Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/B-AV2TGtPiC-QwzeNV52-axo9Oc.roa
File: B-AV2TGtPiC-QwzeNV52-axo9Oc.roa (raw, json)
Hash identifier: cTp8uOwYLCbX7Onu99Ysu+CSXc2vdkWCn7XSm/0GCrs=
Subject key identifier: 07:E0:15:D9:31:AD:3E:20:BE:43:0C:DE:35:5E:76:F9:AC:68:F4:E7
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01847CDDD7ED7FEFB8E01F9039FC35BB7404
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/B-AV2TGtPiC-QwzeNV52-axo9Oc.roa
Signing time: Tue 15 Nov 2022 19:57:04 +0000
ROA not before: Tue 15 Nov 2022 19:57:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42910
IP address blocks: 77.92.152.0/24 maxlen: 24
188.132.170.0/24 maxlen: 24
78.135.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7c:dd:d7:ed:7f:ef:b8:e0:1f:90:39:fc:35:bb:74:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Nov 15 19:57:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07e015d931ad3e20be430cde355e76f9ac68f4e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ce:21:5e:25:01:3a:d7:c5:cb:a1:d2:b3:33:
79:f5:2f:45:9e:24:61:dd:a3:e2:24:2b:7b:85:f9:
c8:7d:26:25:e4:b9:26:52:6f:b6:87:64:8a:47:92:
c6:68:d4:e3:78:99:5d:64:f0:53:d1:f7:7d:59:ff:
cb:0a:05:33:5c:f6:b5:fb:30:21:75:17:91:7c:87:
83:3f:32:24:d0:a5:e1:ab:dd:53:cf:6f:63:f3:93:
0a:cc:58:38:d6:c6:a6:27:a8:24:21:40:93:b0:42:
58:90:98:94:07:f0:27:f5:d7:89:65:9c:b4:2c:3b:
ec:c6:65:f4:00:01:5a:ec:90:47:aa:81:9f:83:39:
04:f7:ba:7d:f7:ba:b5:2b:ce:55:5e:cd:3e:65:b8:
48:82:33:37:ac:45:ab:30:1c:db:ee:94:69:7b:c4:
0f:11:cb:7e:c1:5d:39:1f:e0:99:cc:4c:21:c9:6c:
34:0e:8e:5d:44:d3:91:3e:dc:b5:72:33:ad:61:f9:
2f:f6:c6:ee:44:06:fc:02:be:01:a9:64:c6:48:7a:
02:62:b3:2a:72:b3:d4:e1:6d:e3:8f:34:5d:ac:42:
7f:ba:b6:62:7e:dd:84:f8:ac:9b:34:56:d6:c2:41:
68:90:e5:c7:76:45:8c:49:18:74:b4:78:52:c4:60:
8a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:E0:15:D9:31:AD:3E:20:BE:43:0C:DE:35:5E:76:F9:AC:68:F4:E7
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/B-AV2TGtPiC-QwzeNV52-axo9Oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.152.0/24
78.135.64.0/24
188.132.170.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:73:6e:b5:c2:f4:6b:c8:22:04:14:0d:b6:89:55:82:77:d5:
81:f4:35:3b:15:9e:10:14:40:23:81:17:cd:33:c2:38:f3:ed:
09:b0:1f:3f:ba:55:3d:ef:e1:6f:5c:e3:bb:e4:41:1e:5f:1c:
1e:2a:98:14:60:92:3a:7b:f2:e6:bf:45:d7:c3:33:b0:3a:b5:
b8:1e:d8:e6:e2:65:e6:61:69:d2:47:a0:04:e8:15:04:36:b6:
3e:af:5d:53:ff:a8:ad:0b:5c:7b:06:79:fc:d5:53:0f:34:f5:
98:ef:a4:bd:6c:d2:5c:8f:2f:06:a7:b8:7b:98:50:40:71:e7:
1a:f5:7d:1a:57:06:3d:c6:6f:29:89:64:4b:bf:7d:76:04:69:
35:9e:42:f1:43:d1:de:21:04:94:a6:a2:9d:c6:06:b8:c6:55:
56:a8:60:f7:1b:f4:4e:13:03:9b:20:5c:05:4f:e9:f6:39:59:
69:67:ed:72:ac:15:9c:2e:8a:ff:e7:c1:31:11:11:88:8a:35:
d5:0b:a6:b2:b3:3a:09:6b:bc:c8:8c:45:f8:12:8e:6c:9d:67:
bb:71:a8:fa:96:6d:04:1b:73:6d:19:a8:4b:58:2e:1c:eb:52:
df:a4:b6:92:38:af:38:b3:90:a7:1c:63:a4:66:0a:d1:1f:d3:
9b:88:f5:ab
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYR83dftf++44B+QOfw1u3QEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjIxMTE1MTk1NzA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwN2UwMTVkOTMxYWQzZTIwYmU0MzBjZGUzNTVlNzZmOWFjNjhmNGU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA184hXiUBOtfFy6HSszN59S9FniRh
3aPiJCt7hfnIfSYl5LkmUm+2h2SKR5LGaNTjeJldZPBT0fd9Wf/LCgUzXPa1+zAh
dReRfIeDPzIk0KXhq91Tz29j85MKzFg41samJ6gkIUCTsEJYkJiUB/An9deJZZy0
LDvsxmX0AAFa7JBHqoGfgzkE97p997q1K85VXs0+ZbhIgjM3rEWrMBzb7pRpe8QP
Ect+wV05H+CZzEwhyWw0Do5dRNORPty1cjOtYfkv9sbuRAb8Ar4BqWTGSHoCYrMq
crPU4W3jjzRdrEJ/urZift2E+KybNFbWwkFokOXHdkWMSRh0tHhSxGCKOwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFAfgFdkxrT4gvkMM3jVedvmsaPTnMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvQi1BVjJUR3RQaUMtUXd6ZU5WNTItYXhvOU9jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQATVyYAwQA
TodAAwQAvISqMA0GCSqGSIb3DQEBCwUAA4IBAQAPc261wvRryCIEFA22iVWCd9WB
9DU7FZ4QFEAjgRfNM8I48+0JsB8/ulU97+FvXOO75EEeXxweKpgUYJI6e/Lmv0XX
wzOwOrW4Htjm4mXmYWnSR6AE6BUENrY+r11T/6itC1x7Bnn81VMPNPWY76S9bNJc
jy8Gp7h7mFBAceca9X0aVwY9xm8piWRLv312BGk1nkLxQ9HeIQSUpqKdxga4xlVW
qGD3G/ROEwObIFwFT+n2OVlpZ+1yrBWcLor/58ExERGIijXVC6ayszoJa7zIjEX4
Eo5snWe7caj6lm0EG3NtGahLWC4c61LfpLaSOK84s5CnHGOkZgrRH9ObiPWr
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org