Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/36bb6d-fc73-4449-a527-55426381953c/1/chxYhS6rWvIE3pG7PGGtEuIz1RE.roa
File: chxYhS6rWvIE3pG7PGGtEuIz1RE.roa (raw, json)
Hash identifier: /zeo4pmRNRnahHPIA08azcdGFfRfdoml43Hq5Nc3I+E=
Subject key identifier: 72:1C:58:85:2E:AB:5A:F2:04:DE:91:BB:3C:61:AD:12:E2:33:D5:11
Certificate issuer: /CN=9f2bc3c5564d434381cb78ba47ad58be4d3deaa8
Certificate serial: 1BDAFD13
Authority key identifier: 9F:2B:C3:C5:56:4D:43:43:81:CB:78:BA:47:AD:58:BE:4D:3D:EA:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyvDxVZNQ0OBy3i6R61Yvk096qg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/36bb6d-fc73-4449-a527-55426381953c/1/chxYhS6rWvIE3pG7PGGtEuIz1RE.roa
Signing time: Sat 01 Jan 2022 02:00:52 +0000
ROA not before: Sat 01 Jan 2022 02:00:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43024
IP address blocks: 77.95.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 467336467 (0x1bdafd13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f2bc3c5564d434381cb78ba47ad58be4d3deaa8
Validity
Not Before: Jan 1 02:00:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=721c58852eab5af204de91bb3c61ad12e233d511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bc:ac:3f:3f:88:6e:03:51:55:f2:30:5b:07:
08:99:b1:67:2e:4d:ae:5e:ee:43:99:0c:e6:90:39:
8f:85:fd:46:06:27:06:c0:75:b9:54:ae:37:29:46:
10:eb:66:45:91:6c:0a:42:10:ce:8a:5b:7e:91:6a:
2c:96:66:e4:84:e9:bf:4a:95:ca:99:21:4a:72:e9:
a2:50:e7:e6:3e:54:2d:99:c3:5c:18:37:0f:14:e5:
87:18:0b:d8:23:61:10:ac:15:f4:42:52:97:00:47:
49:15:11:4e:ab:7e:89:45:46:84:c1:c8:98:23:c2:
50:d7:49:9a:4e:e0:aa:32:a4:02:0c:af:6e:3e:43:
4a:1f:94:ed:1c:62:c1:50:99:f7:1c:9d:32:d6:8d:
ea:73:b6:ac:44:c4:ee:38:f3:f6:e8:84:5e:1e:5e:
c8:93:65:7b:e4:5c:bc:55:68:44:35:2a:f7:31:c4:
0c:d8:88:37:93:a1:bb:4e:03:3a:ae:a4:d6:b2:53:
29:ac:22:7f:77:0b:78:31:fe:3b:67:38:58:62:69:
cf:ef:89:c7:95:14:63:8b:57:b7:7f:6f:14:c4:5b:
f8:a2:c4:73:a8:ab:ba:68:5f:ab:89:c4:0d:ea:16:
a4:a6:fb:6b:11:e8:ae:81:a3:4a:11:78:40:d4:1e:
8b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:1C:58:85:2E:AB:5A:F2:04:DE:91:BB:3C:61:AD:12:E2:33:D5:11
X509v3 Authority Key Identifier:
keyid:9F:2B:C3:C5:56:4D:43:43:81:CB:78:BA:47:AD:58:BE:4D:3D:EA:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyvDxVZNQ0OBy3i6R61Yvk096qg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/36bb6d-fc73-4449-a527-55426381953c/1/chxYhS6rWvIE3pG7PGGtEuIz1RE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/36bb6d-fc73-4449-a527-55426381953c/1/nyvDxVZNQ0OBy3i6R61Yvk096qg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.16.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:30:ea:0c:44:c8:3b:04:26:69:19:5c:18:7d:af:7c:68:ee:
2b:20:cb:e7:f3:de:60:ab:66:af:c3:a5:ab:51:56:e1:07:30:
a0:bf:7a:6c:9b:a2:79:ae:a8:2b:8e:cb:62:80:29:c0:ce:d2:
7b:86:8b:04:cd:28:e2:e6:a2:f2:a7:b3:35:ac:29:90:07:81:
de:f0:f2:b3:32:63:9e:3a:48:7b:d9:bc:82:be:3d:91:d8:13:
d6:80:63:7b:2d:96:09:83:b9:1e:8b:e2:40:7b:3a:25:04:ba:
98:a7:41:f2:91:f8:9a:86:19:05:08:27:89:36:e0:b3:6e:a4:
c4:14:b1:56:41:b6:d2:4f:7f:9e:69:c2:88:9e:e4:50:b7:b0:
c6:8a:37:50:45:9f:6b:d1:2f:f3:36:33:17:19:c0:01:4c:c5:
ab:55:47:4e:65:ed:75:e1:e8:de:49:19:57:5d:ca:f0:67:a2:
ad:f7:9b:67:82:bb:07:60:52:5b:94:3f:f1:d0:0a:89:90:08:
f9:6a:ed:fa:6f:48:7f:4d:3a:97:8a:d3:48:10:d1:88:32:0b:
9a:c3:a5:8e:e0:0b:51:a2:38:1d:c9:5e:82:87:8a:fa:fd:c2:
09:41:64:cd:25:56:12:ec:d8:7e:99:9f:a4:e4:f5:a1:99:f0:
fe:95:47:86
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEG9r9EzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZjJiYzNjNTU2NGQ0MzQzODFjYjc4YmE0N2FkNThiZTRkM2RlYWE4MB4XDTIyMDEw
MTAyMDA1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzIxYzU4ODUyZWFi
NWFmMjA0ZGU5MWJiM2M2MWFkMTJlMjMzZDUxMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKi8rD8/iG4DUVXyMFsHCJmxZy5Nrl7uQ5kM5pA5j4X9RgYn
BsB1uVSuNylGEOtmRZFsCkIQzopbfpFqLJZm5ITpv0qVypkhSnLpolDn5j5ULZnD
XBg3DxTlhxgL2CNhEKwV9EJSlwBHSRURTqt+iUVGhMHImCPCUNdJmk7gqjKkAgyv
bj5DSh+U7RxiwVCZ9xydMtaN6nO2rETE7jjz9uiEXh5eyJNle+RcvFVoRDUq9zHE
DNiIN5Ohu04DOq6k1rJTKawif3cLeDH+O2c4WGJpz++Jx5UUY4tXt39vFMRb+KLE
c6irumhfq4nEDeoWpKb7axHoroGjShF4QNQei4cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRyHFiFLqta8gTekbs8Ya0S4jPVETAfBgNVHSMEGDAWgBSfK8PFVk1DQ4HL
eLpHrVi+TT3qqDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L255dkR4VlpOUTBPQnkzaTZSNjFZdmswOTZxZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjEvMzZiYjZkLWZjNzMtNDQ0OS1hNTI3LTU1NDI2MzgxOTUzYy8x
L2NoeFloUzZyV3ZJRTNwRzdQR0d0RXVJejFSRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjEv
MzZiYjZkLWZjNzMtNDQ0OS1hNTI3LTU1NDI2MzgxOTUzYy8xL255dkR4VlpOUTBP
QnkzaTZSNjFZdmswOTZxZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAk1fEDANBgkqhkiG9w0BAQsFAAOC
AQEATDDqDETIOwQmaRlcGH2vfGjuKyDL5/PeYKtmr8Olq1FW4QcwoL96bJuiea6o
K47LYoApwM7Se4aLBM0o4uai8qezNawpkAeB3vDyszJjnjpIe9m8gr49kdgT1oBj
ey2WCYO5HoviQHs6JQS6mKdB8pH4moYZBQgniTbgs26kxBSxVkG20k9/nmnCiJ7k
ULewxoo3UEWfa9Ev8zYzFxnAAUzFq1VHTmXtdeHo3kkZV13K8GeirfebZ4K7B2BS
W5Q/8dAKiZAI+Wrt+m9If006l4rTSBDRiDILmsOljuALUaI4HclegoeK+v3CCUFk
zSVWEuzYfpmfpOT1oZnw/pVHhg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:23 2024 by rpki-client on console-fra.rpki-client.org