Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/xVqD74yWBqsVOfepISsHwbPeFkk.roa
File: xVqD74yWBqsVOfepISsHwbPeFkk.roa (raw, json)
Hash identifier: SBqXMtN/9dmRcN3rFosjuCqc5OVJtvdz/jqZi7LYRrY=
Subject key identifier: C5:5A:83:EF:8C:96:06:AB:15:39:F7:A9:21:2B:07:C1:B3:DE:16:49
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 447359FB
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/xVqD74yWBqsVOfepISsHwbPeFkk.roa
Signing time: Sat 01 Jan 2022 03:58:22 +0000
ROA not before: Sat 01 Jan 2022 03:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14898
IP address blocks: 81.80.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1148410363 (0x447359fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c55a83ef8c9606ab1539f7a9212b07c1b3de1649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:39:8d:71:71:b1:27:c9:70:de:3f:7a:2c:e0:
48:a5:2d:c1:c2:ee:00:91:ab:01:fc:7b:61:74:03:
39:e9:b3:aa:60:d8:39:40:99:dd:62:98:65:25:16:
cd:7b:53:20:4e:1f:e2:16:92:a6:2d:25:59:b0:f5:
68:15:34:b9:32:78:3d:89:af:d7:1c:fd:7e:6c:90:
3c:c7:a5:1e:2f:95:ca:1d:2f:0d:f4:43:83:84:cf:
1b:51:7c:3d:4a:1f:ec:8f:b7:f6:0d:61:f3:2e:9b:
dd:11:a3:7c:73:e1:2f:c1:28:6e:ca:91:c8:d7:8d:
37:16:e9:a2:2d:b6:9b:f2:31:a7:f2:51:6f:a4:9f:
f3:6d:33:48:66:cb:d1:21:6d:00:c3:b5:5c:9f:c3:
3b:15:28:fe:5a:d9:0b:4d:bf:c5:d2:66:85:4f:ad:
eb:aa:44:bf:4b:e1:d2:7b:32:e3:11:d3:e3:f3:31:
14:cd:44:7d:2b:72:83:6b:8d:9d:91:8c:2e:f0:7d:
a1:78:a7:36:2a:fc:0b:7f:6d:9b:15:44:76:77:15:
85:18:15:b2:0e:e9:95:84:33:69:8e:e6:28:a3:2c:
34:57:6c:93:7a:b5:ab:c9:92:9b:e6:83:0a:51:19:
f8:cc:59:e1:c1:86:11:64:bd:10:50:d4:3c:d6:d9:
4e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:5A:83:EF:8C:96:06:AB:15:39:F7:A9:21:2B:07:C1:B3:DE:16:49
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/xVqD74yWBqsVOfepISsHwbPeFkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.80.77.0/24
Signature Algorithm: sha256WithRSAEncryption
39:0f:ad:ce:aa:75:3e:e8:51:b8:a4:1a:b1:2f:56:35:b5:65:
25:47:38:f0:a8:b4:db:18:0e:b6:1f:74:7a:e2:68:45:b2:3c:
4f:c4:1d:70:d8:48:7b:ff:f5:b9:36:b3:ce:64:d5:b9:21:80:
c5:8c:7f:7f:bf:b3:a5:1e:92:b8:cf:06:92:7c:7b:ee:e9:16:
e8:82:ba:a3:cc:08:a9:c2:32:06:5a:7f:72:00:67:74:d8:05:
82:34:43:82:3d:5b:eb:5c:83:1d:1d:c2:4d:5e:a8:0d:a6:ad:
7f:00:f1:f7:c8:fc:73:3c:b4:4d:ca:26:02:a7:11:39:26:9c:
4f:ea:30:bb:27:d8:6a:86:d0:83:7d:7c:3e:90:9c:cf:bc:9e:
e4:22:4f:51:50:c2:61:4a:de:01:ae:f4:86:de:c2:19:7a:aa:
79:b4:e7:c4:e6:ce:a0:99:9a:f6:26:fa:8a:59:ba:2b:c0:27:
3b:a7:5d:c0:f0:f4:79:f9:c5:c5:6a:8f:3e:fa:bd:24:e8:54:
40:a6:06:06:f4:d4:ba:b5:21:89:9b:10:e5:9d:a7:21:0a:17:
44:4c:e0:46:70:0a:d5:26:a7:c8:f3:c2:4a:3c:c7:a1:4a:38:
54:d8:5a:74:c8:af:b7:16:18:01:10:23:bc:f6:7a:d7:c6:fd:
eb:64:4d:ed
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIERHNZ+zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YWYwOWJhMzNiNWFlNTgxYjBkMjkzMjMyNDkzMTRmNzZhYTEwNTExMB4XDTIyMDEw
MTAzNTgyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzU1YTgzZWY4Yzk2
MDZhYjE1MzlmN2E5MjEyYjA3YzFiM2RlMTY0OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALE5jXFxsSfJcN4/eizgSKUtwcLuAJGrAfx7YXQDOemzqmDY
OUCZ3WKYZSUWzXtTIE4f4haSpi0lWbD1aBU0uTJ4PYmv1xz9fmyQPMelHi+Vyh0v
DfRDg4TPG1F8PUof7I+39g1h8y6b3RGjfHPhL8EobsqRyNeNNxbpoi22m/Ixp/JR
b6Sf820zSGbL0SFtAMO1XJ/DOxUo/lrZC02/xdJmhU+t66pEv0vh0nsy4xHT4/Mx
FM1EfStyg2uNnZGMLvB9oXinNir8C39tmxVEdncVhRgVsg7plYQzaY7mKKMsNFds
k3q1q8mSm+aDClEZ+MxZ4cGGEWS9EFDUPNbZTkUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTFWoPvjJYGqxU596khKwfBs94WSTAfBgNVHSMEGDAWgBQ68JujO1rlgbDS
kyMkkxT3aqEFETAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L092Q2JvenRhNVlHdzBwTWpKSk1VOTJxaEJSRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmIvMzNkNWQxLWM0NTAtNDEzYi1hZmU0LTQ1OTM1ZjUwNmExMi8x
L3hWcUQ3NHlXQnFzVk9mZXBJU3NId2JQZUZray5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIv
MzNkNWQxLWM0NTAtNDEzYi1hZmU0LTQ1OTM1ZjUwNmExMi8xL092Q2JvenRhNVlH
dzBwTWpKSk1VOTJxaEJSRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFFQTTANBgkqhkiG9w0BAQsFAAOC
AQEAOQ+tzqp1PuhRuKQasS9WNbVlJUc48Ki02xgOth90euJoRbI8T8QdcNhIe//1
uTazzmTVuSGAxYx/f7+zpR6SuM8Gknx77ukW6IK6o8wIqcIyBlp/cgBndNgFgjRD
gj1b61yDHR3CTV6oDaatfwDx98j8czy0TcomAqcROSacT+owuyfYaobQg318PpCc
z7ye5CJPUVDCYUreAa70ht7CGXqqebTnxObOoJma9ib6ilm6K8AnO6ddwPD0efnF
xWqPPvq9JOhUQKYGBvTUurUhiZsQ5Z2nIQoXREzgRnAK1SanyPPCSjzHoUo4VNha
dMivtxYYARAjvPZ618b962RN7Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:20 2024 by rpki-client on console-ams.rpki-client.org