Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/aeXZio7XKR3iVnloZWQDixeqhSI.roa
File: aeXZio7XKR3iVnloZWQDixeqhSI.roa (raw, json)
Hash identifier: UhH1e8vwEU6UM7JuwrFFarToNHe05jlrFvavmsIPS+8=
Subject key identifier: 69:E5:D9:8A:8E:D7:29:1D:E2:56:79:68:65:64:03:8B:17:AA:85:22
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01820102FFDA8AD8A8FE84083CAEFEEFE816
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/aeXZio7XKR3iVnloZWQDixeqhSI.roa
Signing time: Fri 15 Jul 2022 08:39:09 +0000
ROA not before: Fri 15 Jul 2022 08:39:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35632
IP address blocks: 87.100.0.0/17 maxlen: 17
77.84.0.0/16 maxlen: 16
188.141.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:01:02:ff:da:8a:d8:a8:fe:84:08:3c:ae:fe:ef:e8:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jul 15 08:39:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69e5d98a8ed7291de25679686564038b17aa8522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:39:d3:30:0d:07:cc:7b:eb:d7:38:7c:97:65:
ac:81:ea:e9:1c:9d:24:d9:2e:cb:22:9e:6c:45:6f:
f0:c4:a1:75:fe:1a:c6:ea:e0:c6:c1:ef:67:86:66:
e0:9f:94:eb:e5:85:35:c0:a9:4c:b3:2e:20:41:92:
fa:f0:d4:c8:fa:69:38:ac:b1:72:4b:65:e8:c0:75:
6b:54:67:58:57:76:17:47:c8:55:34:a2:d8:59:ac:
f7:8c:b5:fd:21:67:eb:b2:3d:d6:44:8d:ff:d2:c5:
fd:37:a0:12:ce:f6:18:7e:44:41:bb:f0:93:29:fc:
d6:e9:eb:2b:f1:07:40:bb:bd:ea:f3:d8:a8:cf:b1:
30:a6:5d:66:53:d5:4f:fd:91:5e:2a:ff:30:5c:7d:
97:a4:95:23:31:c5:11:54:bb:ae:5b:91:b1:7e:38:
74:24:14:89:b6:0e:0e:21:71:78:b3:60:93:72:36:
3d:36:f0:40:bb:d2:b3:48:3f:d8:1c:a1:8b:e9:8d:
2a:d3:d3:39:29:c3:20:05:9b:4b:d4:1f:54:73:7e:
96:b5:3f:01:15:9c:71:aa:83:c1:e3:10:33:d8:e7:
7d:13:bc:65:08:1b:fb:c2:1c:59:b8:a1:f6:95:3f:
57:a9:08:21:19:77:33:e6:83:53:13:b5:01:50:da:
e6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:E5:D9:8A:8E:D7:29:1D:E2:56:79:68:65:64:03:8B:17:AA:85:22
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/aeXZio7XKR3iVnloZWQDixeqhSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.84.0.0/16
87.100.0.0/17
188.141.128.0/17
Signature Algorithm: sha256WithRSAEncryption
6e:86:da:10:0d:e8:cd:61:2e:27:e4:f6:4a:bf:d3:e9:f5:ce:
64:72:51:7d:90:01:b7:c4:9f:61:d8:45:f1:1b:e0:d6:e9:e6:
94:26:f8:84:b7:5c:bd:38:51:66:de:15:14:a2:8f:10:20:5c:
b9:51:63:b9:49:38:a2:80:a8:42:6f:00:27:5c:70:2f:a7:56:
06:c2:8a:4c:3f:dc:77:01:f5:24:66:93:4e:8c:7d:1c:26:cb:
81:05:13:a2:75:75:cd:df:ed:1f:e1:ec:10:c6:1f:f2:1c:f5:
45:52:7b:ac:f6:89:a2:1e:f2:89:a7:52:bf:c4:8b:d3:38:86:
84:d5:71:ca:b6:4a:f7:53:17:53:ea:2f:56:18:77:7c:2f:17:
19:06:3d:7b:53:ae:cf:be:31:e9:79:7d:46:d4:90:5a:5b:1e:
30:e8:31:28:f5:93:02:86:06:d0:f1:d0:15:58:07:e0:08:7e:
2b:4b:4c:0d:1c:6e:5e:51:39:cf:67:03:3e:cb:9f:cf:a5:8f:
c6:f0:88:99:5c:65:f3:67:c2:dc:f7:5f:ad:ba:65:ec:84:48:
62:bd:65:c8:ca:81:ae:7c:1b:88:c5:ef:1c:b8:a0:4f:4c:f1:
e5:8c:ca:a3:84:a3:0c:ac:a8:b6:96:1b:c8:79:d3:7e:2d:b1:
a6:06:a5:6b
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgISAYIBAv/aitio/oQIPK7+7+gWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZWY1ZmJiZmNhN2E5M2NmZWU5NjVlZWI2YmRlZTZmYjQz
YzQwM2UwHhcNMjIwNzE1MDgzOTA5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OWU1ZDk4YThlZDcyOTFkZTI1Njc5Njg2NTY0MDM4YjE3YWE4NTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqjnTMA0HzHvr1zh8l2WsgerpHJ0k
2S7LIp5sRW/wxKF1/hrG6uDGwe9nhmbgn5Tr5YU1wKlMsy4gQZL68NTI+mk4rLFy
S2XowHVrVGdYV3YXR8hVNKLYWaz3jLX9IWfrsj3WRI3/0sX9N6ASzvYYfkRBu/CT
KfzW6esr8QdAu73q89ioz7Ewpl1mU9VP/ZFeKv8wXH2XpJUjMcURVLuuW5Gxfjh0
JBSJtg4OIXF4s2CTcjY9NvBAu9KzSD/YHKGL6Y0q09M5KcMgBZtL1B9Uc36WtT8B
FZxxqoPB4xAz2Od9E7xlCBv7whxZuKH2lT9XqQghGXcz5oNTE7UBUNrmEQIDAQAB
o4ICFDCCAhAwHQYDVR0OBBYEFGnl2YqO1ykd4lZ5aGVkA4sXqoUiMB8GA1UdIwQY
MBaAFKDvX7v8p6k8/ull7ra97m+0PEA+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2Mt
MDI5MmIwMjAxNTBhLzEvYWVYWmlvN1hLUjNpVm5sb1pXUURpeGVxaFNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2MtMDI5MmIwMjAxNTBh
LzEvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAATARAwMATVQDBAdX
ZAADBAe8jYAwDQYJKoZIhvcNAQELBQADggEBAG6G2hAN6M1hLifk9kq/0+n1zmRy
UX2QAbfEn2HYRfEb4Nbp5pQm+IS3XL04UWbeFRSijxAgXLlRY7lJOKKAqEJvACdc
cC+nVgbCikw/3HcB9SRmk06MfRwmy4EFE6J1dc3f7R/h7BDGH/Ic9UVSe6z2iaIe
8omnUr/Ei9M4hoTVccq2SvdTF1PqL1YYd3wvFxkGPXtTrs++Mel5fUbUkFpbHjDo
MSj1kwKGBtDx0BVYB+AIfitLTA0cbl5ROc9nAz7Ln8+lj8bwiJlcZfNnwtz3X626
ZeyESGK9ZcjKga58G4jF7xy4oE9M8eWMyqOEowysqLaWG8h5034tsaYGpWs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org