Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/IC7fp_71yGSsh9pNexbpHG_toQI.roa
File: IC7fp_71yGSsh9pNexbpHG_toQI.roa (raw, json)
Hash identifier: tzdTrDJcDJmVUyioXFV2OZ4iU6zm82w1pLTO4lSziz8=
Subject key identifier: 20:2E:DF:A7:FE:F5:C8:64:AC:87:DA:4D:7B:16:E9:1C:6F:ED:A1:02
Certificate issuer: /CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Certificate serial: 03A9096B
Authority key identifier: 52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/IC7fp_71yGSsh9pNexbpHG_toQI.roa
Signing time: Sat 01 Jan 2022 10:56:04 +0000
ROA not before: Sat 01 Jan 2022 10:56:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35081
IP address blocks: 77.247.216.0/21 maxlen: 22
193.239.128.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61409643 (0x3a9096b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Validity
Not Before: Jan 1 10:56:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=202edfa7fef5c864ac87da4d7b16e91c6feda102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:67:57:23:9e:39:80:28:a5:14:3d:20:72:3c:
cf:4e:7e:32:4d:a3:4f:0a:a0:1c:aa:79:4b:de:ab:
dc:08:8f:e1:6d:f9:f4:d0:cf:14:c3:15:21:27:51:
29:e2:79:d1:0f:37:ec:2d:3a:4a:60:b8:61:a7:de:
58:e2:06:94:3b:8b:49:dd:77:67:ce:87:47:08:b5:
e9:fe:6d:f1:a5:9a:18:97:2c:fe:20:4b:92:7f:c2:
1a:b9:bb:1c:34:bd:6f:b8:1b:e9:bf:0b:4e:ff:5b:
0f:5e:4c:66:97:75:01:a6:ec:22:52:71:a0:1b:e4:
e9:ca:43:a0:82:e8:31:cf:56:6f:43:cb:fe:06:c2:
a0:2b:d1:c3:9a:40:cd:99:98:51:3a:e7:80:ca:d4:
2d:7c:ca:49:d0:d6:ee:7a:60:4a:16:2a:58:55:24:
00:f7:76:a9:f9:af:44:02:30:a9:af:31:3d:6a:52:
14:29:ff:04:6d:42:f6:21:85:e0:b6:e8:67:8a:20:
bd:f8:41:36:d1:31:80:d8:67:72:5f:f7:17:7b:24:
69:25:2d:c2:94:f7:47:62:1a:00:bd:98:e6:a1:b3:
de:45:0d:30:ea:5e:65:3f:ed:07:9d:44:c3:00:95:
e0:e0:f4:13:5d:47:3d:47:2b:2b:7a:3f:7b:c3:aa:
ae:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:2E:DF:A7:FE:F5:C8:64:AC:87:DA:4D:7B:16:E9:1C:6F:ED:A1:02
X509v3 Authority Key Identifier:
keyid:52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/IC7fp_71yGSsh9pNexbpHG_toQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Urm54lZYDENEuyQURbTVLlT91Qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.247.216.0/21
193.239.128.0/23
Signature Algorithm: sha256WithRSAEncryption
62:0b:6d:b2:bc:a1:0c:0a:9c:38:10:4a:98:fd:2f:aa:82:43:
28:d8:16:b8:61:fe:61:ea:54:30:af:b6:16:e5:a8:f5:ae:3a:
8b:7e:5c:8c:8c:5d:ca:76:ad:2a:1b:78:94:39:e9:1b:1a:73:
c2:63:ac:83:f7:a6:b4:cd:6a:78:7f:84:2d:6a:2d:48:76:60:
7e:ef:5b:01:3d:83:fb:a0:23:92:2d:1b:6d:32:fe:97:19:af:
08:4d:8e:cd:cd:31:51:d8:d0:2f:b1:6e:24:49:ad:1e:d3:c8:
30:81:4a:28:da:9f:25:a2:07:0f:8d:cd:8f:45:4b:24:c7:6a:
17:2a:a4:aa:21:65:42:8f:cd:71:0b:95:e8:e7:86:78:44:bd:
a1:73:75:0d:75:a8:a6:82:e8:9c:87:8a:87:b9:06:87:82:85:
66:9f:25:fe:43:3b:7f:88:a5:fc:7e:bb:71:12:48:2c:f8:9d:
e3:cc:a4:bd:3b:f4:eb:1f:62:59:e9:45:b1:0c:ae:22:67:93:
5f:b2:d9:74:cc:8f:99:81:89:f6:ca:6a:eb:be:0e:ed:5d:af:
a8:cf:62:df:e7:b3:95:af:83:df:b2:2c:13:e4:7d:15:ab:b0:
86:83:66:87:49:07:0c:bc:f2:76:09:f5:30:fb:a0:fe:25:f6:
4a:e3:ca:b4
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEA6kJazANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MmI5YjllMjU2NTgwYzQzNDRiYjI0MTQ0NWI0ZDUyZTU0ZmRkNTBiMB4XDTIyMDEw
MTEwNTYwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjAyZWRmYTdmZWY1
Yzg2NGFjODdkYTRkN2IxNmU5MWM2ZmVkYTEwMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMlnVyOeOYAopRQ9IHI8z05+Mk2jTwqgHKp5S96r3AiP4W35
9NDPFMMVISdRKeJ50Q837C06SmC4YafeWOIGlDuLSd13Z86HRwi16f5t8aWaGJcs
/iBLkn/CGrm7HDS9b7gb6b8LTv9bD15MZpd1AabsIlJxoBvk6cpDoILoMc9Wb0PL
/gbCoCvRw5pAzZmYUTrngMrULXzKSdDW7npgShYqWFUkAPd2qfmvRAIwqa8xPWpS
FCn/BG1C9iGF4LboZ4ogvfhBNtExgNhncl/3F3skaSUtwpT3R2IaAL2Y5qGz3kUN
MOpeZT/tB51EwwCV4OD0E11HPUcrK3o/e8OqrncCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQgLt+n/vXIZKyH2k17Fukcb+2hAjAfBgNVHSMEGDAWgBRSubniVlgMQ0S7
JBRFtNUuVP3VCzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VybTU0bFpZREVORXV5UVVSYlRWTGxUOTFRcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvZWFmODFkLWE5ZGYtNGE2YS1iNjEwLWRlMDVjNTQwNDViYi8x
L0lDN2ZwXzcxeUdTc2g5cE5leGJwSEdfdG9RSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
ZWFmODFkLWE5ZGYtNGE2YS1iNjEwLWRlMDVjNTQwNDViYi8xL1VybTU0bFpZREVO
RXV5UVVSYlRWTGxUOTFRcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEA0332AMEAcHvgDANBgkqhkiG9w0B
AQsFAAOCAQEAYgttsryhDAqcOBBKmP0vqoJDKNgWuGH+YepUMK+2FuWo9a46i35c
jIxdynatKht4lDnpGxpzwmOsg/emtM1qeH+ELWotSHZgfu9bAT2D+6Ajki0bbTL+
lxmvCE2Ozc0xUdjQL7FuJEmtHtPIMIFKKNqfJaIHD43Nj0VLJMdqFyqkqiFlQo/N
cQuV6OeGeES9oXN1DXWopoLonIeKh7kGh4KFZp8l/kM7f4il/H67cRJILPid48yk
vTv06x9iWelFsQyuImeTX7LZdMyPmYGJ9spq674O7V2vqM9i3+ezla+D37IsE+R9
FauwhoNmh0kHDLzydgn1MPug/iX2SuPKtA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org