Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9c70e9-3df3-4bc7-82e6-006e9bb8ed59/1/7-vr1MuR-fldEbEVNftQAW2l_qQ.roa
File: 7-vr1MuR-fldEbEVNftQAW2l_qQ.roa (raw, json)
Hash identifier: 4bvwJJzdzFb1EHziy7n4SMMqmgTPapqboi4toYRgHvA=
Subject key identifier: EF:EB:EB:D4:CB:91:F9:F9:5D:11:B1:15:35:FB:50:01:6D:A5:FE:A4
Certificate issuer: /CN=71c1690ef57afcffae73bdb9934309f8b70ebb61
Certificate serial: 0570FCF4
Authority key identifier: 71:C1:69:0E:F5:7A:FC:FF:AE:73:BD:B9:93:43:09:F8:B7:0E:BB:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ccFpDvV6_P-uc725k0MJ-LcOu2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9c70e9-3df3-4bc7-82e6-006e9bb8ed59/1/7-vr1MuR-fldEbEVNftQAW2l_qQ.roa
Signing time: Sat 01 Jan 2022 11:00:56 +0000
ROA not before: Sat 01 Jan 2022 11:00:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42154
IP address blocks: 77.87.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91290868 (0x570fcf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71c1690ef57afcffae73bdb9934309f8b70ebb61
Validity
Not Before: Jan 1 11:00:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=efebebd4cb91f9f95d11b11535fb50016da5fea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bf:cf:89:2d:2e:53:d5:94:4f:e0:13:1c:5f:
47:66:5c:51:b1:be:6f:9a:be:eb:76:f9:20:ba:e2:
21:f8:ea:da:53:38:07:04:72:21:4a:46:c5:8b:bf:
66:a6:5c:5a:e4:82:45:1e:61:87:30:19:c6:c1:d4:
68:11:73:ff:2d:fa:b0:9a:94:40:1a:24:e8:8e:c5:
62:cc:3c:7a:e9:d1:5a:d5:3c:43:3e:d9:77:44:35:
ab:99:85:ce:80:4c:62:3c:4f:55:72:88:06:94:ca:
c9:a4:61:a0:1c:61:d3:10:1f:1e:80:fd:e0:97:ff:
93:b4:6d:b4:62:9a:50:7d:72:50:57:f4:07:0c:d1:
25:59:0b:2d:7d:42:97:a2:3f:25:28:70:8b:51:f3:
9f:35:88:10:0b:d8:5b:1d:4d:41:63:4c:40:d7:f7:
01:06:08:8b:03:c2:43:cf:bd:27:ea:b3:11:be:fb:
b4:f5:f7:7f:14:22:47:c6:c2:29:b1:72:53:24:f4:
f8:60:37:d4:de:e5:0a:06:3b:eb:04:13:1e:88:58:
7c:14:5d:5d:2b:8c:d3:0c:73:83:c5:16:40:d1:de:
2a:e4:71:0f:1f:87:cb:71:ea:1f:04:6b:53:7a:f5:
bb:90:49:f1:85:8a:f9:b5:42:1d:57:73:bc:5a:6d:
7a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:EB:EB:D4:CB:91:F9:F9:5D:11:B1:15:35:FB:50:01:6D:A5:FE:A4
X509v3 Authority Key Identifier:
keyid:71:C1:69:0E:F5:7A:FC:FF:AE:73:BD:B9:93:43:09:F8:B7:0E:BB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ccFpDvV6_P-uc725k0MJ-LcOu2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9c70e9-3df3-4bc7-82e6-006e9bb8ed59/1/7-vr1MuR-fldEbEVNftQAW2l_qQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9c70e9-3df3-4bc7-82e6-006e9bb8ed59/1/ccFpDvV6_P-uc725k0MJ-LcOu2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.76.0/24
Signature Algorithm: sha256WithRSAEncryption
20:99:9a:d0:8a:40:25:79:23:b7:70:e0:50:50:71:b6:3e:3b:
3d:b1:05:aa:b9:61:34:ed:d8:33:76:5f:ab:56:8c:3c:bb:dc:
70:f1:2c:0d:6d:e0:78:fe:c0:95:7b:60:74:e0:93:d0:cf:59:
63:93:ec:dd:25:ff:7d:a4:04:a1:bc:9d:98:a5:1c:75:f2:bf:
45:58:e7:7c:66:d4:a3:2a:4c:88:d7:d6:a7:cf:77:b6:1a:1d:
60:a9:11:48:e2:61:d5:5f:eb:4d:71:c2:1d:fb:6e:ec:47:61:
b3:22:ce:76:02:3b:e2:c1:0a:d2:65:b8:59:cb:ae:f0:e9:ca:
a5:2b:40:14:28:f1:2f:7f:b8:be:d4:85:66:4c:7d:ab:3b:ae:
41:1f:ce:4f:40:7b:bb:43:4a:06:49:3a:ab:5e:e7:81:39:24:
e9:24:f7:a1:31:87:da:be:77:d0:76:d6:b6:28:a3:e0:3e:ee:
1f:e5:76:31:cd:b4:4e:ab:26:79:7d:22:2e:0b:a2:66:20:e9:
ce:32:e3:27:42:3c:97:9d:14:38:98:40:9b:4c:8d:ba:e0:db:
ed:a8:1a:49:03:c3:11:18:0d:4d:9c:eb:44:c3:7f:c5:ff:99:
9e:ad:99:97:fd:07:ca:4c:e3:f2:76:b6:9e:55:ab:56:88:d6:
2e:97:33:f2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBXD89DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MWMxNjkwZWY1N2FmY2ZmYWU3M2JkYjk5MzQzMDlmOGI3MGViYjYxMB4XDTIyMDEw
MTExMDA1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWZlYmViZDRjYjkx
ZjlmOTVkMTFiMTE1MzVmYjUwMDE2ZGE1ZmVhNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANC/z4ktLlPVlE/gExxfR2ZcUbG+b5q+63b5ILriIfjq2lM4
BwRyIUpGxYu/ZqZcWuSCRR5hhzAZxsHUaBFz/y36sJqUQBok6I7FYsw8eunRWtU8
Qz7Zd0Q1q5mFzoBMYjxPVXKIBpTKyaRhoBxh0xAfHoD94Jf/k7RttGKaUH1yUFf0
BwzRJVkLLX1Cl6I/JShwi1HznzWIEAvYWx1NQWNMQNf3AQYIiwPCQ8+9J+qzEb77
tPX3fxQiR8bCKbFyUyT0+GA31N7lCgY76wQTHohYfBRdXSuM0wxzg8UWQNHeKuRx
Dx+Hy3HqHwRrU3r1u5BJ8YWK+bVCHVdzvFptenECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTv6+vUy5H5+V0RsRU1+1ABbaX+pDAfBgNVHSMEGDAWgBRxwWkO9Xr8/65z
vbmTQwn4tw67YTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NjRnBEdlY2X1AtdWM3MjVrME1KLUxjT3UyRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTkvOWM3MGU5LTNkZjMtNGJjNy04MmU2LTAwNmU5YmI4ZWQ1OS8x
LzctdnIxTXVSLWZsZEViRVZOZnRRQVcybF9xUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTkv
OWM3MGU5LTNkZjMtNGJjNy04MmU2LTAwNmU5YmI4ZWQ1OS8xL2NjRnBEdlY2X1At
dWM3MjVrME1KLUxjT3UyRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE1XTDANBgkqhkiG9w0BAQsFAAOC
AQEAIJma0IpAJXkjt3DgUFBxtj47PbEFqrlhNO3YM3Zfq1aMPLvccPEsDW3geP7A
lXtgdOCT0M9ZY5Ps3SX/faQEobydmKUcdfK/RVjnfGbUoypMiNfWp893thodYKkR
SOJh1V/rTXHCHftu7EdhsyLOdgI74sEK0mW4Wcuu8OnKpStAFCjxL3+4vtSFZkx9
qzuuQR/OT0B7u0NKBkk6q17ngTkk6ST3oTGH2r530HbWtiij4D7uH+V2Mc20Tqsm
eX0iLguiZiDpzjLjJ0I8l50UOJhAm0yNuuDb7agaSQPDERgNTZzrRMN/xf+Znq2Z
l/0Hykzj8na2nlWrVojWLpcz8g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:23 2024 by rpki-client on console-ams.rpki-client.org