Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1be2f3-133c-44d5-8ac8-eb01e8a8d4b3/1/Q9p3v5VczSJL50b_WpDC4kCZvKI.roa
File: Q9p3v5VczSJL50b_WpDC4kCZvKI.roa (raw, json)
Hash identifier: 2noRXZwpyed7hQOShM7ENA2rsyxovliNBct9gQmx7l8=
Subject key identifier: 43:DA:77:BF:95:5C:CD:22:4B:E7:46:FF:5A:90:C2:E2:40:99:BC:A2
Certificate issuer: /CN=13230da70232f66784730fd6c1255135b7f8d09f
Certificate serial: 1477AC61
Authority key identifier: 13:23:0D:A7:02:32:F6:67:84:73:0F:D6:C1:25:51:35:B7:F8:D0:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EyMNpwIy9meEcw_WwSVRNbf40J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1be2f3-133c-44d5-8ac8-eb01e8a8d4b3/1/Q9p3v5VczSJL50b_WpDC4kCZvKI.roa
Signing time: Sat 01 Jan 2022 07:52:53 +0000
ROA not before: Sat 01 Jan 2022 07:52:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51090
IP address blocks: 185.77.192.0/22 maxlen: 24
195.43.74.0/23 maxlen: 23
2001:67c:21c::/48 maxlen: 48
2a03:5620::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343387233 (0x1477ac61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13230da70232f66784730fd6c1255135b7f8d09f
Validity
Not Before: Jan 1 07:52:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43da77bf955ccd224be746ff5a90c2e24099bca2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e0:12:22:1f:d4:58:62:14:3c:32:81:dd:1f:
92:ee:a3:69:99:3c:16:d3:55:26:5e:b1:48:a1:97:
32:fb:2d:ac:c5:01:4d:59:00:85:b4:94:32:43:6a:
d4:f7:e2:ba:cf:81:e5:7c:db:4a:31:01:3e:58:80:
b8:cc:f5:2d:fb:9d:dd:dc:ec:e3:74:65:e0:47:a3:
c4:e0:11:4a:fd:8e:a1:8a:aa:34:fa:d9:83:75:ec:
64:0f:76:ef:17:63:44:ff:9e:86:ae:20:63:04:37:
fc:60:9f:08:a8:84:e7:d1:44:0f:d1:6c:ab:14:90:
29:ff:03:38:02:7f:66:e3:35:ca:61:44:f8:3a:33:
31:67:98:a1:c6:80:c7:c2:01:c5:47:c5:42:50:3f:
76:f8:c6:8c:9f:52:52:3f:30:c4:25:9d:e3:a6:59:
98:97:f2:65:ce:87:e2:4d:d2:7b:97:d3:ca:8a:76:
8e:a7:26:13:56:16:b6:03:d5:c4:f4:c0:49:ee:3a:
01:a1:16:77:13:10:63:0f:c4:52:18:c6:65:f4:17:
3a:fd:1c:82:b8:de:4e:15:cd:02:de:9c:c1:2c:d5:
1d:1e:56:73:1a:6d:db:72:e3:86:62:20:fb:d8:43:
48:2e:00:5f:03:8e:9c:3c:20:e0:1a:7e:ad:0c:fa:
cb:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:DA:77:BF:95:5C:CD:22:4B:E7:46:FF:5A:90:C2:E2:40:99:BC:A2
X509v3 Authority Key Identifier:
keyid:13:23:0D:A7:02:32:F6:67:84:73:0F:D6:C1:25:51:35:B7:F8:D0:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EyMNpwIy9meEcw_WwSVRNbf40J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1be2f3-133c-44d5-8ac8-eb01e8a8d4b3/1/Q9p3v5VczSJL50b_WpDC4kCZvKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1be2f3-133c-44d5-8ac8-eb01e8a8d4b3/1/EyMNpwIy9meEcw_WwSVRNbf40J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.192.0/22
195.43.74.0/23
IPv6:
2001:67c:21c::/48
2a03:5620::/32
Signature Algorithm: sha256WithRSAEncryption
22:32:4f:25:5b:44:0d:75:87:2d:25:af:ae:75:73:a0:d5:ce:
cd:5a:04:e3:fa:22:77:e0:49:08:73:54:6b:b7:ae:27:62:07:
64:53:bc:a4:74:de:76:a2:ff:90:5a:90:2e:f5:f6:83:92:51:
46:f4:21:8a:01:b8:0e:b1:66:be:1f:f5:96:c6:b4:27:31:34:
10:77:b1:fc:09:18:a6:48:21:9a:12:e1:ec:68:2f:35:7f:5c:
1f:08:06:65:ee:79:28:41:37:27:43:50:a0:17:05:b7:4f:2c:
6b:16:9b:97:64:01:1e:89:36:35:2b:30:21:c7:bc:53:b7:b7:
d0:91:fd:fe:dc:59:a0:7b:6a:01:5f:f4:6b:56:7b:33:71:cb:
27:84:68:d3:90:31:f0:91:ab:e8:1a:cf:70:68:79:83:97:b8:
62:1d:30:d8:8e:ad:46:d4:37:10:e7:72:1c:92:6a:7f:8c:37:
0f:6c:41:52:21:f8:79:72:28:5a:47:ff:7a:ae:e6:e2:0a:54:
ac:bb:6e:15:ac:58:84:e1:18:9c:71:95:22:80:a1:28:98:1a:
1a:bd:26:cc:9d:69:51:cd:90:59:a8:4f:dd:d6:64:57:f9:92:
bc:07:36:83:3a:c3:0f:b2:91:a2:4b:93:7f:f4:a7:46:31:16:
bc:49:83:39
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgIEFHesYTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MzIzMGRhNzAyMzJmNjY3ODQ3MzBmZDZjMTI1NTEzNWI3ZjhkMDlmMB4XDTIyMDEw
MTA3NTI1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDNkYTc3YmY5NTVj
Y2QyMjRiZTc0NmZmNWE5MGMyZTI0MDk5YmNhMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMrgEiIf1FhiFDwygd0fku6jaZk8FtNVJl6xSKGXMvstrMUB
TVkAhbSUMkNq1Pfius+B5XzbSjEBPliAuMz1Lfud3dzs43Rl4EejxOARSv2OoYqq
NPrZg3XsZA927xdjRP+ehq4gYwQ3/GCfCKiE59FED9FsqxSQKf8DOAJ/ZuM1ymFE
+DozMWeYocaAx8IBxUfFQlA/dvjGjJ9SUj8wxCWd46ZZmJfyZc6H4k3Se5fTyop2
jqcmE1YWtgPVxPTASe46AaEWdxMQYw/EUhjGZfQXOv0cgrjeThXNAt6cwSzVHR5W
cxpt23LjhmIg+9hDSC4AXwOOnDwg4Bp+rQz6y8cCAwEAAaOCAicwggIjMB0GA1Ud
DgQWBBRD2ne/lVzNIkvnRv9akMLiQJm8ojAfBgNVHSMEGDAWgBQTIw2nAjL2Z4Rz
D9bBJVE1t/jQnzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0V5TU5wd0l5OW1lRWN3X1d3U1ZSTmJmNDBKOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDQvMWJlMmYzLTEzM2MtNDRkNS04YWM4LWViMDFlOGE4ZDRiMy8x
L1E5cDN2NVZjelNKTDUwYl9XcERDNGtDWnZLSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQv
MWJlMmYzLTEzM2MtNDRkNS04YWM4LWViMDFlOGE4ZDRiMy8xL0V5TU5wd0l5OW1l
RWN3X1d3U1ZSTmJmNDBKOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA9
BggrBgEFBQcBBwEB/wQuMCwwEgQCAAEwDAMEArlNwAMEAcMrSjAWBAIAAjAQAwcA
IAEGfAIcAwUAKgNWIDANBgkqhkiG9w0BAQsFAAOCAQEAIjJPJVtEDXWHLSWvrnVz
oNXOzVoE4/oid+BJCHNUa7euJ2IHZFO8pHTedqL/kFqQLvX2g5JRRvQhigG4DrFm
vh/1lsa0JzE0EHex/AkYpkghmhLh7GgvNX9cHwgGZe55KEE3J0NQoBcFt08saxab
l2QBHok2NSswIce8U7e30JH9/txZoHtqAV/0a1Z7M3HLJ4Ro05Ax8JGr6BrPcGh5
g5e4Yh0w2I6tRtQ3EOdyHJJqf4w3D2xBUiH4eXIoWkf/eq7m4gpUrLtuFaxYhOEY
nHGVIoChKJgaGr0mzJ1pUc2QWahP3dZkV/mSvAc2gzrDD7KRokuTf/SnRjEWvEmD
OQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:41 2024 by rpki-client on console-ams.rpki-client.org