Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/fcd990-72f4-4ebd-864a-92e451877d2c/1/NisTFrEGvF5EYE8v-Vk8-WdqjJA.roa
File: NisTFrEGvF5EYE8v-Vk8-WdqjJA.roa (raw, json)
Hash identifier: B+7CyfSqPCOxOsrOW3Y1Z7Xpu8V90XBsCpRG7ZG/zCg=
Subject key identifier: 36:2B:13:16:B1:06:BC:5E:44:60:4F:2F:F9:59:3C:F9:67:6A:8C:90
Certificate issuer: /CN=761e791f3ae83ae8b263e3cdb682a3475b5707df
Certificate serial: 09B74C4D
Authority key identifier: 76:1E:79:1F:3A:E8:3A:E8:B2:63:E3:CD:B6:82:A3:47:5B:57:07:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dh55HzroOuiyY-PNtoKjR1tXB98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/fcd990-72f4-4ebd-864a-92e451877d2c/1/NisTFrEGvF5EYE8v-Vk8-WdqjJA.roa
Signing time: Sat 01 Jan 2022 03:54:04 +0000
ROA not before: Sat 01 Jan 2022 03:54:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43341
IP address blocks: 77.83.176.0/22 maxlen: 22
2a09:8580::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163007565 (0x9b74c4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=761e791f3ae83ae8b263e3cdb682a3475b5707df
Validity
Not Before: Jan 1 03:54:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=362b1316b106bc5e44604f2ff9593cf9676a8c90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:02:ec:a0:95:a2:a2:15:33:6f:dc:cb:26:b9:
b6:08:23:a5:32:83:45:ac:70:52:da:d7:5e:80:fb:
36:99:6d:5c:fb:b3:e7:db:6c:70:00:7d:05:42:6c:
b1:07:64:d2:e2:50:4c:09:92:e0:bd:c8:df:30:0e:
9a:50:e1:d5:6c:0f:c6:96:49:55:87:7e:d0:b9:45:
e2:f6:61:99:e0:d3:28:6a:14:87:09:7e:6c:57:ac:
e3:cd:f1:e1:fe:bc:bc:ec:6b:a3:8b:e0:75:b8:7b:
dc:d5:ef:d4:35:72:2b:a1:1f:a4:9a:f4:e5:38:1f:
4c:cb:26:69:d6:78:dc:a9:9b:c4:48:fe:f0:6d:1a:
91:1f:38:78:6d:d0:de:11:7e:19:73:31:7c:ef:5c:
72:52:1f:bd:b8:4b:30:57:a8:94:57:05:0c:d9:4d:
b4:30:e5:44:8c:e1:d3:d0:6a:a9:ce:f4:f6:e8:7a:
81:03:59:f7:8d:57:57:0c:fb:f8:48:41:be:88:4c:
34:ba:d6:9b:09:e5:11:7b:8d:b7:42:00:b1:b7:91:
fa:f2:e3:fb:f9:94:fd:f6:d6:bc:a5:5a:a1:c1:69:
d1:28:99:2b:88:16:79:f0:08:5f:3a:1f:bb:22:65:
6f:04:8c:7e:b0:0d:cd:55:f0:11:11:72:8a:57:06:
57:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:2B:13:16:B1:06:BC:5E:44:60:4F:2F:F9:59:3C:F9:67:6A:8C:90
X509v3 Authority Key Identifier:
keyid:76:1E:79:1F:3A:E8:3A:E8:B2:63:E3:CD:B6:82:A3:47:5B:57:07:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dh55HzroOuiyY-PNtoKjR1tXB98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/fcd990-72f4-4ebd-864a-92e451877d2c/1/NisTFrEGvF5EYE8v-Vk8-WdqjJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/fcd990-72f4-4ebd-864a-92e451877d2c/1/dh55HzroOuiyY-PNtoKjR1tXB98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.176.0/22
IPv6:
2a09:8580::/29
Signature Algorithm: sha256WithRSAEncryption
31:3c:9b:b8:e8:99:79:dc:01:7e:24:c5:76:8c:86:c7:c9:b6:
a1:a2:f2:c6:ea:41:00:83:c2:e4:90:3c:6f:c8:7b:a8:6c:f5:
a2:fa:b2:71:73:7a:ba:98:f5:47:98:1a:b8:cb:9f:fc:20:b0:
b4:7d:12:03:70:fc:6a:aa:ab:6a:3f:c5:ee:dc:32:e8:98:2f:
16:4e:ee:9e:14:33:ac:54:40:34:7b:2a:64:6c:45:9d:c9:40:
34:dc:bf:06:0f:de:a5:b0:f0:54:ff:c8:88:ba:e1:ff:0a:24:
29:ad:f1:0f:3b:dc:a3:87:24:78:b1:5d:ed:d0:7f:04:4d:fa:
52:80:5a:8c:19:b2:75:13:d1:12:70:99:ad:a9:28:6f:e1:a6:
f2:d3:de:c6:0e:57:a4:e0:65:1a:10:49:69:02:db:8f:7b:28:
99:8a:b4:6b:f2:73:05:82:ca:2c:57:f6:28:6b:1e:d8:14:a4:
c7:66:9b:26:4d:73:f7:08:ae:b6:26:54:d7:09:d2:7f:b5:c2:
72:ae:39:16:4a:f6:6e:d7:b9:22:0f:a1:0e:37:74:17:30:56:
27:a8:a5:a9:07:31:e5:95:19:33:e9:33:3e:c0:3e:34:36:18:
fb:f0:a4:43:62:02:26:d7:a9:88:79:b0:34:7a:85:20:48:30:
12:f0:a3:7d
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECbdMTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NjFlNzkxZjNhZTgzYWU4YjI2M2UzY2RiNjgyYTM0NzViNTcwN2RmMB4XDTIyMDEw
MTAzNTQwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzYyYjEzMTZiMTA2
YmM1ZTQ0NjA0ZjJmZjk1OTNjZjk2NzZhOGM5MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMQC7KCVoqIVM2/cyya5tggjpTKDRaxwUtrXXoD7NpltXPuz
59tscAB9BUJssQdk0uJQTAmS4L3I3zAOmlDh1WwPxpZJVYd+0LlF4vZhmeDTKGoU
hwl+bFes483x4f68vOxro4vgdbh73NXv1DVyK6EfpJr05TgfTMsmadZ43KmbxEj+
8G0akR84eG3Q3hF+GXMxfO9cclIfvbhLMFeolFcFDNlNtDDlRIzh09Bqqc709uh6
gQNZ941XVwz7+EhBvohMNLrWmwnlEXuNt0IAsbeR+vLj+/mU/fbWvKVaocFp0SiZ
K4gWefAIXzofuyJlbwSMfrANzVXwERFyilcGV2ECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQ2KxMWsQa8XkRgTy/5WTz5Z2qMkDAfBgNVHSMEGDAWgBR2HnkfOug66LJj
4822gqNHW1cH3zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RoNTVIenJvT3VpeVktUE50b0tqUjF0WEI5OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDkvZmNkOTkwLTcyZjQtNGViZC04NjRhLTkyZTQ1MTg3N2QyYy8x
L05pc1RGckVHdkY1RVlFOHYtVms4LVdkcWpKQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkv
ZmNkOTkwLTcyZjQtNGViZC04NjRhLTkyZTQ1MTg3N2QyYy8xL2RoNTVIenJvT3Vp
eVktUE50b0tqUjF0WEI5OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAk1TsDANBAIAAjAHAwUDKgmFgDAN
BgkqhkiG9w0BAQsFAAOCAQEAMTybuOiZedwBfiTFdoyGx8m2oaLyxupBAIPC5JA8
b8h7qGz1ovqycXN6upj1R5gauMuf/CCwtH0SA3D8aqqraj/F7twy6JgvFk7unhQz
rFRANHsqZGxFnclANNy/Bg/epbDwVP/IiLrh/wokKa3xDzvco4ckeLFd7dB/BE36
UoBajBmydRPREnCZrakob+Gm8tPexg5XpOBlGhBJaQLbj3somYq0a/JzBYLKLFf2
KGse2BSkx2abJk1z9wiutiZU1wnSf7XCcq45Fkr2bte5Ig+hDjd0FzBWJ6ilqQcx
5ZUZM+kzPsA+NDYY+/CkQ2ICJtepiHmwNHqFIEgwEvCjfQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:15 2024 by rpki-client on console-ams.rpki-client.org