Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/dy8bLdIfjR31wnXHwFw_3FTmnVE.roa
File: dy8bLdIfjR31wnXHwFw_3FTmnVE.roa (raw, json)
Hash identifier: 6kY2ZaaNoKR7i533O4r8eg38v3UdaxDatfld1/rA2vQ=
Subject key identifier: 77:2F:1B:2D:D2:1F:8D:1D:F5:C2:75:C7:C0:5C:3F:DC:54:E6:9D:51
Certificate issuer: /CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Certificate serial: 052B3CFC
Authority key identifier: 81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/dy8bLdIfjR31wnXHwFw_3FTmnVE.roa
Signing time: Sat 01 Jan 2022 12:57:12 +0000
ROA not before: Sat 01 Jan 2022 12:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45043
IP address blocks: 195.64.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86719740 (0x52b3cfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Validity
Not Before: Jan 1 12:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=772f1b2dd21f8d1df5c275c7c05c3fdc54e69d51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:92:04:d8:b9:c9:bd:03:4b:b6:6d:f2:c1:21:
57:95:1e:10:56:98:d7:14:0d:e7:e2:c6:38:e0:41:
1e:88:43:4f:d6:b8:75:6c:40:52:ad:b2:0c:d7:54:
a9:96:cc:ab:16:0e:39:48:f0:b3:72:7f:ab:17:ee:
4d:ae:ff:f7:8f:2a:92:78:91:6e:08:6c:12:1a:36:
94:c4:2b:81:a6:5e:9f:e2:9e:cf:36:6e:b6:06:0d:
54:2d:a9:2c:7e:a3:e1:96:76:08:c3:b0:c4:15:08:
c9:0e:ce:46:04:f5:e3:5c:e8:35:9e:a3:2b:fa:82:
62:94:90:bf:da:9a:d6:ad:83:45:0b:8a:02:68:ba:
03:46:48:84:90:4e:6a:b3:f8:f9:47:02:67:a9:da:
25:34:a4:5b:98:e9:12:17:f1:65:bd:8d:56:fe:db:
a0:3a:1b:6d:4f:d8:a7:50:e7:9c:0b:9a:0d:d7:c4:
c2:66:43:0d:19:a2:57:d5:98:a5:88:a9:28:a5:8a:
9e:14:c1:5a:b3:4f:60:32:74:78:97:a4:84:ff:13:
6e:54:b3:89:c8:34:5e:51:c3:5f:96:2f:49:1c:52:
c4:09:b1:b6:19:8a:60:2c:47:8d:50:ed:7d:36:f3:
ba:05:de:94:82:3b:e7:a3:90:2e:8f:15:05:62:88:
13:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:2F:1B:2D:D2:1F:8D:1D:F5:C2:75:C7:C0:5C:3F:DC:54:E6:9D:51
X509v3 Authority Key Identifier:
keyid:81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/dy8bLdIfjR31wnXHwFw_3FTmnVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/gfpI9AvIRUDEa9I76bkIl6oYT00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.244.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:b7:80:15:e4:ca:f3:85:ef:87:e3:65:f9:b4:77:f9:09:e7:
96:bf:0e:3e:12:68:46:c5:28:4f:14:3e:d2:29:31:39:b9:45:
21:b8:37:04:92:4a:b8:3e:70:93:60:96:8b:45:d7:19:9b:cf:
db:7d:7d:73:b7:6c:0f:99:d4:2c:e1:d3:97:76:59:df:5e:36:
ab:0f:60:be:10:20:99:71:33:5c:0e:e8:d8:83:a3:a5:86:8c:
12:d1:a4:60:11:57:98:25:19:1e:bd:12:de:ea:a1:89:48:cc:
b7:fe:88:e0:b6:2b:eb:4e:b3:4f:da:33:9a:95:66:eb:52:9c:
f8:6e:c8:bf:d1:43:c1:40:cd:dd:e6:e7:75:71:ed:d8:ea:8c:
c0:e3:ca:34:42:1d:5d:ae:fc:8a:08:14:3b:61:d4:b8:69:45:
66:4f:81:27:57:06:ef:81:ec:2d:e0:d8:00:30:72:19:12:2b:
fd:15:c6:d5:5f:8e:a6:20:39:c1:37:1e:d0:57:01:f2:5b:f8:
1d:ec:b6:12:d1:95:12:de:45:ce:2c:c5:b3:a6:3f:d6:c9:2f:
3c:32:7b:5f:5e:46:d8:77:56:88:a7:1d:36:c8:82:23:8a:fa:
ca:54:57:12:4e:71:1f:43:ba:6d:1b:cf:a8:a3:e8:21:69:dc:
a9:b6:c9:7c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBSs8/DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MWZhNDhmNDBiYzg0NTQwYzQ2YmQyM2JlOWI5MDg5N2FhMTg0ZjRkMB4XDTIyMDEw
MTEyNTcxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzcyZjFiMmRkMjFm
OGQxZGY1YzI3NWM3YzA1YzNmZGM1NGU2OWQ1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOOSBNi5yb0DS7Zt8sEhV5UeEFaY1xQN5+LGOOBBHohDT9a4
dWxAUq2yDNdUqZbMqxYOOUjws3J/qxfuTa7/948qkniRbghsEho2lMQrgaZen+Ke
zzZutgYNVC2pLH6j4ZZ2CMOwxBUIyQ7ORgT141zoNZ6jK/qCYpSQv9qa1q2DRQuK
Ami6A0ZIhJBOarP4+UcCZ6naJTSkW5jpEhfxZb2NVv7boDobbU/Yp1DnnAuaDdfE
wmZDDRmiV9WYpYipKKWKnhTBWrNPYDJ0eJekhP8TblSzicg0XlHDX5YvSRxSxAmx
thmKYCxHjVDtfTbzugXelII756OQLo8VBWKIE5sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR3Lxst0h+NHfXCdcfAXD/cVOadUTAfBgNVHSMEGDAWgBSB+kj0C8hFQMRr
0jvpuQiXqhhPTTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2dmcEk5QXZJUlVERWE5STc2YmtJbDZvWVQwMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzMvMTQ2MDc4LWY5YjItNDE2My1hZjFhLThlOTNjYjVjNTM1NS8x
L2R5OGJMZElmalIzMXduWEh3RndfM0ZUbW5WRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzMv
MTQ2MDc4LWY5YjItNDE2My1hZjFhLThlOTNjYjVjNTM1NS8xL2dmcEk5QXZJUlVE
RWE5STc2YmtJbDZvWVQwMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsNA9DANBgkqhkiG9w0BAQsFAAOC
AQEAsreAFeTK84Xvh+Nl+bR3+Qnnlr8OPhJoRsUoTxQ+0ikxOblFIbg3BJJKuD5w
k2CWi0XXGZvP2319c7dsD5nULOHTl3ZZ3142qw9gvhAgmXEzXA7o2IOjpYaMEtGk
YBFXmCUZHr0S3uqhiUjMt/6I4LYr606zT9ozmpVm61Kc+G7Iv9FDwUDN3ebndXHt
2OqMwOPKNEIdXa78iggUO2HUuGlFZk+BJ1cG74HsLeDYADByGRIr/RXG1V+OpiA5
wTce0FcB8lv4Hey2EtGVEt5FzizFs6Y/1skvPDJ7X15G2HdWiKcdNsiCI4r6ylRX
Ek5xH0O6bRvPqKPoIWncqbbJfA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:56 2024 by rpki-client on console-fra.rpki-client.org