Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/136bd2-16f9-4097-b347-b23e79f32501/1/1zPmoAdVlXgR0pHUpjyesrMGEYA.roa
File: 1zPmoAdVlXgR0pHUpjyesrMGEYA.roa (raw, json)
Hash identifier: Bo3WN8TNXa3GF7VbrT0GumVyC2XvJpk/G17oKnmQkHQ=
Subject key identifier: D7:33:E6:A0:07:55:95:78:11:D2:91:D4:A6:3C:9E:B2:B3:06:11:80
Certificate issuer: /CN=d75b7246a65ed55491efeddf6dbb9beb498416ea
Certificate serial: 0111C6FD
Authority key identifier: D7:5B:72:46:A6:5E:D5:54:91:EF:ED:DF:6D:BB:9B:EB:49:84:16:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/11tyRqZe1VSR7-3fbbub60mEFuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/136bd2-16f9-4097-b347-b23e79f32501/1/1zPmoAdVlXgR0pHUpjyesrMGEYA.roa
Signing time: Sat 01 Jan 2022 01:52:45 +0000
ROA not before: Sat 01 Jan 2022 01:52:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 77.87.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17942269 (0x111c6fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d75b7246a65ed55491efeddf6dbb9beb498416ea
Validity
Not Before: Jan 1 01:52:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d733e6a00755957811d291d4a63c9eb2b3061180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:fc:b6:e2:68:11:89:b9:68:77:74:49:5a:02:
25:5b:e8:d3:b3:29:fe:17:df:87:ec:eb:9b:fd:5b:
08:9c:b1:a1:72:c8:07:e4:f6:c2:70:9c:13:ff:da:
15:e6:0a:ef:41:fb:6c:1a:94:5c:c5:7d:87:7f:fd:
02:ae:65:ee:59:8d:36:a6:a0:0e:1d:d9:a0:fa:8d:
f5:16:f7:80:69:04:35:8f:47:f0:2d:18:07:92:f0:
5c:9b:a2:02:5f:35:7b:65:93:2c:6f:65:8b:f8:28:
2e:34:45:ad:49:03:19:9b:29:98:c2:72:53:ed:df:
de:d6:35:b6:76:be:4e:20:f9:73:93:fd:98:89:35:
12:5a:07:05:e9:35:7e:72:c0:18:0c:bd:b5:09:bc:
84:37:6c:b8:06:c1:88:b0:49:16:f2:d5:b0:0e:84:
39:b2:f2:a3:20:39:ae:04:51:0a:5a:83:8f:68:1e:
54:94:2f:5f:d5:8b:30:ac:3d:ec:a7:03:ac:0c:9e:
9c:84:61:6e:95:61:81:93:6b:31:82:43:f3:a9:6b:
65:5a:18:c6:c7:5c:4f:8e:3e:47:85:bd:73:09:3d:
6a:e8:d1:5e:40:af:f0:5b:db:92:7a:fb:3c:8a:a3:
88:c3:30:a6:10:5e:37:c8:80:88:0e:b2:c3:43:bd:
8e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:33:E6:A0:07:55:95:78:11:D2:91:D4:A6:3C:9E:B2:B3:06:11:80
X509v3 Authority Key Identifier:
keyid:D7:5B:72:46:A6:5E:D5:54:91:EF:ED:DF:6D:BB:9B:EB:49:84:16:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/11tyRqZe1VSR7-3fbbub60mEFuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/136bd2-16f9-4097-b347-b23e79f32501/1/1zPmoAdVlXgR0pHUpjyesrMGEYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/136bd2-16f9-4097-b347-b23e79f32501/1/11tyRqZe1VSR7-3fbbub60mEFuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.126.0/24
Signature Algorithm: sha256WithRSAEncryption
65:29:0c:24:6a:f9:1e:50:c0:91:9d:d9:4b:7a:60:ee:2e:68:
c7:b3:3e:67:83:e0:81:74:8b:05:4d:82:18:c7:6b:7c:6f:c0:
14:ca:f5:48:b0:a9:b9:08:79:ef:76:1e:39:bb:20:cd:4e:e8:
2d:d9:f1:99:d0:80:54:1e:1a:22:8d:af:fc:c3:49:49:6f:cb:
ba:e0:55:24:37:6a:eb:34:36:a1:e8:2c:77:65:74:84:ab:80:
44:ef:61:f9:72:7c:df:26:c8:23:af:e2:2c:da:1d:77:1a:5c:
6f:ea:1d:ed:b1:1f:3c:f1:7f:1d:d0:24:98:36:47:e9:26:59:
4b:90:d1:6b:c4:86:0e:50:af:9d:06:a5:85:5f:f4:00:4d:d4:
77:3b:55:05:33:7b:02:11:94:ed:57:d3:6c:91:76:a5:31:e4:
5a:10:d9:ca:02:8f:c8:94:7b:1d:a3:fd:57:e0:c2:0b:ec:6b:
15:a9:22:3e:94:9b:ed:39:29:50:3d:34:c7:11:fd:a5:0f:c6:
8e:8d:33:08:1f:25:a3:a6:29:a1:48:27:2b:db:17:4f:d5:d2:
a4:7c:83:24:c5:59:e5:f6:5d:89:57:70:91:94:ba:a8:36:62:
cf:6c:49:a1:1b:2a:89:b6:cf:60:1f:84:aa:a3:44:5c:d2:57:
70:74:92:29
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEARHG/TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzViNzI0NmE2NWVkNTU0OTFlZmVkZGY2ZGJiOWJlYjQ5ODQxNmVhMB4XDTIyMDEw
MTAxNTI0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDczM2U2YTAwNzU1
OTU3ODExZDI5MWQ0YTYzYzllYjJiMzA2MTE4MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANj8tuJoEYm5aHd0SVoCJVvo07Mp/hffh+zrm/1bCJyxoXLI
B+T2wnCcE//aFeYK70H7bBqUXMV9h3/9Aq5l7lmNNqagDh3ZoPqN9Rb3gGkENY9H
8C0YB5LwXJuiAl81e2WTLG9li/goLjRFrUkDGZspmMJyU+3f3tY1tna+TiD5c5P9
mIk1EloHBek1fnLAGAy9tQm8hDdsuAbBiLBJFvLVsA6EObLyoyA5rgRRClqDj2ge
VJQvX9WLMKw97KcDrAyenIRhbpVhgZNrMYJD86lrZVoYxsdcT44+R4W9cwk9aujR
XkCv8Fvbknr7PIqjiMMwphBeN8iAiA6yw0O9jsECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTXM+agB1WVeBHSkdSmPJ6yswYRgDAfBgNVHSMEGDAWgBTXW3JGpl7VVJHv
7d9tu5vrSYQW6jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzExdHlScVplMVZTUjctM2ZiYnViNjBtRUZ1by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDQvMTM2YmQyLTE2ZjktNDA5Ny1iMzQ3LWIyM2U3OWYzMjUwMS8x
LzF6UG1vQWRWbFhnUjBwSFVwanllc3JNR0VZQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQv
MTM2YmQyLTE2ZjktNDA5Ny1iMzQ3LWIyM2U3OWYzMjUwMS8xLzExdHlScVplMVZT
UjctM2ZiYnViNjBtRUZ1by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE1XfjANBgkqhkiG9w0BAQsFAAOC
AQEAZSkMJGr5HlDAkZ3ZS3pg7i5ox7M+Z4PggXSLBU2CGMdrfG/AFMr1SLCpuQh5
73YeObsgzU7oLdnxmdCAVB4aIo2v/MNJSW/LuuBVJDdq6zQ2oegsd2V0hKuARO9h
+XJ83ybII6/iLNoddxpcb+od7bEfPPF/HdAkmDZH6SZZS5DRa8SGDlCvnQalhV/0
AE3UdztVBTN7AhGU7VfTbJF2pTHkWhDZygKPyJR7HaP9V+DCC+xrFakiPpSb7Tkp
UD00xxH9pQ/Gjo0zCB8lo6YpoUgnK9sXT9XSpHyDJMVZ5fZdiVdwkZS6qDZiz2xJ
oRsqibbPYB+EqqNEXNJXcHSSKQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:55 2023 by rpki-client on console-ams.rpki-client.org