a:46:8b:e6:b1:e5:54:35:cf:27:b9:3a:9c:5b:
bf:97:8d:bc:3c:88:e4:ab:56:fc:27:89:c2:a9:89:
b8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:7B:48:FF:5A:97:C6:67:DA:A8:14:4C:0D:28:B5:2B:50:78:06:19
X509v3 Authority Key Identifier:
keyid:77:9D:81:5D:B3:22:6B:7A:84:89:61:26:2A:D7:4F:FC:15:55:7F:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d52BXbMia3qEiWEmKtdP_BVVf6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/791a4e-1be9-4976-bd95-6561c849057f/1/z3tI_1qXxmfaqBRMDSi1K1B4Bhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/791a4e-1be9-4976-bd95-6561c849057f/1/d52BXbMia3qEiWEmKtdP_BVVf6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.217.240.0/21
IPv6:
2001:67c:48::/48
Signature Algorithm: sha256WithRSAEncryption
25:84:50:c1:26:1a:3b:f9:c1:d2:63:69:f3:de:fa:20:57:79:
52:c4:4f:a4:ec:a5:12:6c:f5:50:b7:c6:0d:83:87:16:39:d1:
c6:6d:4f:58:5b:47:5e:c4:2c:ea:e6:e6:0e:ef:c8:30:fe:96:
40:4a:64:62:0c:57:bb:eb:d5:04:0a:f5:78:d3:ca:d7:1e:e3:
47:30:96:cf:e4:f3:29:22:f9:ba:3e:4c:ba:4c:10:14:7e:bb:
5b:94:67:88:f2:7a:35:70:36:5c:a6:f7:fa:05:93:38:60:9d:
0f:72:e6:d8:2b:ea:c8:17:8a:94:5f:45:88:3d:76:8b:ca:cb:
eb:4f:17:4d:41:0b:cf:98:94:57:f5:8c:2c:55:ab:79:ff:8a:
8c:d1:4e:e2:c8:99:67:e3:6c:01:e2:14:51:b5:01:53:34:50:
cc:e1:a6:ef:1c:b1:24:a1:68:a4:a4:7e:2f:51:2a:e5:01:e3:
d3:81:2e:c2:95:d2:69:db:86:f2:6e:af:23:c7:54:25:ff:79:
e8:53:25:62:20:32:7b:4e:9d:59:cc:83:7b:fd:1d:e5:aa:7d:
a8:f1:ce:da:74:15:a7:af:b3:62:fb:0b:0e:6e:d4:9b:17:6c:
e6:1a:17:48:bf:da:b7:e8:f5:29:23:f8:3a:f9:6e:18:b5:11:
5f:1d:f6:04
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYM3GydYaCt5ma7nYVrETiByMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3OWQ4MTVkYjMyMjZiN2E4NDg5NjEyNjJhZDc0ZmZjMTU1
NTdmYTEwHhcNMjIwOTEzMTM0NzQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZjdiNDhmZjVhOTdjNjY3ZGFhODE0NGMwZDI4YjUyYjUwNzgwNjE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+Kj6NZTgCyh9t7FvS3VBFkgjDi+
xSqbQnVurTkNqACkEgSwhuU8Iz4OG4S/SWCaWoud/Ts2tdu6/Y99nw56v8UzsRsy
94VQFW1cg6xaRFQLNVc3DJGCdTmumJnYeG3Vg8QYwr59R1YBbEkB9t7CPwxMlj8D
di7jjHIHWZLdMVTDknRIsXa75xlx2qzoqaPK2e61BW1CmuF39uAmuC9VaWMYNLB4
S0HjFA1v0GkNq657u6bSNLAdynLzX/QQDPigxC4I20HY3xZ+nsAJrPZp2e2tY3xZ
FRGxZMN0VGO7tvbuCkaL5rHlVDXPJ7k6nFu/l428PIjkq1b8J4nCqYm4rQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFM97SP9al8Zn2qgUTA0otStQeAYZMB8GA1UdIwQY
MBaAFHedgV2zImt6hIlhJirXT/wVVX+hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDUyQlhiTWlhM3FFaVdFbUt0ZFBfQlZWZjZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy83OTFhNGUtMWJlOS00OTc2LWJkOTUt
NjU2MWM4NDkwNTdmLzEvejN0SV8xcVh4bWZhcUJSTURTaTFLMUI0QmhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy83OTFhNGUtMWJlOS00OTc2LWJkOTUtNjU2MWM4NDkwNTdm
LzEvZDUyQlhiTWlhM3FFaVdFbUt0ZFBfQlZWZjZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDstnwMA8E
AgACMAkDBwAgAQZ8AEgwDQYJKoZIhvcNAQELBQADggEBACWEUMEmGjv5wdJjafPe
+iBXeVLET6TspRJs9VC3xg2DhxY50cZtT1hbR17ELOrm5g7vyDD+lkBKZGIMV7vr
1QQK9XjTytce40cwls/k8yki+bo+TLpMEBR+u1uUZ4jyejVwNlym9/oFkzhgnQ9y
5tgr6sgXipRfRYg9dovKy+tPF01BC8+YlFf1jCxVq3n/iozRTuLImWfjbAHiFFG1
AVM0UMzhpu8csSShaKSkfi9RKuUB49OBLsKV0mnbhvJuryPHVCX/eehTJWIgMntO
nVnMg3v9HeWqfajxztp0Faevs2L7Cw5u1JsXbOYaF0i/2rfo9Skj+Dr5bhi1EV8d
9gQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:32 2024 by rpki-client on console-fra.rpki-client.org