Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/L_Qt11lCBKQ-0p3TvJ7e-GGcAjI.roa
File: L_Qt11lCBKQ-0p3TvJ7e-GGcAjI.roa (raw, json)
Hash identifier: UNu3waqm8Kn7X3NAk10uR2bYBO7w0Hm543nhivlzUAE=
Subject key identifier: 2F:F4:2D:D7:59:42:04:A4:3E:D2:9D:D3:BC:9E:DE:F8:61:9C:02:32
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 01853A8136B123B38EDF01F6B16B3AF2B3D8
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/L_Qt11lCBKQ-0p3TvJ7e-GGcAjI.roa
Signing time: Thu 22 Dec 2022 15:43:44 +0000
ROA not before: Thu 22 Dec 2022 15:43:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210352
IP address blocks: 77.83.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3a:81:36:b1:23:b3:8e:df:01:f6:b1:6b:3a:f2:b3:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Dec 22 15:43:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ff42dd7594204a43ed29dd3bc9edef8619c0232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:57:f1:74:d6:ff:f1:c4:82:ff:e0:1e:33:ae:
8d:bc:94:f3:d6:74:38:b9:e1:54:f3:fe:a1:e6:e7:
0f:98:39:cc:93:b2:e0:f8:08:82:af:de:35:a9:e5:
5d:64:56:fc:8c:df:2d:86:ac:27:cc:18:9e:ed:d3:
45:cb:9f:92:14:32:89:b9:92:49:4e:60:d9:3d:5b:
f9:40:2a:e6:2a:e4:92:80:5d:b5:1d:97:da:43:6b:
ce:1e:af:fb:7e:88:a3:54:e9:d5:85:cc:c8:6f:3d:
e7:6e:21:58:d3:98:25:8a:72:88:1c:f3:fe:c7:48:
57:59:5e:32:da:47:a5:a0:1a:8b:ef:b6:51:62:60:
06:f2:06:57:dc:9c:54:53:15:bd:d5:24:00:e4:dd:
83:a3:5a:51:81:c9:5e:74:85:d6:e1:0c:0a:48:63:
20:ca:c1:a3:f4:03:5a:25:cd:95:07:d2:98:d6:e4:
57:b1:71:c3:ae:0b:ea:58:72:65:79:2f:0b:5a:80:
0c:5b:ae:18:e1:16:61:9b:08:80:8f:aa:dd:bb:6a:
c3:38:31:e2:a7:12:cb:5e:35:ee:66:23:24:25:79:
30:74:44:d7:06:3a:63:93:3f:68:5a:9e:e6:06:13:
81:00:1a:c9:75:44:21:84:5d:b0:75:52:9d:bc:7c:
1d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:F4:2D:D7:59:42:04:A4:3E:D2:9D:D3:BC:9E:DE:F8:61:9C:02:32
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/L_Qt11lCBKQ-0p3TvJ7e-GGcAjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.117.0/24
Signature Algorithm: sha256WithRSAEncryption
98:7a:6e:ee:7b:de:e0:c9:77:6c:5f:f8:45:f3:cc:b0:97:af:
cd:cb:f4:55:f9:fc:70:95:55:74:44:6a:3d:af:88:9a:ad:3c:
3a:a7:88:df:e1:c1:13:62:06:e4:05:47:33:c3:f6:9c:50:75:
5c:84:29:67:49:c2:99:5f:17:3b:ef:bb:15:cd:94:f3:8a:c2:
6f:b9:b3:de:fb:c2:28:93:df:dd:eb:1f:42:56:43:c2:50:7d:
78:0f:75:e0:89:f4:f3:c0:a3:2a:b1:5b:e1:70:10:42:8d:13:
2e:eb:61:6e:bf:43:f2:9d:ef:5d:01:3a:d4:fa:69:cd:f8:52:
61:fe:f3:c5:5f:39:1d:0d:4c:31:a0:19:9e:5b:c2:48:42:3a:
f8:41:f1:7b:8e:27:85:b2:b1:50:d9:7e:6d:64:1a:69:e2:57:
29:ad:ba:f8:1d:58:31:eb:f4:1b:1c:b8:3b:c6:10:79:dc:a1:
4c:38:2d:e2:77:6e:5b:14:2a:e2:b9:85:f5:e9:a8:e9:0d:39:
44:79:d1:1d:22:79:44:f5:cd:e2:58:89:17:8f:c5:7d:6b:0c:
19:f8:18:e2:83:12:3f:72:e6:1f:8d:a1:85:10:ec:e6:1c:27:
30:ec:00:13:f2:70:01:fb:44:8c:b7:eb:b0:b9:cb:49:a0:82:
61:e9:63:b0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYU6gTaxI7OO3wH2sWs68rPYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1YjFkMTNjMmUyNmUxMjc4NjI0NmE1ZWM0YzViZWE2OTg2
NGIyMGYwHhcNMjIxMjIyMTU0MzQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZmY0MmRkNzU5NDIwNGE0M2VkMjlkZDNiYzllZGVmODYxOWMwMjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFfxdNb/8cSC/+AeM66NvJTz1nQ4
ueFU8/6h5ucPmDnMk7Lg+AiCr941qeVdZFb8jN8thqwnzBie7dNFy5+SFDKJuZJJ
TmDZPVv5QCrmKuSSgF21HZfaQ2vOHq/7foijVOnVhczIbz3nbiFY05glinKIHPP+
x0hXWV4y2keloBqL77ZRYmAG8gZX3JxUUxW91SQA5N2Do1pRgcledIXW4QwKSGMg
ysGj9ANaJc2VB9KY1uRXsXHDrgvqWHJleS8LWoAMW64Y4RZhmwiAj6rdu2rDODHi
pxLLXjXuZiMkJXkwdETXBjpjkz9oWp7mBhOBABrJdUQhhF2wdVKdvHwdlwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC/0LddZQgSkPtKd07ye3vhhnAIyMB8GA1UdIwQY
MBaAFAWx0TwuJuEnhiRqXsTFvqaYZLIPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjct
NDkwNTI0M2JjODI4LzEvTF9RdDExbENCS1EtMHAzVHZKN2UtR0djQWpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjctNDkwNTI0M2JjODI4
LzEvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVN1MA0G
CSqGSIb3DQEBCwUAA4IBAQCYem7ue97gyXdsX/hF88ywl6/Ny/RV+fxwlVV0RGo9
r4iarTw6p4jf4cETYgbkBUczw/acUHVchClnScKZXxc777sVzZTzisJvubPe+8Io
k9/d6x9CVkPCUH14D3XgifTzwKMqsVvhcBBCjRMu62Fuv0Pyne9dATrU+mnN+FJh
/vPFXzkdDUwxoBmeW8JIQjr4QfF7jieFsrFQ2X5tZBpp4lcprbr4HVgx6/QbHLg7
xhB53KFMOC3id25bFCriuYX16ajpDTlEedEdInlE9c3iWIkXj8V9awwZ+BjigxI/
cuYfjaGFEOzmHCcw7AAT8nAB+0SMt+uwuctJoIJh6WOw
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:54 2023 by rpki-client on console-fra.rpki-client.org