Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/8oEyPyHNAh3HLOcykU9rtyj5B9w.roa
File: 8oEyPyHNAh3HLOcykU9rtyj5B9w.roa (raw, json)
Hash identifier: cNWfT30fbgBaZN69cm+8kdW+RPoscPOecZuQoyitUf4=
Subject key identifier: F2:81:32:3F:21:CD:02:1D:C7:2C:E7:32:91:4F:6B:B7:28:F9:07:DC
Certificate issuer: /CN=29b79380fe407439cc2ecd3fac18157db36cf768
Certificate serial: 02775932
Authority key identifier: 29:B7:93:80:FE:40:74:39:CC:2E:CD:3F:AC:18:15:7D:B3:6C:F7:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbeTgP5AdDnMLs0_rBgVfbNs92g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/8oEyPyHNAh3HLOcykU9rtyj5B9w.roa
Signing time: Sat 01 Jan 2022 13:07:30 +0000
ROA not before: Sat 01 Jan 2022 13:07:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206228
IP address blocks: 185.77.252.0/23 maxlen: 23
185.77.254.0/23 maxlen: 23
2a05:6740:40c0::/48 maxlen: 48
2a05:6740:4060::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41376050 (0x2775932)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b79380fe407439cc2ecd3fac18157db36cf768
Validity
Not Before: Jan 1 13:07:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f281323f21cd021dc72ce732914f6bb728f907dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9c:36:67:48:8f:2a:f0:89:5c:24:21:e4:a1:
25:3c:9b:d3:97:16:93:7e:df:68:a3:e7:e5:4a:9a:
03:8f:8e:30:6a:44:48:9e:3a:d9:cc:37:e8:26:da:
ab:25:09:b8:4e:c4:b5:22:93:df:e9:2f:65:3d:29:
08:64:aa:d6:68:ff:1f:8d:83:a8:2a:c9:97:2e:12:
7d:c1:14:db:94:50:1a:47:b5:aa:06:7b:7d:14:ff:
c0:40:fd:df:41:bf:c9:20:ba:14:a3:ba:18:26:5e:
87:2b:58:60:b2:23:56:b1:54:05:cb:24:29:e5:e5:
a2:d2:76:22:eb:88:e0:8b:68:ab:c8:f6:a1:1b:d1:
b3:a0:11:a6:b7:fc:aa:1f:11:5b:a7:9b:36:8e:5b:
a7:1b:48:49:97:e4:24:65:63:f3:f0:d0:53:f9:cb:
dc:75:3d:65:62:f9:0d:3d:aa:63:b4:77:a0:ee:dc:
3f:d0:93:8d:45:ce:70:54:62:3b:d3:dd:c4:f8:e1:
28:7c:7b:dc:04:08:75:bb:4c:f5:5f:e1:45:b9:f1:
b8:dc:44:93:b4:7e:61:c5:11:84:4b:75:dc:25:2e:
95:db:0f:67:e4:67:f6:6a:60:31:b3:94:17:df:f0:
c1:6c:9a:65:73:aa:b4:5c:7f:6a:76:0a:1e:90:39:
0d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:81:32:3F:21:CD:02:1D:C7:2C:E7:32:91:4F:6B:B7:28:F9:07:DC
X509v3 Authority Key Identifier:
keyid:29:B7:93:80:FE:40:74:39:CC:2E:CD:3F:AC:18:15:7D:B3:6C:F7:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbeTgP5AdDnMLs0_rBgVfbNs92g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/8oEyPyHNAh3HLOcykU9rtyj5B9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/KbeTgP5AdDnMLs0_rBgVfbNs92g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.252.0/22
IPv6:
2a05:6740:4060::/46
2a05:6740:40c0::/48
Signature Algorithm: sha256WithRSAEncryption
12:88:27:38:93:19:d0:88:c2:fb:aa:c3:71:91:40:bc:35:49:
ae:c7:23:c5:39:d9:9d:b0:00:a2:7c:d6:5e:34:e2:45:17:56:
6c:ac:f8:09:f6:ce:f5:2e:48:dc:5d:78:26:65:be:b0:1f:79:
61:f3:bc:2a:97:5d:a7:8a:2f:0c:5b:87:74:0c:f1:91:02:62:
bc:b2:8c:04:db:82:70:3c:ec:6e:26:bf:d7:54:17:99:e7:33:
16:0c:16:2e:d6:08:67:aa:3f:5b:31:6a:ca:cd:5a:1b:59:e5:
2f:d7:a6:e2:e2:c8:80:86:ff:c5:23:39:82:8b:c0:a6:27:96:
d9:51:d1:0b:e3:8f:af:a7:76:62:84:17:85:f8:e8:a7:c2:24:
6c:d7:c1:57:f1:1b:c9:05:49:06:9e:95:62:9b:f0:a1:7e:fa:
57:6c:aa:ed:2e:ee:11:75:e8:d6:b4:a8:5b:68:e0:3b:d7:19:
0f:8a:dc:44:32:67:b7:2a:66:79:59:3e:96:f5:98:a5:cd:3c:
1e:3b:3f:0b:d0:31:c3:01:7d:5c:3a:cf:4e:57:ef:8f:29:77:
54:68:1d:07:da:73:dd:3c:1c:3b:72:c0:d1:86:df:05:35:3d:
3f:39:fe:8f:a6:5f:52:50:84:88:58:43:75:57:83:9c:f8:55:
f1:f3:42:77
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgIEAndZMjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OWI3OTM4MGZlNDA3NDM5Y2MyZWNkM2ZhYzE4MTU3ZGIzNmNmNzY4MB4XDTIyMDEw
MTEzMDczMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjI4MTMyM2YyMWNk
MDIxZGM3MmNlNzMyOTE0ZjZiYjcyOGY5MDdkYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM+cNmdIjyrwiVwkIeShJTyb05cWk37faKPn5UqaA4+OMGpE
SJ462cw36CbaqyUJuE7EtSKT3+kvZT0pCGSq1mj/H42DqCrJly4SfcEU25RQGke1
qgZ7fRT/wED930G/ySC6FKO6GCZehytYYLIjVrFUBcskKeXlotJ2IuuI4Itoq8j2
oRvRs6ARprf8qh8RW6ebNo5bpxtISZfkJGVj8/DQU/nL3HU9ZWL5DT2qY7R3oO7c
P9CTjUXOcFRiO9PdxPjhKHx73AQIdbtM9V/hRbnxuNxEk7R+YcURhEt13CUuldsP
Z+Rn9mpgMbOUF9/wwWyaZXOqtFx/anYKHpA5DdsCAwEAAaOCAiMwggIfMB0GA1Ud
DgQWBBTygTI/Ic0CHccs5zKRT2u3KPkH3DAfBgNVHSMEGDAWgBQpt5OA/kB0Ocwu
zT+sGBV9s2z3aDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tiZVRnUDVBZERuTUxzMF9yQmdWZmJOczkyZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGYvMzkzODQyLWU3ZWYtNDg5My05YzFiLTFlODQyMTE4ZGI2Zi8x
LzhvRXlQeUhOQWgzSExPY3lrVTlydHlqNUI5dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGYv
MzkzODQyLWU3ZWYtNDg5My05YzFiLTFlODQyMTE4ZGI2Zi8xL0tiZVRnUDVBZERu
TUxzMF9yQmdWZmJOczkyZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA5
BggrBgEFBQcBBwEB/wQqMCgwDAQCAAEwBgMEArlN/DAYBAIAAjASAwcCKgVnQEBg
AwcAKgVnQEDAMA0GCSqGSIb3DQEBCwUAA4IBAQASiCc4kxnQiML7qsNxkUC8NUmu
xyPFOdmdsACifNZeNOJFF1ZsrPgJ9s71LkjcXXgmZb6wH3lh87wql12nii8MW4d0
DPGRAmK8sowE24JwPOxuJr/XVBeZ5zMWDBYu1ghnqj9bMWrKzVobWeUv16bi4siA
hv/FIzmCi8CmJ5bZUdEL44+vp3ZihBeF+OinwiRs18FX8RvJBUkGnpVim/ChfvpX
bKrtLu4RdejWtKhbaOA71xkPitxEMme3KmZ5WT6W9ZilzTweOz8L0DHDAX1cOs9O
V++PKXdUaB0H2nPdPBw7csDRht8FNT0/Of6Ppl9SUISIWEN1V4Oc+FXx80J3
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:00 2024 by rpki-client on console-fra.rpki-client.org