Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/SrRwyplaM3eDzr1oQQGq-4DwExE.roa
File: SrRwyplaM3eDzr1oQQGq-4DwExE.roa (raw, json)
Hash identifier: cjKHZeY7mn8v9uzM7cpjDCAiFYSi/vEJHf5jFRjO0T4=
Subject key identifier: 4A:B4:70:CA:99:5A:33:77:83:CE:BD:68:41:01:AA:FB:80:F0:13:11
Certificate issuer: /CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Certificate serial: 4A7FB9
Authority key identifier: 77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/SrRwyplaM3eDzr1oQQGq-4DwExE.roa
Signing time: Thu 10 Mar 2022 16:24:39 +0000
ROA not before: Thu 10 Mar 2022 16:24:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51964
IP address blocks: 185.84.218.0/24 maxlen: 24
185.84.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4882361 (0x4a7fb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Validity
Not Before: Mar 10 16:24:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ab470ca995a337783cebd684101aafb80f01311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:44:e8:9e:33:42:47:80:8f:e3:67:b3:28:a0:
d7:24:49:82:80:5e:ba:d9:90:1e:1f:6a:8f:7e:7d:
d3:43:41:7d:08:ce:cc:08:d8:41:99:fc:3f:ea:b7:
aa:88:86:12:80:e6:93:cc:c5:29:8c:f5:53:52:98:
79:ae:95:40:16:f7:13:d9:15:dc:0d:9f:36:b8:de:
9d:1e:4e:61:62:24:26:64:e1:38:c2:fd:7e:6e:dc:
fd:18:8b:29:37:6a:00:1b:0f:3b:f3:73:70:a0:4c:
a2:30:6f:68:c6:65:10:a2:c5:86:ed:71:23:86:49:
88:35:bb:e2:d5:1d:b6:fe:29:40:70:5c:41:37:b7:
87:c6:bd:69:7c:77:cc:ca:56:63:98:8d:9f:e6:83:
39:4e:1d:b7:ba:e3:f0:d2:0e:d2:f3:70:82:b7:84:
50:50:8c:04:01:f7:a5:38:8e:1f:dc:60:c7:f4:23:
a8:c8:fc:06:71:d1:d1:2e:2f:51:7f:f0:a8:11:eb:
66:39:fe:b9:6f:4e:66:03:94:7f:60:3b:4a:d0:f9:
11:47:cb:07:fb:ed:c0:4b:47:55:a9:13:92:97:00:
64:da:81:c4:7e:fb:a4:89:c5:08:b0:95:8a:6e:ba:
e0:ad:f2:b5:ab:b5:69:d6:fd:78:42:63:df:bf:eb:
7e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B4:70:CA:99:5A:33:77:83:CE:BD:68:41:01:AA:FB:80:F0:13:11
X509v3 Authority Key Identifier:
keyid:77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/SrRwyplaM3eDzr1oQQGq-4DwExE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/d-2o9yamm1BN6ZSUOwpfIwjCqWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.217.0-185.84.218.255
Signature Algorithm: sha256WithRSAEncryption
3f:63:c1:f8:6f:10:96:13:60:ee:e1:43:2c:18:9d:82:5a:fa:
5d:53:43:c7:65:1c:55:4f:8b:28:47:57:ab:91:25:89:bb:de:
84:ed:55:d7:1b:8d:d3:da:05:4d:80:bf:2d:94:e2:e6:45:77:
e8:02:c9:92:9e:62:90:88:e6:d6:4b:9e:48:7a:a9:f3:b0:de:
63:fc:1d:90:49:bb:3e:66:fd:32:b1:f2:be:15:6b:91:f0:c0:
5f:63:b3:64:76:33:d4:5f:d8:4c:1e:ec:ef:a0:03:24:36:65:
4c:e3:d6:df:d5:35:e5:19:ea:ed:c1:f0:1a:23:28:ac:39:a4:
c4:6c:1e:0c:fe:87:13:5f:db:4b:95:38:34:83:87:b7:3f:8c:
c2:40:00:9a:1d:64:54:44:81:ee:d8:6f:a5:9e:c7:60:78:cb:
60:a7:88:f6:2a:f2:9f:95:89:ac:26:d9:66:5a:82:13:f7:67:
c0:d1:d7:bc:a0:e0:37:b6:da:63:26:f9:54:74:24:8f:2c:21:
d4:e1:9b:3b:b0:98:bf:50:de:a2:7b:ab:8d:eb:51:24:31:05:
ae:d0:3e:98:77:6d:d6:02:b1:f9:25:31:02:b2:4a:41:b3:68:
df:02:2c:47:0d:74:5e:6e:56:9b:4f:c7:23:88:c0:11:77:4e:
1c:53:70:01
-----BEGIN CERTIFICATE-----
MIIE9jCCA96gAwIBAgIDSn+5MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDc3
ZWRhOGY3MjZhNjliNTA0ZGU5OTQ5NDNiMGE1ZjIzMDhjMmE5NmIwHhcNMjIwMzEw
MTYyNDM5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0YWI0NzBjYTk5NWEz
Mzc3ODNjZWJkNjg0MTAxYWFmYjgwZjAxMzExMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA6kTonjNCR4CP42ezKKDXJEmCgF662ZAeH2qPfn3TQ0F9CM7M
CNhBmfw/6reqiIYSgOaTzMUpjPVTUph5rpVAFvcT2RXcDZ82uN6dHk5hYiQmZOE4
wv1+btz9GIspN2oAGw8783NwoEyiMG9oxmUQosWG7XEjhkmINbvi1R22/ilAcFxB
N7eHxr1pfHfMylZjmI2f5oM5Th23uuPw0g7S83CCt4RQUIwEAfelOI4f3GDH9COo
yPwGcdHRLi9Rf/CoEetmOf65b05mA5R/YDtK0PkRR8sH++3AS0dVqROSlwBk2oHE
fvukicUIsJWKbrrgrfK1q7Vp1v14QmPfv+t+OQIDAQABo4ICETCCAg0wHQYDVR0O
BBYEFEq0cMqZWjN3g869aEEBqvuA8BMRMB8GA1UdIwQYMBaAFHftqPcmpptQTemU
lDsKXyMIwqlrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
ZC0ybzl5YW1tMUJONlpTVU93cGZJd2pDcVdzLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8zMi83Mjc2ZjMtYzg4ZS00ODE5LTllNTktNjA4NGNmYzZlNGM0LzEv
U3JSd3lwbGFNM2VEenIxb1FRR3EtNER3RXhFLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi83
Mjc2ZjMtYzg4ZS00ODE5LTllNTktNjA4NGNmYzZlNGM0LzEvZC0ybzl5YW1tMUJO
NlpTVU93cGZJd2pDcVdzLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCcG
CCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAC5VNkDBAC5VNowDQYJKoZIhvcN
AQELBQADggEBAD9jwfhvEJYTYO7hQywYnYJa+l1TQ8dlHFVPiyhHV6uRJYm73oTt
VdcbjdPaBU2Avy2U4uZFd+gCyZKeYpCI5tZLnkh6qfOw3mP8HZBJuz5m/TKx8r4V
a5HwwF9js2R2M9Rf2Ewe7O+gAyQ2ZUzj1t/VNeUZ6u3B8BojKKw5pMRsHgz+hxNf
20uVODSDh7c/jMJAAJodZFREge7Yb6Wex2B4y2CniPYq8p+Viawm2WZaghP3Z8DR
17yg4De22mMm+VR0JI8sIdThmzuwmL9Q3qJ7q43rUSQxBa7QPph3bdYCsfklMQKy
SkGzaN8CLEcNdF5uVptPxyOIwBF3ThxTcAE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:42 2024 by rpki-client on console-fra.rpki-client.org