Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4393e8-5f59-4d57-8198-5c0c46d04ee1/1/raPLap8JUz9m6acvjtZ_HUwJstg.roa
File: raPLap8JUz9m6acvjtZ_HUwJstg.roa (raw, json)
Hash identifier: vXkFPppa/gGsKjzvP6kUMKyiU1rOkKiuhyBV6hM66Qw=
Subject key identifier: AD:A3:CB:6A:9F:09:53:3F:66:E9:A7:2F:8E:D6:7F:1D:4C:09:B2:D8
Certificate issuer: /CN=e4ff5bbf540c65954b9913a68c24d174de97d829
Certificate serial: B8164D
Authority key identifier: E4:FF:5B:BF:54:0C:65:95:4B:99:13:A6:8C:24:D1:74:DE:97:D8:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5P9bv1QMZZVLmROmjCTRdN6X2Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4393e8-5f59-4d57-8198-5c0c46d04ee1/1/raPLap8JUz9m6acvjtZ_HUwJstg.roa
Signing time: Mon 23 May 2022 11:32:29 +0000
ROA not before: Mon 23 May 2022 11:32:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42102
IP address blocks: 77.232.224.0/19 maxlen: 24
2a06:3e40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12064333 (0xb8164d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4ff5bbf540c65954b9913a68c24d174de97d829
Validity
Not Before: May 23 11:32:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ada3cb6a9f09533f66e9a72f8ed67f1d4c09b2d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:57:b7:be:c6:20:df:a6:52:30:2e:0c:8f:af:
da:38:24:2f:dc:13:12:d2:e9:81:b9:37:be:cf:62:
61:08:9f:38:c8:25:6a:4c:a4:cd:5f:83:f0:73:f1:
ab:d6:ee:49:cb:35:92:30:5f:71:04:cb:2e:09:42:
a6:33:d3:b7:1b:05:e2:59:a2:2b:73:4c:8a:8d:8f:
81:9c:46:b4:9f:6c:d3:78:cd:1d:eb:2b:c9:8f:c1:
76:99:b0:02:4a:1a:c4:35:2d:fe:40:8f:79:75:d7:
be:1f:19:3c:75:04:2d:9b:2d:5e:55:98:96:0c:8b:
fc:8d:e9:ea:f7:00:94:a8:08:07:38:1e:ad:48:3d:
8d:34:9a:aa:d5:33:df:c7:4a:71:d6:b5:1b:89:f5:
b1:fd:81:4d:32:51:85:2f:16:85:cf:08:16:6e:b2:
bd:cd:69:dd:2c:0f:18:d9:fb:83:15:79:f4:da:9c:
1b:7e:0c:73:17:f6:4e:65:ba:e4:f1:c0:73:2c:a0:
bb:f8:19:6c:01:d8:d2:5d:6e:5e:f5:5f:b5:ff:51:
95:16:c4:59:a2:b0:29:f4:5a:d0:37:cb:b0:55:13:
e4:46:b4:2b:ee:07:d0:82:23:b2:5e:51:b4:ef:2c:
ac:1b:23:f1:f8:43:e5:7f:9c:87:14:87:de:e2:12:
84:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A3:CB:6A:9F:09:53:3F:66:E9:A7:2F:8E:D6:7F:1D:4C:09:B2:D8
X509v3 Authority Key Identifier:
keyid:E4:FF:5B:BF:54:0C:65:95:4B:99:13:A6:8C:24:D1:74:DE:97:D8:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5P9bv1QMZZVLmROmjCTRdN6X2Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4393e8-5f59-4d57-8198-5c0c46d04ee1/1/raPLap8JUz9m6acvjtZ_HUwJstg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4393e8-5f59-4d57-8198-5c0c46d04ee1/1/5P9bv1QMZZVLmROmjCTRdN6X2Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.232.224.0/19
IPv6:
2a06:3e40::/29
Signature Algorithm: sha256WithRSAEncryption
9e:81:dc:b6:e1:02:ef:b0:07:d5:1a:03:4a:2d:50:8c:95:8d:
d3:e6:b8:3d:e6:e0:b6:78:1b:b8:93:55:a3:2b:c1:84:85:d8:
47:a4:79:fc:5b:b5:ab:06:88:f0:55:09:b1:e6:b5:cc:b6:64:
e2:c2:9e:f9:5f:58:00:37:92:e1:b9:4f:26:ad:58:27:28:99:
22:ad:a7:25:b0:af:34:d6:dd:7e:b5:cf:4a:6d:cc:ab:18:d2:
e5:a7:3f:cb:76:48:8c:df:5b:da:f9:6b:77:07:07:ba:8d:a4:
58:36:fa:0c:cb:d2:18:aa:fa:a9:fe:42:48:87:20:1a:93:55:
6d:23:22:2c:e6:fe:0c:cf:2d:b8:9c:5f:95:f5:cd:d1:15:5f:
8b:f1:4f:f8:47:07:e7:d6:b4:93:dd:2d:93:8b:63:86:1c:e7:
ed:b0:25:ac:f7:c2:3f:2a:bf:a0:2f:0d:74:d8:6c:6d:fe:9d:
28:e9:20:51:b4:8b:79:d4:fa:c7:71:68:89:ba:05:36:e1:60:
73:9d:27:02:38:cd:02:ee:ed:cc:1d:cf:4c:6b:a1:86:33:34:
c2:6e:c3:20:89:05:2a:25:5b:c5:c3:c3:19:81:f6:56:b2:17:
3b:8a:12:fd:f1:13:6b:26:84:0e:d6:86:95:7b:2e:c5:2a:65:
d2:c6:06:53
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEALgWTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NGZmNWJiZjU0MGM2NTk1NGI5OTEzYTY4YzI0ZDE3NGRlOTdkODI5MB4XDTIyMDUy
MzExMzIyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWRhM2NiNmE5ZjA5
NTMzZjY2ZTlhNzJmOGVkNjdmMWQ0YzA5YjJkODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMlXt77GIN+mUjAuDI+v2jgkL9wTEtLpgbk3vs9iYQifOMgl
akykzV+D8HPxq9buScs1kjBfcQTLLglCpjPTtxsF4lmiK3NMio2PgZxGtJ9s03jN
HesryY/BdpmwAkoaxDUt/kCPeXXXvh8ZPHUELZstXlWYlgyL/I3p6vcAlKgIBzge
rUg9jTSaqtUz38dKcda1G4n1sf2BTTJRhS8Whc8IFm6yvc1p3SwPGNn7gxV59Nqc
G34Mcxf2TmW65PHAcyygu/gZbAHY0l1uXvVftf9RlRbEWaKwKfRa0DfLsFUT5Ea0
K+4H0IIjsl5RtO8srBsj8fhD5X+chxSH3uIShP8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSto8tqnwlTP2bppy+O1n8dTAmy2DAfBgNVHSMEGDAWgBTk/1u/VAxllUuZ
E6aMJNF03pfYKTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVQOWJ2MVFNWlpWTG1ST21qQ1RSZE42WDJDay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDAvNDM5M2U4LTVmNTktNGQ1Ny04MTk4LTVjMGM0NmQwNGVlMS8x
L3JhUExhcDhKVXo5bTZhY3ZqdFpfSFV3SnN0Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDAv
NDM5M2U4LTVmNTktNGQ1Ny04MTk4LTVjMGM0NmQwNGVlMS8xLzVQOWJ2MVFNWlpW
TG1ST21qQ1RSZE42WDJDay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEBU3o4DANBAIAAjAHAwUDKgY+QDAN
BgkqhkiG9w0BAQsFAAOCAQEAnoHctuEC77AH1RoDSi1QjJWN0+a4PebgtngbuJNV
oyvBhIXYR6R5/Fu1qwaI8FUJsea1zLZk4sKe+V9YADeS4blPJq1YJyiZIq2nJbCv
NNbdfrXPSm3MqxjS5ac/y3ZIjN9b2vlrdwcHuo2kWDb6DMvSGKr6qf5CSIcgGpNV
bSMiLOb+DM8tuJxflfXN0RVfi/FP+EcH59a0k90tk4tjhhzn7bAlrPfCPyq/oC8N
dNhsbf6dKOkgUbSLedT6x3FoiboFNuFgc50nAjjNAu7tzB3PTGuhhjM0wm7DIIkF
KiVbxcPDGYH2VrIXO4oS/fETayaEDtaGlXsuxSpl0sYGUw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:46 2023 by rpki-client on console-ams.rpki-client.org