Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/FjcHsxyz41tdJlqL5XgA3eRQUZM.roa
File: FjcHsxyz41tdJlqL5XgA3eRQUZM.roa (raw, json)
Hash identifier: 2/DQjODOYXI03z1btpD8ZWM9d2fxpBWIxN+prHwjsIk=
Subject key identifier: 16:37:07:B3:1C:B3:E3:5B:5D:26:5A:8B:E5:78:00:DD:E4:50:51:93
Certificate issuer: /CN=8f2ae45c509041a796a968953581f51d45bfce55
Certificate serial: 018535C2B3F85077932718EEDC831B0474FF
Authority key identifier: 8F:2A:E4:5C:50:90:41:A7:96:A9:68:95:35:81:F5:1D:45:BF:CE:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jyrkXFCQQaeWqWiVNYH1HUW_zlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/FjcHsxyz41tdJlqL5XgA3eRQUZM.roa
Signing time: Wed 21 Dec 2022 17:37:10 +0000
ROA not before: Wed 21 Dec 2022 17:37:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 77.75.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:35:c2:b3:f8:50:77:93:27:18:ee:dc:83:1b:04:74:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f2ae45c509041a796a968953581f51d45bfce55
Validity
Not Before: Dec 21 17:37:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=163707b31cb3e35b5d265a8be57800dde4505193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0f:d9:ba:f8:b6:57:dc:dd:d0:ae:36:e9:4d:
14:5c:cb:1d:f5:5d:c9:8b:61:7f:68:c7:78:9b:40:
1b:fe:49:32:79:63:7c:5e:5c:87:df:61:65:ca:49:
f5:67:cc:5a:54:cb:00:65:b3:7b:91:9c:42:0a:42:
93:4e:35:a4:eb:de:a6:af:08:3c:d4:95:cd:2b:93:
ec:ab:c8:53:0d:7b:fa:fb:86:68:2d:34:ff:54:35:
de:b4:6c:08:74:43:d9:e0:b0:96:d7:29:db:e0:59:
a9:a0:0e:47:5d:78:03:21:c4:09:4a:98:81:dc:0e:
b3:84:be:f3:cd:b9:14:a1:84:d5:4f:75:13:b1:70:
fe:38:5c:18:70:9f:bf:d0:90:ec:ba:20:5b:cb:fc:
ff:f1:de:49:34:86:a8:e0:41:1e:4c:7c:24:06:7d:
fe:95:87:d7:57:af:cf:2a:48:4d:04:3d:25:64:8b:
8f:84:51:bd:d3:ae:be:e1:3a:55:bb:da:1b:f8:26:
a0:8b:f4:1d:49:a0:9f:3f:bf:b3:db:40:9a:ea:77:
db:ed:8c:91:24:f9:8b:1e:1d:3a:7b:e0:1a:60:a1:
97:6a:96:1d:5f:f9:21:a6:43:b1:e1:f0:6e:c5:a8:
c3:f1:bc:4a:f7:90:d0:ae:0c:ae:f3:04:4a:11:5d:
c7:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:37:07:B3:1C:B3:E3:5B:5D:26:5A:8B:E5:78:00:DD:E4:50:51:93
X509v3 Authority Key Identifier:
keyid:8F:2A:E4:5C:50:90:41:A7:96:A9:68:95:35:81:F5:1D:45:BF:CE:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jyrkXFCQQaeWqWiVNYH1HUW_zlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/FjcHsxyz41tdJlqL5XgA3eRQUZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/93901a-043b-49c8-ad37-ac7f21b6b74d/1/jyrkXFCQQaeWqWiVNYH1HUW_zlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.112.0/21
Signature Algorithm: sha256WithRSAEncryption
74:ca:da:72:b0:39:76:67:96:ab:f9:28:91:bc:8b:10:6f:c2:
83:5f:d4:4e:4c:43:be:e7:8c:ca:e1:42:91:70:c9:25:99:33:
82:cb:65:15:61:1e:d4:10:aa:e8:ae:f5:6d:96:28:32:fb:88:
67:72:d3:e4:91:31:d7:63:66:28:99:bc:d7:9c:ef:c8:63:82:
de:aa:35:66:d2:6c:25:ea:be:dc:14:d5:80:16:53:30:b3:f1:
0b:dd:81:98:c5:58:2f:89:fd:fa:51:ab:18:37:2d:97:20:35:
0e:06:dc:b4:57:a6:cf:2b:3d:36:30:6a:fd:34:01:f3:62:46:
cc:9b:71:3a:dc:f1:fb:55:bd:c8:18:91:4e:c2:aa:7d:ac:31:
26:d4:6f:ae:d9:e0:9f:36:44:c2:89:23:05:18:a1:b8:67:ca:
90:7e:78:e6:bf:b2:ee:c1:3a:1e:6c:a5:95:3c:cf:c8:be:8e:
9e:86:1f:98:0f:55:24:54:d4:5f:f8:9b:da:a8:02:c1:a9:83:
11:0f:c2:b8:96:52:24:6b:93:34:5b:cd:f7:da:b1:09:b2:28:
aa:90:e4:b8:62:b4:a4:01:6f:14:c3:5a:7a:8c:41:4e:a2:98:
d6:87:da:0d:4e:79:1d:b1:10:41:8b:6e:15:b7:20:8b:8a:58:
27:9e:c8:c6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYU1wrP4UHeTJxju3IMbBHT/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhmMmFlNDVjNTA5MDQxYTc5NmE5Njg5NTM1ODFmNTFkNDVi
ZmNlNTUwHhcNMjIxMjIxMTczNzEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjM3MDdiMzFjYjNlMzViNWQyNjVhOGJlNTc4MDBkZGU0NTA1MTkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4w/Zuvi2V9zd0K426U0UXMsd9V3J
i2F/aMd4m0Ab/kkyeWN8XlyH32Flykn1Z8xaVMsAZbN7kZxCCkKTTjWk696mrwg8
1JXNK5Psq8hTDXv6+4ZoLTT/VDXetGwIdEPZ4LCW1ynb4FmpoA5HXXgDIcQJSpiB
3A6zhL7zzbkUoYTVT3UTsXD+OFwYcJ+/0JDsuiBby/z/8d5JNIao4EEeTHwkBn3+
lYfXV6/PKkhNBD0lZIuPhFG9066+4TpVu9ob+Cagi/QdSaCfP7+z20Ca6nfb7YyR
JPmLHh06e+AaYKGXapYdX/khpkOx4fBuxajD8bxK95DQrgyu8wRKEV3HQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBY3B7Mcs+NbXSZai+V4AN3kUFGTMB8GA1UdIwQY
MBaAFI8q5FxQkEGnlqlolTWB9R1Fv85VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanlya1hGQ1FRYWVXcVdpVk5ZSDFIVVdfemxVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni85MzkwMWEtMDQzYi00OWM4LWFkMzct
YWM3ZjIxYjZiNzRkLzEvRmpjSHN4eXo0MXRkSmxxTDVYZ0EzZVJRVVpNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni85MzkwMWEtMDQzYi00OWM4LWFkMzctYWM3ZjIxYjZiNzRk
LzEvanlya1hGQ1FRYWVXcVdpVk5ZSDFIVVdfemxVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDTUtwMA0G
CSqGSIb3DQEBCwUAA4IBAQB0ytpysDl2Z5ar+SiRvIsQb8KDX9ROTEO+54zK4UKR
cMklmTOCy2UVYR7UEKrorvVtligy+4hnctPkkTHXY2YombzXnO/IY4LeqjVm0mwl
6r7cFNWAFlMws/EL3YGYxVgvif36UasYNy2XIDUOBty0V6bPKz02MGr9NAHzYkbM
m3E63PH7Vb3IGJFOwqp9rDEm1G+u2eCfNkTCiSMFGKG4Z8qQfnjmv7LuwToebKWV
PM/Ivo6ehh+YD1UkVNRf+JvaqALBqYMRD8K4llIka5M0W8332rEJsiiqkOS4YrSk
AW8Uw1p6jEFOopjWh9oNTnkdsRBBi24VtyCLilgnnsjG
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:34 2025 by rpki-client