Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/vfN0GrQlBIhQM-SZ4qk5pqlndEM.roa
File: vfN0GrQlBIhQM-SZ4qk5pqlndEM.roa (raw, json)
Hash identifier: WvuIdhoY2VQQATabLdOejnOuXTJtZBbaW+zyo7ppOhg=
Subject key identifier: BD:F3:74:1A:B4:25:04:88:50:33:E4:99:E2:A9:39:A6:A9:67:74:43
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 02FDA910
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/vfN0GrQlBIhQM-SZ4qk5pqlndEM.roa
Signing time: Mon 20 Jun 2022 13:55:07 +0000
ROA not before: Mon 20 Jun 2022 13:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 77.74.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50178320 (0x2fda910)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jun 20 13:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bdf3741ab42504885033e499e2a939a6a9677443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5b:77:32:d5:2c:3f:cc:ea:de:cb:8a:a8:f1:
b6:43:3d:2a:5b:f8:c4:c4:10:d0:f8:e4:57:59:92:
e4:86:6b:88:c8:85:cd:a7:b6:aa:15:e1:65:62:9c:
55:25:27:f8:97:d7:1a:b4:b1:14:4a:ab:97:7b:da:
78:3e:26:e5:4a:4f:4f:ef:d7:4e:c7:7f:25:af:21:
d0:c7:7a:cb:67:d8:98:1e:59:4f:d3:48:e5:c9:79:
4b:1f:52:2b:bc:14:8e:7f:a6:8c:11:d0:80:b5:8f:
92:fd:54:ae:ea:19:6c:3f:6b:3e:99:3a:56:25:b0:
8d:dd:6d:12:e1:17:40:6b:38:49:0e:50:b8:b5:a2:
bb:35:b3:61:3e:2b:cf:79:41:f1:fc:3f:3a:10:53:
cb:36:6e:b5:c2:20:9c:14:6a:bd:00:37:7f:ae:62:
ef:00:91:68:c8:9d:5e:71:c8:b6:b0:c6:7a:cc:a0:
6d:dd:50:67:26:f0:62:e3:57:a7:db:6e:00:11:1b:
76:a9:60:c9:26:2e:b7:b1:4b:c9:fe:13:c0:ca:cc:
2d:b1:4d:7e:b1:e0:03:3b:a5:06:e9:fc:47:84:ff:
94:c4:13:85:8b:4a:65:4e:c8:4c:2d:e6:12:2f:2a:
ac:b4:3f:64:4f:65:cf:7f:26:62:13:a6:96:15:97:
10:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:F3:74:1A:B4:25:04:88:50:33:E4:99:E2:A9:39:A6:A9:67:74:43
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/vfN0GrQlBIhQM-SZ4qk5pqlndEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.230.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:75:ba:b3:3c:20:f2:76:58:b0:58:2d:c6:63:d7:d3:8d:d9:
35:93:d7:37:88:45:35:d8:cb:2c:f5:c6:56:7d:18:50:cf:3c:
aa:13:5d:f8:9e:bd:7e:51:45:40:34:f5:73:06:61:e7:d3:28:
6a:67:e9:6f:01:f9:0d:99:36:b3:c6:6d:d4:c5:9c:7d:f7:12:
95:45:50:87:90:82:5b:13:39:71:3e:4d:dd:1f:7d:cf:54:57:
be:17:18:29:52:75:86:e0:55:c0:6e:7f:90:6a:e9:a7:c5:27:
1a:e4:7d:52:83:69:ec:b6:c9:47:85:4b:1a:1d:55:c9:d1:5b:
cb:6f:48:8a:7d:85:fc:20:f1:38:d6:c6:04:bf:35:6b:06:e1:
95:b5:82:c3:75:aa:9b:a4:ce:61:9f:1a:12:e7:e5:63:81:8f:
83:3c:d3:4e:af:fa:fb:8a:77:5a:0f:66:ff:ad:f8:77:9c:be:
67:4d:46:f8:b8:29:83:ef:2f:3a:fd:db:59:51:d0:08:e0:a1:
1f:ca:13:64:12:34:91:00:a2:ca:47:25:8f:b6:52:fe:94:8a:
95:67:94:5a:70:1d:18:85:66:87:9f:fe:33:88:ec:e8:8b:d8:
44:e6:30:a8:43:82:b2:59:72:45:b0:65:16:52:ae:17:e9:38:
0f:de:8b:ad
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAv2pEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
OGM2MGEwZDJkNzBhOTMzN2QwYmRhNTZkMWFkNTk2YWMxZjY5Y2RhMB4XDTIyMDYy
MDEzNTUwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmRmMzc0MWFiNDI1
MDQ4ODUwMzNlNDk5ZTJhOTM5YTZhOTY3NzQ0MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMVbdzLVLD/M6t7LiqjxtkM9Klv4xMQQ0PjkV1mS5IZriMiF
zae2qhXhZWKcVSUn+JfXGrSxFEqrl3vaeD4m5UpPT+/XTsd/Ja8h0Md6y2fYmB5Z
T9NI5cl5Sx9SK7wUjn+mjBHQgLWPkv1UruoZbD9rPpk6ViWwjd1tEuEXQGs4SQ5Q
uLWiuzWzYT4rz3lB8fw/OhBTyzZutcIgnBRqvQA3f65i7wCRaMidXnHItrDGesyg
bd1QZybwYuNXp9tuABEbdqlgySYut7FLyf4TwMrMLbFNfrHgAzulBun8R4T/lMQT
hYtKZU7ITC3mEi8qrLQ/ZE9lz38mYhOmlhWXEFsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS983QatCUEiFAz5JniqTmmqWd0QzAfBgNVHSMEGDAWgBTYxgoNLXCpM30L
2lbRrVlqwfac2jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJNWUtEUzF3cVROOUM5cFcwYTFaYXNIMm5Oby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvYjUxYTg1LWY5OWYtNDIzZi05ZmFlLWRkMjk0YzM3OGY2Yy8x
L3ZmTjBHclFsQkloUU0tU1o0cWs1cHFsbmRFTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
YjUxYTg1LWY5OWYtNDIzZi05ZmFlLWRkMjk0YzM3OGY2Yy8xLzJNWUtEUzF3cVRO
OUM5cFcwYTFaYXNIMm5Oby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE1K5jANBgkqhkiG9w0BAQsFAAOC
AQEAS3W6szwg8nZYsFgtxmPX043ZNZPXN4hFNdjLLPXGVn0YUM88qhNd+J69flFF
QDT1cwZh59MoamfpbwH5DZk2s8Zt1MWcffcSlUVQh5CCWxM5cT5N3R99z1RXvhcY
KVJ1huBVwG5/kGrpp8UnGuR9UoNp7LbJR4VLGh1VydFby29Iin2F/CDxONbGBL81
awbhlbWCw3Wqm6TOYZ8aEuflY4GPgzzTTq/6+4p3Wg9m/634d5y+Z01G+Lgpg+8v
Ov3bWVHQCOChH8oTZBI0kQCiykclj7ZS/pSKlWeUWnAdGIVmh5/+M4js6IvYROYw
qEOCsllyRbBlFlKuF+k4D96LrQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org