Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/4kJ3pSwUIXJ0pHHV7qcPECHgPso.roa
File: 4kJ3pSwUIXJ0pHHV7qcPECHgPso.roa (raw, json)
Hash identifier: yC3xLcGdcQUDuqINzhTbhY+Z++EVeuXBD1jgtMvU994=
Subject key identifier: E2:42:77:A5:2C:14:21:72:74:A4:71:D5:EE:A7:0F:10:21:E0:3E:CA
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B23A4F2
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/4kJ3pSwUIXJ0pHHV7qcPECHgPso.roa
Signing time: Sat 01 Jan 2022 13:58:19 +0000
ROA not before: Sat 01 Jan 2022 13:58:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212163
IP address blocks: 77.65.156.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 723756274 (0x2b23a4f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e24277a52c14217274a471d5eea70f1021e03eca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:45:56:0a:a4:02:7f:71:8b:2a:26:a9:9d:1f:
a7:3f:02:97:21:29:ec:51:ff:55:d3:08:a5:29:52:
5a:c6:58:cd:83:71:8f:39:e9:e9:0d:46:b5:e7:3c:
14:38:61:80:e9:81:0f:03:50:df:73:39:51:8a:17:
7d:75:c3:c5:f1:32:d4:a2:fa:87:01:66:bd:c4:11:
39:a2:e1:dd:c0:53:e9:af:6c:37:c1:37:d3:00:7b:
68:65:fa:da:ae:fd:93:46:13:b6:85:f1:1c:14:19:
c5:c6:d1:fb:28:d1:fd:91:e7:14:a2:4c:5c:64:d3:
70:40:fe:45:f7:9a:40:5f:4d:15:e5:97:f1:66:9c:
ec:5f:1b:41:f9:1d:1b:40:5a:74:2d:dd:db:84:11:
b9:7c:71:56:4f:ef:d9:40:48:aa:6f:40:f5:44:5c:
62:7c:43:4a:15:54:19:14:e4:57:10:74:54:31:e0:
a5:45:8a:c0:80:9e:41:0e:eb:36:a6:c5:45:d6:19:
b5:80:7c:cd:bb:25:33:43:d4:82:d1:c3:08:c2:19:
09:ef:ac:8d:3c:54:e6:5f:02:40:fd:5c:45:8f:54:
5a:d6:d3:c2:8b:c2:ec:ee:23:0d:d6:e1:57:80:fa:
3e:5a:5f:2b:8e:82:28:06:70:03:92:cc:20:86:d8:
b1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:42:77:A5:2C:14:21:72:74:A4:71:D5:EE:A7:0F:10:21:E0:3E:CA
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/4kJ3pSwUIXJ0pHHV7qcPECHgPso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.156.0/22
Signature Algorithm: sha256WithRSAEncryption
91:d4:80:66:71:57:a5:94:c4:47:c8:e3:b1:ec:d3:13:63:2f:
d6:14:9d:8a:31:cc:54:35:08:81:db:57:82:8a:20:6e:27:d0:
d7:d8:73:6c:0d:ed:f2:27:d0:08:53:22:8b:16:2a:64:9d:6e:
a2:8b:cd:4e:75:87:bf:0c:a0:12:f7:2a:10:f8:17:96:07:bd:
2a:50:00:9a:78:26:31:65:73:32:a8:cc:22:45:e9:9d:f7:de:
83:58:e0:20:1a:e5:65:36:3b:02:ef:9a:09:1b:ac:ad:b0:9a:
27:6b:a5:a9:b1:8c:aa:9a:9b:84:4e:a7:1a:22:94:c9:94:13:
62:09:c8:dc:17:19:1e:95:82:9a:59:1e:a9:ae:d9:08:05:d6:
23:20:ab:e0:76:91:1e:a9:1f:37:95:62:d5:7b:f3:4c:93:e6:
3f:63:60:4c:fa:5a:f7:97:23:84:76:ee:1c:52:63:ea:c0:67:
df:fd:c2:86:63:ec:5b:e6:92:2b:13:ac:db:e6:22:9c:66:b8:
87:2b:96:9b:e2:03:1c:98:44:40:9c:6f:9a:11:5b:fe:dd:b3:
cd:10:25:ed:be:fc:6f:97:92:70:22:d3:a4:c7:f2:74:b7:9c:
ec:72:47:a3:e8:ab:36:5a:7f:e3:63:99:57:ac:aa:60:f7:d6:
0e:0d:cb:99
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKyOk8jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
OTk1NDQ5OTk3NzI3OGE3NTU3MGIzNDAzZjRkM2FhMDBiMWIzNmU4MB4XDTIyMDEw
MTEzNTgxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTI0Mjc3YTUyYzE0
MjE3Mjc0YTQ3MWQ1ZWVhNzBmMTAyMWUwM2VjYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALBFVgqkAn9xiyomqZ0fpz8ClyEp7FH/VdMIpSlSWsZYzYNx
jznp6Q1Gtec8FDhhgOmBDwNQ33M5UYoXfXXDxfEy1KL6hwFmvcQROaLh3cBT6a9s
N8E30wB7aGX62q79k0YTtoXxHBQZxcbR+yjR/ZHnFKJMXGTTcED+RfeaQF9NFeWX
8Wac7F8bQfkdG0BadC3d24QRuXxxVk/v2UBIqm9A9URcYnxDShVUGRTkVxB0VDHg
pUWKwICeQQ7rNqbFRdYZtYB8zbslM0PUgtHDCMIZCe+sjTxU5l8CQP1cRY9UWtbT
wovC7O4jDdbhV4D6PlpfK46CKAZwA5LMIIbYsU0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTiQnelLBQhcnSkcdXupw8QIeA+yjAfBgNVHSMEGDAWgBS5lUSZl3J4p1Vw
s0A/TTqgCxs26DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VaVkVtWmR5ZUtkVmNMTkFQMDA2b0FzYk51Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDcvNzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0Ny8x
LzRrSjNwU3dVSVhKMHBISFY3cWNQRUNIZ1Bzby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDcv
Nzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0Ny8xL3VaVkVtWmR5ZUtk
VmNMTkFQMDA2b0FzYk51Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAk1BnDANBgkqhkiG9w0BAQsFAAOC
AQEAkdSAZnFXpZTER8jjsezTE2Mv1hSdijHMVDUIgdtXgoogbifQ19hzbA3t8ifQ
CFMiixYqZJ1uoovNTnWHvwygEvcqEPgXlge9KlAAmngmMWVzMqjMIkXpnffeg1jg
IBrlZTY7Au+aCRusrbCaJ2ulqbGMqpqbhE6nGiKUyZQTYgnI3BcZHpWCmlkeqa7Z
CAXWIyCr4HaRHqkfN5Vi1XvzTJPmP2NgTPpa95cjhHbuHFJj6sBn3/3ChmPsW+aS
KxOs2+YinGa4hyuWm+IDHJhEQJxvmhFb/t2zzRAl7b78b5eScCLTpMfydLec7HJH
o+irNlp/42OZV6yqYPfWDg3LmQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org