Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/b796f4-2e88-4eaa-a269-2738bcb43d6d/1/6MR4dYPq3xs_yJFyHrOlsFOxVCo.roa
File: 6MR4dYPq3xs_yJFyHrOlsFOxVCo.roa (raw, json)
Hash identifier: lvKNlh2ix+FzUqJ2nWEjHmo9cslQhOEQIixh8fBzNJw=
Subject key identifier: E8:C4:78:75:83:EA:DF:1B:3F:C8:91:72:1E:B3:A5:B0:53:B1:54:2A
Certificate issuer: /CN=923a2b3dd7667275f09886df7da079f755ceed59
Certificate serial: 0186972C4341EFFB04BCCE40BBE01A3716EB
Authority key identifier: 92:3A:2B:3D:D7:66:72:75:F0:98:86:DF:7D:A0:79:F7:55:CE:ED:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kjorPddmcnXwmIbffaB591XO7Vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/b796f4-2e88-4eaa-a269-2738bcb43d6d/1/6MR4dYPq3xs_yJFyHrOlsFOxVCo.roa
Signing time: Tue 28 Feb 2023 08:38:25 +0000
ROA not before: Tue 28 Feb 2023 08:38:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15924
IP address blocks: 185.77.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:97:2c:43:41:ef:fb:04:bc:ce:40:bb:e0:1a:37:16:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=923a2b3dd7667275f09886df7da079f755ceed59
Validity
Not Before: Feb 28 08:38:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8c4787583eadf1b3fc891721eb3a5b053b1542a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ff:02:37:17:d1:42:88:49:99:5c:b5:36:bb:
b1:05:5a:d0:ae:7d:f7:ab:b9:8d:6b:56:fa:ef:94:
bd:48:62:aa:28:5e:bf:2d:25:e2:50:2f:88:9c:ff:
b7:75:63:08:bf:d5:4c:e1:0e:8f:cc:93:d4:ef:d3:
3f:c1:4f:d2:16:ef:3e:d7:b3:55:ce:a7:bf:b5:d1:
c6:8c:0c:36:52:0a:f0:8c:d9:d4:64:f5:8e:b4:e3:
46:f2:8e:26:0f:b4:39:90:a4:09:c5:23:d7:7f:44:
99:84:4d:75:41:17:f3:16:1d:ab:1d:16:74:14:fa:
01:22:ff:24:6e:b4:05:ab:2f:2d:ba:5d:b5:ea:b0:
55:a3:40:08:1c:c3:5f:d0:c2:b7:97:e9:8f:ee:68:
cb:9a:ea:83:5f:b9:a1:ec:b2:88:53:8b:32:e9:46:
74:34:91:f0:7b:db:6c:f0:18:82:ba:fb:95:87:75:
89:bd:a4:7f:c8:e4:b4:a5:23:5f:04:c3:d0:58:89:
de:7e:44:94:a3:eb:8b:5b:b3:e3:52:8f:1e:ad:29:
e8:c6:cc:80:42:11:8d:b5:dd:d6:a3:0f:0d:02:3e:
16:c1:ce:b7:e1:f6:72:37:06:03:28:23:08:c0:33:
4f:6d:33:74:e2:44:dc:99:e5:bb:14:d1:e5:f9:d8:
7a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:C4:78:75:83:EA:DF:1B:3F:C8:91:72:1E:B3:A5:B0:53:B1:54:2A
X509v3 Authority Key Identifier:
keyid:92:3A:2B:3D:D7:66:72:75:F0:98:86:DF:7D:A0:79:F7:55:CE:ED:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kjorPddmcnXwmIbffaB591XO7Vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b796f4-2e88-4eaa-a269-2738bcb43d6d/1/6MR4dYPq3xs_yJFyHrOlsFOxVCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b796f4-2e88-4eaa-a269-2738bcb43d6d/1/kjorPddmcnXwmIbffaB591XO7Vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.0.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:1d:cc:e2:34:a9:5f:77:cc:a4:4d:dc:d0:f5:4d:62:6a:5b:
08:00:78:fe:a4:f6:9f:5d:a4:14:42:89:0f:53:cb:25:d1:7f:
88:0c:53:c2:d2:b2:29:54:f3:e8:86:8b:1f:06:e1:e2:f9:15:
e9:54:d5:7f:47:02:ea:01:2b:70:d6:30:e2:ce:70:2b:cb:3a:
97:16:05:5b:bc:a9:b2:ed:fe:35:3a:ea:3f:28:f3:4c:bf:12:
d2:2c:7a:08:70:3b:6c:09:61:84:fd:ae:39:6f:ed:06:43:60:
89:4f:70:fb:da:c4:21:09:9a:85:1e:de:46:2c:a2:a7:dd:b2:
21:de:22:1c:95:a3:8d:81:e2:d2:36:d9:39:90:7f:68:4f:b3:
5a:82:5b:9a:d4:5e:e4:71:e7:87:b7:2f:91:c8:24:63:21:a3:
ec:3f:0c:fb:c3:25:e8:6e:94:ec:20:67:67:13:06:c9:c3:bb:
1e:a0:71:23:da:c7:b9:d2:69:0e:4f:c9:e8:f4:46:a4:54:5a:
e8:89:b4:14:48:82:0c:9b:13:dd:a9:73:f7:5a:be:48:87:3a:
53:01:5f:b9:fa:23:72:69:09:99:84:e8:a3:c7:e1:92:9c:2e:
d5:c7:2a:82:e8:1f:0d:79:e7:47:d3:04:46:f2:45:f7:e0:18:
7e:7f:9f:d5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYaXLENB7/sEvM5Au+AaNxbrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyM2EyYjNkZDc2NjcyNzVmMDk4ODZkZjdkYTA3OWY3NTVj
ZWVkNTkwHhcNMjMwMjI4MDgzODI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOGM0Nzg3NTgzZWFkZjFiM2ZjODkxNzIxZWIzYTViMDUzYjE1NDJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiv8CNxfRQohJmVy1NruxBVrQrn33
q7mNa1b675S9SGKqKF6/LSXiUC+InP+3dWMIv9VM4Q6PzJPU79M/wU/SFu8+17NV
zqe/tdHGjAw2UgrwjNnUZPWOtONG8o4mD7Q5kKQJxSPXf0SZhE11QRfzFh2rHRZ0
FPoBIv8kbrQFqy8tul216rBVo0AIHMNf0MK3l+mP7mjLmuqDX7mh7LKIU4sy6UZ0
NJHwe9ts8BiCuvuVh3WJvaR/yOS0pSNfBMPQWInefkSUo+uLW7PjUo8erSnoxsyA
QhGNtd3Wow8NAj4Wwc634fZyNwYDKCMIwDNPbTN04kTcmeW7FNHl+dh6YwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOjEeHWD6t8bP8iRch6zpbBTsVQqMB8GA1UdIwQY
MBaAFJI6Kz3XZnJ18JiG332gefdVzu1ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2pvclBkZG1jblh3bUliZmZhQjU5MVhPN1ZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9iNzk2ZjQtMmU4OC00ZWFhLWEyNjkt
MjczOGJjYjQzZDZkLzEvNk1SNGRZUHEzeHNfeUpGeUhyT2xzRk94VkNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9iNzk2ZjQtMmU4OC00ZWFhLWEyNjktMjczOGJjYjQzZDZk
LzEva2pvclBkZG1jblh3bUliZmZhQjU5MVhPN1ZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuU0AMA0G
CSqGSIb3DQEBCwUAA4IBAQBMHcziNKlfd8ykTdzQ9U1ialsIAHj+pPafXaQUQokP
U8sl0X+IDFPC0rIpVPPohosfBuHi+RXpVNV/RwLqAStw1jDiznAryzqXFgVbvKmy
7f41Ouo/KPNMvxLSLHoIcDtsCWGE/a45b+0GQ2CJT3D72sQhCZqFHt5GLKKn3bIh
3iIclaONgeLSNtk5kH9oT7Naglua1F7kceeHty+RyCRjIaPsPwz7wyXobpTsIGdn
EwbJw7seoHEj2se50mkOT8no9EakVFroibQUSIIMmxPdqXP3Wr5IhzpTAV+5+iNy
aQmZhOijx+GSnC7VxyqC6B8NeedH0wRG8kX34Bh+f5/V
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:29 2025 by rpki-client