Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/pLeSPacX77y4XZYk8M-dDDND9XM.roa
File: pLeSPacX77y4XZYk8M-dDDND9XM.roa (raw, json)
Hash identifier: 17iLe3KYuLX+ZXYu2riQ3YlxHy6IVnKH7ovBMJW0Gp0=
Subject key identifier: A4:B7:92:3D:A7:17:EF:BC:B8:5D:96:24:F0:CF:9D:0C:33:43:F5:73
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 018926A3B673C25491C4B6195E7A848DBD0E
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/pLeSPacX77y4XZYk8M-dDDND9XM.roa
Signing time: Wed 05 Jul 2023 15:20:10 +0000
ROA not before: Wed 05 Jul 2023 15:20:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 77.74.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:26:a3:b6:73:c2:54:91:c4:b6:19:5e:7a:84:8d:bd:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jul 5 15:20:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4b7923da717efbcb85d9624f0cf9d0c3343f573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b0:e1:1d:f7:1c:d1:fa:0b:c4:67:cb:26:e2:
6a:08:7d:36:1a:6a:c3:98:03:34:5b:d3:b4:81:e0:
26:da:06:d9:51:8a:ec:b6:0f:14:9a:7d:36:b9:b6:
41:ef:07:0f:cd:10:ef:cc:0c:70:c5:41:3f:7d:e4:
9a:53:3d:bb:ff:a6:a7:07:6f:29:ee:69:01:b4:93:
72:37:0d:d2:e2:c8:81:15:cf:5c:71:c6:0e:a6:08:
1d:53:78:76:41:e4:06:66:08:e0:05:39:d9:01:7e:
f1:e4:d7:9b:aa:9f:c0:f3:03:84:51:9e:17:43:e8:
6a:02:79:27:18:88:c0:31:89:0d:10:5c:2d:0b:2f:
cd:9e:4b:b1:b6:10:3e:d0:0e:df:9e:c2:86:76:d7:
76:61:a5:a9:6f:0f:c7:44:43:2b:7a:f6:31:6d:f3:
58:53:8e:68:68:2f:29:61:2c:30:db:25:cd:4e:7f:
d9:2a:70:60:c9:9d:27:96:6f:8b:9a:2f:5b:29:f4:
7d:3a:72:db:26:b6:51:7f:3d:c0:13:76:0c:a1:3d:
d1:b8:92:71:c0:fb:f9:4c:24:38:f6:a6:81:f4:93:
9d:66:5e:79:94:47:f8:06:02:57:73:e4:32:a7:64:
b5:21:64:60:2e:ab:48:aa:82:1f:80:a4:74:2d:93:
1b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:B7:92:3D:A7:17:EF:BC:B8:5D:96:24:F0:CF:9D:0C:33:43:F5:73
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/pLeSPacX77y4XZYk8M-dDDND9XM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.229.0/24
Signature Algorithm: sha256WithRSAEncryption
84:8c:51:b5:00:5f:fd:f3:87:46:58:a1:f7:16:43:34:7f:81:
1c:16:11:9f:29:da:ee:a8:cb:42:0c:fc:31:a1:f6:f6:bd:d2:
7b:dc:52:59:82:88:2c:a0:83:30:3d:2d:b0:13:be:e4:bd:68:
58:78:e9:1a:bf:a8:bd:05:1e:f1:72:73:0c:9c:23:11:10:43:
3b:46:47:74:ce:ff:5b:94:41:b5:b1:61:62:85:cb:a1:a8:3d:
13:31:75:75:fe:f4:fc:52:e4:e7:f3:43:51:cb:11:c7:b3:1f:
d6:9d:89:51:22:c0:fe:e8:bc:9c:63:b2:23:0d:78:8e:c5:ca:
3a:50:92:02:30:7c:6e:ec:bf:fb:d3:4e:56:e9:1e:a8:58:2e:
c2:e8:de:32:ae:59:1d:b5:bd:37:4a:f5:d3:29:94:67:d6:93:
61:7d:d0:90:5f:cd:2d:ec:05:db:9a:a6:1c:f0:c4:f9:24:ea:
74:b1:8d:45:2b:ce:94:7d:33:8c:58:98:e2:12:be:8a:26:76:
6e:c4:8e:06:cf:30:50:6c:85:d7:14:29:b8:c3:a4:19:f8:11:
72:0e:7c:a1:ec:f3:0d:15:65:0e:1c:51:77:5c:2d:ac:57:f5:
16:61:58:37:d5:75:a2:c0:75:08:19:ba:f1:6f:ef:34:b8:cb:
55:22:ca:7c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYkmo7ZzwlSRxLYZXnqEjb0OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YzYwYTBkMmQ3MGE5MzM3ZDBiZGE1NmQxYWQ1OTZhYzFm
NjljZGEwHhcNMjMwNzA1MTUyMDEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNGI3OTIzZGE3MTdlZmJjYjg1ZDk2MjRmMGNmOWQwYzMzNDNmNTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrDhHfcc0foLxGfLJuJqCH02GmrD
mAM0W9O0geAm2gbZUYrstg8Umn02ubZB7wcPzRDvzAxwxUE/feSaUz27/6anB28p
7mkBtJNyNw3S4siBFc9cccYOpggdU3h2QeQGZgjgBTnZAX7x5Nebqp/A8wOEUZ4X
Q+hqAnknGIjAMYkNEFwtCy/NnkuxthA+0A7fnsKGdtd2YaWpbw/HREMrevYxbfNY
U45oaC8pYSww2yXNTn/ZKnBgyZ0nlm+Lmi9bKfR9OnLbJrZRfz3AE3YMoT3RuJJx
wPv5TCQ49qaB9JOdZl55lEf4BgJXc+Qyp2S1IWRgLqtIqoIfgKR0LZMbCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKS3kj2nF++8uF2WJPDPnQwzQ/VzMB8GA1UdIwQY
MBaAFNjGCg0tcKkzfQvaVtGtWWrB9pzaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUt
ZGQyOTRjMzc4ZjZjLzEvcExlU1BhY1g3N3k0WFpZazhNLWRERE5EOVhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUtZGQyOTRjMzc4ZjZj
LzEvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUrlMA0G
CSqGSIb3DQEBCwUAA4IBAQCEjFG1AF/984dGWKH3FkM0f4EcFhGfKdruqMtCDPwx
ofb2vdJ73FJZgogsoIMwPS2wE77kvWhYeOkav6i9BR7xcnMMnCMREEM7Rkd0zv9b
lEG1sWFihcuhqD0TMXV1/vT8UuTn80NRyxHHsx/WnYlRIsD+6LycY7IjDXiOxco6
UJICMHxu7L/7005W6R6oWC7C6N4yrlkdtb03SvXTKZRn1pNhfdCQX80t7AXbmqYc
8MT5JOp0sY1FK86UfTOMWJjiEr6KJnZuxI4GzzBQbIXXFCm4w6QZ+BFyDnyh7PMN
FWUOHFF3XC2sV/UWYVg31XWiwHUIGbrxb+80uMtVIsp8
-----END CERTIFICATE-----
Generated at Thu Apr 17 05:06:27 2025 by rpki-client