Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/L5xO8HOiHyYgpmTJJZ1YdZof9Qs.roa
File: L5xO8HOiHyYgpmTJJZ1YdZof9Qs.roa (raw, json)
Hash identifier: V3qHlvfw7P1so2thANTsLqbmuUfwCDAda5TRFNYducE=
Subject key identifier: 2F:9C:4E:F0:73:A2:1F:26:20:A6:64:C9:25:9D:58:75:9A:1F:F5:0B
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 01892A8AC251576A56A5977F77DED85F190D
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/L5xO8HOiHyYgpmTJJZ1YdZof9Qs.roa
Signing time: Thu 06 Jul 2023 09:31:23 +0000
ROA not before: Thu 06 Jul 2023 09:31:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 77.74.228.0/24 maxlen: 24
77.74.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2a:8a:c2:51:57:6a:56:a5:97:7f:77:de:d8:5f:19:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jul 6 09:31:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f9c4ef073a21f2620a664c9259d58759a1ff50b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:79:d8:29:1a:5d:26:9c:f0:3c:ae:4d:3e:3d:
33:5f:0f:48:2e:52:1b:06:9f:df:87:6a:dc:8e:8c:
85:08:d6:09:aa:48:50:25:c5:7f:63:b3:f3:ca:b7:
5f:f2:fa:6c:b1:b3:d9:4d:aa:0f:7e:7a:e1:c7:d5:
37:07:73:15:a5:9f:4a:d7:5f:53:74:47:6f:78:61:
4b:40:8f:e3:65:27:6c:73:38:8d:2c:57:53:4d:0e:
6e:a4:0e:c2:cc:3f:b4:ff:2c:e7:8e:24:cb:d7:5a:
e0:ea:56:89:2d:2b:57:19:a5:df:bc:3d:a0:20:91:
a2:10:b9:21:2d:46:d8:42:de:4a:2f:6d:78:5c:8e:
ac:e9:63:ed:a7:2f:ec:4f:17:d1:2c:ab:0b:67:cb:
4a:50:0a:46:b7:85:7b:b0:55:a0:0e:6e:d4:62:e6:
a7:d8:02:50:e7:ef:56:96:33:05:ab:15:1b:f8:13:
68:d3:7b:4c:db:09:c8:63:11:cd:76:24:d9:05:fd:
11:79:52:66:58:68:b5:0e:64:74:60:74:96:49:c3:
bd:b9:12:4c:c1:19:d0:3c:6f:28:8e:35:18:66:08:
1f:e0:f2:a9:d1:67:83:92:1d:47:d6:a7:14:e3:be:
24:57:d0:54:37:d9:a7:f6:90:46:78:e0:c0:7c:ac:
0a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:9C:4E:F0:73:A2:1F:26:20:A6:64:C9:25:9D:58:75:9A:1F:F5:0B
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/L5xO8HOiHyYgpmTJJZ1YdZof9Qs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.228.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:88:17:1d:a3:59:2d:f7:d3:ad:73:c2:3d:10:d9:e1:22:c5:
fd:c4:31:f2:a9:0c:34:7a:1a:d2:93:a5:18:4c:e4:79:3b:38:
d3:63:45:d6:bd:d2:d2:e3:7c:d7:ab:ed:ab:ca:29:a6:c0:65:
f0:7f:b6:60:88:f6:29:27:5c:f2:38:24:8d:e1:80:c5:42:7c:
4e:51:fb:98:97:37:f5:a6:94:04:40:bc:7b:28:9f:6b:d6:a7:
9e:6c:03:ae:89:f3:0f:fa:b3:47:0c:82:48:48:06:81:8a:d9:
e3:53:2f:7b:62:3c:91:d0:f9:50:95:01:ac:a0:66:0f:0b:54:
b7:be:b6:16:55:f0:e4:8b:76:f0:54:e6:e8:7f:50:1c:58:0e:
f6:28:36:e2:17:d7:39:04:5d:56:3e:30:00:99:28:1b:35:f7:
fc:c8:06:d2:56:c4:80:fc:a2:89:ca:9f:c6:3c:e5:6e:ba:2f:
e2:bf:e3:33:07:e2:c9:18:1c:e7:db:9a:39:3d:94:c0:c1:e6:
e6:05:24:a3:67:b5:ff:86:fd:70:48:63:d6:d5:07:9a:f2:be:
28:ea:c7:38:30:fc:03:a8:c7:d2:aa:b7:03:a7:5b:96:ea:1b:
ce:c7:ae:01:b2:fe:65:7b:7b:27:2c:61:fc:d0:bc:e5:c9:77:
9f:9a:9e:3c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYkqisJRV2pWpZd/d97YXxkNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YzYwYTBkMmQ3MGE5MzM3ZDBiZGE1NmQxYWQ1OTZhYzFm
NjljZGEwHhcNMjMwNzA2MDkzMTIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZjljNGVmMDczYTIxZjI2MjBhNjY0YzkyNTlkNTg3NTlhMWZmNTBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgXnYKRpdJpzwPK5NPj0zXw9ILlIb
Bp/fh2rcjoyFCNYJqkhQJcV/Y7Pzyrdf8vpssbPZTaoPfnrhx9U3B3MVpZ9K119T
dEdveGFLQI/jZSdscziNLFdTTQ5upA7CzD+0/yznjiTL11rg6laJLStXGaXfvD2g
IJGiELkhLUbYQt5KL214XI6s6WPtpy/sTxfRLKsLZ8tKUApGt4V7sFWgDm7UYuan
2AJQ5+9WljMFqxUb+BNo03tM2wnIYxHNdiTZBf0ReVJmWGi1DmR0YHSWScO9uRJM
wRnQPG8ojjUYZggf4PKp0WeDkh1H1qcU474kV9BUN9mn9pBGeODAfKwKZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC+cTvBzoh8mIKZkySWdWHWaH/ULMB8GA1UdIwQY
MBaAFNjGCg0tcKkzfQvaVtGtWWrB9pzaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUt
ZGQyOTRjMzc4ZjZjLzEvTDV4TzhIT2lIeVlncG1USkpaMVlkWm9mOVFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUtZGQyOTRjMzc4ZjZj
LzEvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBTUrkMA0G
CSqGSIb3DQEBCwUAA4IBAQAsiBcdo1kt99Otc8I9ENnhIsX9xDHyqQw0ehrSk6UY
TOR5OzjTY0XWvdLS43zXq+2ryimmwGXwf7ZgiPYpJ1zyOCSN4YDFQnxOUfuYlzf1
ppQEQLx7KJ9r1qeebAOuifMP+rNHDIJISAaBitnjUy97YjyR0PlQlQGsoGYPC1S3
vrYWVfDki3bwVObof1AcWA72KDbiF9c5BF1WPjAAmSgbNff8yAbSVsSA/KKJyp/G
POVuui/iv+MzB+LJGBzn25o5PZTAwebmBSSjZ7X/hv1wSGPW1Qea8r4o6sc4MPwD
qMfSqrcDp1uW6hvOx64Bsv5le3snLGH80LzlyXefmp48
-----END CERTIFICATE-----
Generated at Thu Apr 17 05:10:00 2025 by rpki-client