Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/6c808e-0015-4d62-81d8-ecb7ae2722c1/1/D6G_N5Fxzdnf4JX41T6qgGRHBYo.roa
File: D6G_N5Fxzdnf4JX41T6qgGRHBYo.roa (raw, json)
Hash identifier: g3eRaqK0M7SFijN5Z66FEoRnDQYHKQ3CsK4n23kAooQ=
Subject key identifier: 0F:A1:BF:37:91:71:CD:D9:DF:E0:95:F8:D5:3E:AA:80:64:47:05:8A
Certificate issuer: /CN=16f145727d34ae6607a615301283eeebd5d6291c
Certificate serial: 03CF1ADD
Authority key identifier: 16:F1:45:72:7D:34:AE:66:07:A6:15:30:12:83:EE:EB:D5:D6:29:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FvFFcn00rmYHphUwEoPu69XWKRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/6c808e-0015-4d62-81d8-ecb7ae2722c1/1/D6G_N5Fxzdnf4JX41T6qgGRHBYo.roa
Signing time: Sat 01 Jan 2022 09:02:30 +0000
ROA not before: Sat 01 Jan 2022 09:02:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10310
IP address blocks: 77.238.189.0/24 maxlen: 25
2a00:1288:f03e::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63904477 (0x3cf1add)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16f145727d34ae6607a615301283eeebd5d6291c
Validity
Not Before: Jan 1 09:02:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fa1bf379171cdd9dfe095f8d53eaa806447058a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:08:ef:b0:6c:ba:7d:da:ab:d3:08:ad:29:81:
5f:21:c6:e5:90:02:59:2d:81:86:4d:a2:05:8a:bd:
b9:fe:7b:58:a4:43:ba:fd:ae:a1:ef:21:88:1a:86:
73:16:73:ce:51:49:64:a5:f8:77:1e:68:4b:b6:b6:
cf:3f:12:7e:e9:a5:aa:79:9b:28:08:76:f5:f4:64:
df:fa:0a:12:28:78:d0:df:71:16:6c:b1:3a:6d:3a:
a1:80:ea:93:d6:84:9c:e3:19:ae:0b:fc:c0:04:67:
ed:fd:c4:f0:42:be:7e:ec:20:fe:a1:d5:6f:c1:97:
6e:1a:05:e2:bf:89:3d:ef:0f:f5:78:e4:a8:12:3a:
3b:eb:33:44:e1:2e:ee:d6:2a:fe:a2:7b:f9:23:2e:
ba:8d:ed:88:41:b2:ed:9d:27:3f:e4:64:5d:33:f0:
a6:6d:2d:88:ba:21:5e:c5:20:26:a7:08:f4:34:ac:
53:06:9f:4b:dc:f5:12:56:06:b5:08:4d:bb:a4:68:
37:09:45:48:c8:6e:78:3d:ce:28:dc:1d:76:15:dd:
a1:91:b0:55:15:77:5d:05:c5:e0:fb:78:94:06:6c:
e6:7c:53:ac:b0:b1:b8:86:ad:e2:36:07:90:bb:26:
1c:bb:b0:40:48:2c:d6:03:63:b8:cf:a1:5d:28:88:
ba:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:A1:BF:37:91:71:CD:D9:DF:E0:95:F8:D5:3E:AA:80:64:47:05:8A
X509v3 Authority Key Identifier:
keyid:16:F1:45:72:7D:34:AE:66:07:A6:15:30:12:83:EE:EB:D5:D6:29:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FvFFcn00rmYHphUwEoPu69XWKRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/6c808e-0015-4d62-81d8-ecb7ae2722c1/1/D6G_N5Fxzdnf4JX41T6qgGRHBYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/6c808e-0015-4d62-81d8-ecb7ae2722c1/1/FvFFcn00rmYHphUwEoPu69XWKRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.238.189.0/24
IPv6:
2a00:1288:f03e::/48
Signature Algorithm: sha256WithRSAEncryption
ce:f6:fc:ce:b4:eb:b0:ea:4c:92:7f:45:f6:0b:50:c8:31:6d:
28:33:7f:f0:4e:7f:15:93:a5:54:f5:21:bc:d1:25:c6:7d:90:
9c:28:28:c2:f6:33:44:06:1e:f7:8f:eb:29:e3:a0:75:15:ed:
07:44:9f:7b:0a:07:58:cc:11:56:ff:a5:92:b6:50:44:f1:90:
20:10:70:ee:d9:f1:f0:19:21:fb:6b:68:fa:82:07:4b:c0:5c:
20:3a:d3:e3:16:d9:88:01:fe:7a:0e:ee:af:00:c7:9b:29:c6:
f9:75:2f:84:d6:22:93:c0:0a:8a:27:d1:da:ea:c1:ff:46:c4:
db:5d:34:6c:55:3b:82:e5:6e:b9:17:cd:ce:fc:34:1b:02:b1:
2f:e1:08:0d:44:f1:29:de:32:f4:b7:05:c1:ca:4f:8b:01:30:
6b:1c:56:1f:1d:b0:ba:6c:04:f3:9d:54:1a:8e:86:61:db:2a:
6c:42:ab:37:f3:9a:68:44:86:0e:d9:99:4b:b8:e2:72:7d:d8:
11:7b:b9:da:7e:a1:6f:04:95:ac:8e:45:3a:3a:5e:4c:ad:93:
e2:ed:68:44:36:f9:e4:80:c4:f4:f8:e7:dc:ac:ea:88:66:e7:
05:c9:6a:38:11:52:2d:85:ac:aa:9a:39:dd:80:46:04:83:2a:
b9:70:72:b3
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEA88a3TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NmYxNDU3MjdkMzRhZTY2MDdhNjE1MzAxMjgzZWVlYmQ1ZDYyOTFjMB4XDTIyMDEw
MTA5MDIzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGZhMWJmMzc5MTcx
Y2RkOWRmZTA5NWY4ZDUzZWFhODA2NDQ3MDU4YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALUI77Bsun3aq9MIrSmBXyHG5ZACWS2Bhk2iBYq9uf57WKRD
uv2uoe8hiBqGcxZzzlFJZKX4dx5oS7a2zz8SfumlqnmbKAh29fRk3/oKEih40N9x
FmyxOm06oYDqk9aEnOMZrgv8wARn7f3E8EK+fuwg/qHVb8GXbhoF4r+JPe8P9Xjk
qBI6O+szROEu7tYq/qJ7+SMuuo3tiEGy7Z0nP+RkXTPwpm0tiLohXsUgJqcI9DSs
UwafS9z1ElYGtQhNu6RoNwlFSMhueD3OKNwddhXdoZGwVRV3XQXF4Pt4lAZs5nxT
rLCxuIat4jYHkLsmHLuwQEgs1gNjuM+hXSiIuj8CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQPob83kXHN2d/glfjVPqqAZEcFijAfBgNVHSMEGDAWgBQW8UVyfTSuZgem
FTASg+7r1dYpHDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0Z2RkZjbjAwcm1ZSHBoVXdFb1B1NjlYV0tSdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGYvNmM4MDhlLTAwMTUtNGQ2Mi04MWQ4LWVjYjdhZTI3MjJjMS8x
L0Q2R19ONUZ4emRuZjRKWDQxVDZxZ0dSSEJZby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGYv
NmM4MDhlLTAwMTUtNGQ2Mi04MWQ4LWVjYjdhZTI3MjJjMS8xL0Z2RkZjbjAwcm1Z
SHBoVXdFb1B1NjlYV0tSdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAE3uvTAPBAIAAjAJAwcAKgASiPA+
MA0GCSqGSIb3DQEBCwUAA4IBAQDO9vzOtOuw6kySf0X2C1DIMW0oM3/wTn8Vk6VU
9SG80SXGfZCcKCjC9jNEBh73j+sp46B1Fe0HRJ97CgdYzBFW/6WStlBE8ZAgEHDu
2fHwGSH7a2j6ggdLwFwgOtPjFtmIAf56Du6vAMebKcb5dS+E1iKTwAqKJ9Ha6sH/
RsTbXTRsVTuC5W65F83O/DQbArEv4QgNRPEp3jL0twXByk+LATBrHFYfHbC6bATz
nVQajoZh2ypsQqs385poRIYO2ZlLuOJyfdgRe7nafqFvBJWsjkU6Ol5MrZPi7WhE
NvnkgMT0+OfcrOqIZucFyWo4EVIthayqmjndgEYEgyq5cHKz
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:51 2023 by rpki-client on console-ams.rpki-client.org