Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/A3F0RxW2tInAo5AYLR1D-zhu0Hg.roa
File: A3F0RxW2tInAo5AYLR1D-zhu0Hg.roa (raw, json)
Hash identifier: eZwkuV3zA4O3SoZmoSvcr1V0cFU2I7G1tZh1knYNgCM=
Subject key identifier: 03:71:74:47:15:B6:B4:89:C0:A3:90:18:2D:1D:43:FB:38:6E:D0:78
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 0618A4F3
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/A3F0RxW2tInAo5AYLR1D-zhu0Hg.roa
Signing time: Tue 03 May 2022 10:25:26 +0000
ROA not before: Tue 03 May 2022 10:25:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 77.73.129.0/24 maxlen: 24
77.73.132.0/24 maxlen: 24
77.73.134.0/24 maxlen: 24
77.73.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102278387 (0x618a4f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: May 3 10:25:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0371744715b6b489c0a390182d1d43fb386ed078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:91:b1:64:d0:df:d7:6b:8c:22:0b:c2:f6:1f:
68:b7:6d:1f:ae:70:d0:09:bf:ce:c3:29:e8:59:f2:
17:55:2e:fc:8e:26:26:b8:58:f2:17:6b:75:8d:88:
f6:01:d1:31:ad:1e:55:74:56:ba:e1:f2:36:66:b5:
d5:2c:bc:45:f4:08:1e:e5:02:a6:68:d9:09:71:b4:
a8:db:87:07:df:6f:97:15:3d:f6:c6:6c:bc:21:6d:
4c:87:81:95:8f:d3:fb:a8:5b:47:ad:5a:45:b7:17:
b9:c1:ed:36:2e:02:c3:ce:50:36:46:54:f3:b5:4d:
a5:ba:91:6b:a7:fa:b9:cd:3a:bd:fa:be:f2:ac:69:
9c:91:a3:3b:e6:79:c0:92:6c:a4:0a:49:de:ac:51:
5f:a3:c2:6e:68:b5:76:d2:f7:f7:ea:dd:40:0f:ee:
b5:f6:41:c1:b8:1a:48:16:94:e5:5d:73:8d:44:49:
01:5a:0e:d8:0c:a3:a3:cf:a8:84:8a:02:ac:50:fd:
28:84:f7:11:34:b4:c4:6f:ff:9d:75:e5:da:11:19:
c7:ee:2e:83:fa:c5:4a:ea:45:4c:1c:2a:23:25:d3:
78:6b:9d:25:64:c5:3b:be:19:d9:49:ec:5d:d1:46:
7f:e5:7f:78:0a:e4:0c:fd:6c:22:7b:ea:00:65:79:
7b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:71:74:47:15:B6:B4:89:C0:A3:90:18:2D:1D:43:FB:38:6E:D0:78
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/A3F0RxW2tInAo5AYLR1D-zhu0Hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.129.0/24
77.73.132.0-77.73.134.255
Signature Algorithm: sha256WithRSAEncryption
cb:71:1c:7c:e3:be:fe:c7:32:ae:93:ff:ce:81:46:57:b7:2c:
c4:97:b8:48:c7:7d:b4:fd:34:22:57:77:c2:da:dc:94:fa:4f:
dd:d7:87:c0:88:c9:14:a8:7c:6a:12:8a:60:89:c0:ba:ad:f0:
f0:31:44:df:1f:ed:38:ad:fe:e8:ab:0a:42:ce:25:16:65:12:
1b:db:f4:75:b5:98:4f:f6:2b:0e:44:86:5c:89:db:81:3b:73:
1d:7a:23:e6:37:d6:d3:19:f1:fe:88:01:eb:fc:65:b2:ef:5b:
ff:e2:b9:52:9a:7d:94:2f:0a:c8:d6:47:1c:9f:bd:6d:57:40:
db:6f:72:74:7a:ae:f5:b5:93:4e:1d:bf:05:49:a3:2e:78:b7:
d8:41:6c:ec:16:94:89:ab:e5:ac:35:9c:53:e5:a2:57:30:02:
da:be:2b:8f:a5:47:4d:ca:00:ee:f7:e3:03:d5:39:fe:0f:d5:
39:41:58:7d:ed:8e:0f:cb:40:ae:14:aa:26:a8:25:15:fd:ad:
86:0a:7b:d1:ad:43:39:f5:22:76:a1:8c:e6:f0:bd:cc:42:cb:
c8:15:3c:30:03:23:fc:f3:1b:02:98:3a:c1:e5:52:ff:65:43:
b5:8e:4f:0d:60:1c:9b:bc:08:92:82:17:25:50:dd:a2:ae:2d:
ca:b8:f6:0e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIEBhik8zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZmZhMTNmMWFlMDUzOTE2MjgwZWM2OGVlMWIwOTc2ZjllYmQzZWE4MB4XDTIyMDUw
MzEwMjUyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDM3MTc0NDcxNWI2
YjQ4OWMwYTM5MDE4MmQxZDQzZmIzODZlZDA3ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ+RsWTQ39drjCILwvYfaLdtH65w0Am/zsMp6FnyF1Uu/I4m
JrhY8hdrdY2I9gHRMa0eVXRWuuHyNma11Sy8RfQIHuUCpmjZCXG0qNuHB99vlxU9
9sZsvCFtTIeBlY/T+6hbR61aRbcXucHtNi4Cw85QNkZU87VNpbqRa6f6uc06vfq+
8qxpnJGjO+Z5wJJspApJ3qxRX6PCbmi1dtL39+rdQA/utfZBwbgaSBaU5V1zjURJ
AVoO2Ayjo8+ohIoCrFD9KIT3ETS0xG//nXXl2hEZx+4ug/rFSupFTBwqIyXTeGud
JWTFO74Z2UnsXdFGf+V/eArkDP1sInvqAGV5e68CAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBQDcXRHFba0icCjkBgtHUP7OG7QeDAfBgNVHSMEGDAWgBSv+hPxrgU5FigO
xo7hsJdvnr0+qDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Jfb1Q4YTRGT1JZb0RzYU80YkNYYjU2OVBxZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTkvYTNjMGE0LTMxOTEtNGU1MS04ZDgwLTQ3OGMyYzhjYjJhMC8x
L0EzRjBSeFcydEluQW81QVlMUjFELXpodTBIZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkv
YTNjMGE0LTMxOTEtNGU1MS04ZDgwLTQ3OGMyYzhjYjJhMC8xL3Jfb1Q4YTRGT1JZ
b0RzYU80YkNYYjU2OVBxZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwGgQCAAEwFAMEAE1JgTAMAwQCTUmEAwQATUmGMA0G
CSqGSIb3DQEBCwUAA4IBAQDLcRx8477+xzKuk//OgUZXtyzEl7hIx320/TQiV3fC
2tyU+k/d14fAiMkUqHxqEopgicC6rfDwMUTfH+04rf7oqwpCziUWZRIb2/R1tZhP
9isORIZciduBO3MdeiPmN9bTGfH+iAHr/GWy71v/4rlSmn2ULwrI1kccn71tV0Db
b3J0eq71tZNOHb8FSaMueLfYQWzsFpSJq+WsNZxT5aJXMALaviuPpUdNygDu9+MD
1Tn+D9U5QVh97Y4Py0CuFKomqCUV/a2GCnvRrUM59SJ2oYzm8L3MQsvIFTwwAyP8
8xsCmDrB5VL/ZUO1jk8NYBybvAiSghclUN2iri3KuPYO
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:18 2024 by rpki-client on console-ams.rpki-client.org