Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/m9l4YBLauTz_Ecenc-t598VhSw4.roa
File: m9l4YBLauTz_Ecenc-t598VhSw4.roa (raw, json)
Hash identifier: wbSAwsxiVTEu3o0FKwM3Np8udCifSVaDUql6wjGJdis=
Subject key identifier: 9B:D9:78:60:12:DA:B9:3C:FF:11:C7:A7:73:EB:79:F7:C5:61:4B:0E
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 06458951
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/m9l4YBLauTz_Ecenc-t598VhSw4.roa
Signing time: Thu 19 May 2022 12:35:29 +0000
ROA not before: Thu 19 May 2022 12:35:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 77.73.129.0/24 maxlen: 24
77.73.132.0/24 maxlen: 24
77.73.134.0/24 maxlen: 24
77.73.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105220433 (0x6458951)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: May 19 12:35:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bd9786012dab93cff11c7a773eb79f7c5614b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b3:f6:0b:68:c6:45:6e:82:63:9c:10:af:35:
6a:df:16:b1:e4:47:cf:d8:78:4b:a4:5d:2b:8c:98:
5d:f2:02:d5:40:d4:60:0c:11:99:8d:10:6c:b3:62:
53:74:93:59:96:e6:b5:14:01:3e:72:c1:fd:0d:cd:
ba:23:a3:6c:58:bf:17:8a:48:13:45:97:55:8c:76:
8f:5b:01:9b:5e:c0:3c:1c:99:8e:e9:82:2d:e3:99:
7c:c0:c6:f3:32:b8:35:9b:00:1a:c7:31:f5:91:d7:
15:89:4c:f4:14:60:b4:c9:d6:32:5a:74:41:21:1d:
2d:56:6a:f5:31:4c:3e:29:74:5e:20:49:04:58:60:
83:49:40:89:bc:2b:e7:19:4e:18:0e:85:a9:98:12:
22:0e:48:5f:99:0e:b7:e4:a4:16:46:e2:df:ea:d4:
28:55:34:09:29:b2:77:8f:f0:f1:26:4f:2e:ab:57:
d2:f2:29:20:d7:3c:96:a5:5b:45:8e:42:47:8d:05:
70:00:0f:01:06:0b:71:42:ef:83:5a:de:3a:f2:27:
ed:9c:4c:a5:0b:48:1f:12:93:62:bd:55:2a:be:1a:
87:45:b8:c6:74:d9:a2:77:8d:3b:5a:ad:2f:5e:43:
38:b8:16:d7:ce:c9:e5:b1:09:6c:f5:94:a8:8a:93:
c7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:D9:78:60:12:DA:B9:3C:FF:11:C7:A7:73:EB:79:F7:C5:61:4B:0E
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/m9l4YBLauTz_Ecenc-t598VhSw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.129.0/24
77.73.132.0-77.73.134.255
Signature Algorithm: sha256WithRSAEncryption
44:6b:7c:07:79:dd:4f:0a:e4:bb:41:7f:9c:fe:79:4d:0a:49:
63:9f:22:65:3e:63:d7:9b:8e:48:ec:f9:db:36:fc:9a:ac:66:
67:f5:a2:5f:85:51:b8:84:b7:6b:45:86:d4:a5:5e:ea:94:e6:
4d:d6:c5:a5:dd:39:32:aa:65:2c:df:c8:30:03:34:43:4e:bf:
ea:48:12:6c:1a:25:fe:5b:82:28:7f:43:83:f9:0b:e2:de:cf:
b1:7b:e2:53:5d:0a:88:57:07:ff:62:b2:36:fc:d9:4d:56:33:
4c:f3:f7:92:f4:7b:50:2f:3a:dd:14:0e:d1:ad:b0:10:11:1a:
50:22:5e:87:d8:9b:f1:36:35:26:ba:53:62:d8:5d:29:84:5a:
cf:fe:b7:e6:a0:1b:30:0e:b0:b3:8c:05:f1:af:cf:57:43:fb:
3a:a1:99:9f:34:cd:a1:98:ad:9f:a6:49:b3:ec:aa:b9:09:b5:
7c:a4:60:2d:e3:2c:44:ba:35:4a:b7:de:09:4c:d0:4f:49:b1:
64:b6:19:36:3d:da:bb:54:53:f7:de:d6:f6:03:07:6b:57:04:
f9:fb:12:71:90:d3:0d:15:95:2b:18:56:80:d5:d9:f4:fa:e5:
3d:f0:26:b7:36:03:5d:8e:c5:bd:cb:78:da:08:74:3a:14:af:
4b:82:fd:d6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIEBkWJUTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZmZhMTNmMWFlMDUzOTE2MjgwZWM2OGVlMWIwOTc2ZjllYmQzZWE4MB4XDTIyMDUx
OTEyMzUyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWJkOTc4NjAxMmRh
YjkzY2ZmMTFjN2E3NzNlYjc5ZjdjNTYxNGIwZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALqz9gtoxkVugmOcEK81at8WseRHz9h4S6RdK4yYXfIC1UDU
YAwRmY0QbLNiU3STWZbmtRQBPnLB/Q3NuiOjbFi/F4pIE0WXVYx2j1sBm17APByZ
jumCLeOZfMDG8zK4NZsAGscx9ZHXFYlM9BRgtMnWMlp0QSEdLVZq9TFMPil0XiBJ
BFhgg0lAibwr5xlOGA6FqZgSIg5IX5kOt+SkFkbi3+rUKFU0CSmyd4/w8SZPLqtX
0vIpINc8lqVbRY5CR40FcAAPAQYLcULvg1reOvIn7ZxMpQtIHxKTYr1VKr4ah0W4
xnTZoneNO1qtL15DOLgW187J5bEJbPWUqIqTx9cCAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBSb2XhgEtq5PP8Rx6dz63n3xWFLDjAfBgNVHSMEGDAWgBSv+hPxrgU5FigO
xo7hsJdvnr0+qDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Jfb1Q4YTRGT1JZb0RzYU80YkNYYjU2OVBxZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTkvYTNjMGE0LTMxOTEtNGU1MS04ZDgwLTQ3OGMyYzhjYjJhMC8x
L205bDRZQkxhdVR6X0VjZW5jLXQ1OThWaFN3NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkv
YTNjMGE0LTMxOTEtNGU1MS04ZDgwLTQ3OGMyYzhjYjJhMC8xL3Jfb1Q4YTRGT1JZ
b0RzYU80YkNYYjU2OVBxZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwGgQCAAEwFAMEAE1JgTAMAwQCTUmEAwQATUmGMA0G
CSqGSIb3DQEBCwUAA4IBAQBEa3wHed1PCuS7QX+c/nlNCkljnyJlPmPXm45I7Pnb
NvyarGZn9aJfhVG4hLdrRYbUpV7qlOZN1sWl3TkyqmUs38gwAzRDTr/qSBJsGiX+
W4Iof0OD+Qvi3s+xe+JTXQqIVwf/YrI2/NlNVjNM8/eS9HtQLzrdFA7RrbAQERpQ
Il6H2JvxNjUmulNi2F0phFrP/rfmoBswDrCzjAXxr89XQ/s6oZmfNM2hmK2fpkmz
7Kq5CbV8pGAt4yxEujVKt94JTNBPSbFkthk2Pdq7VFP33tb2AwdrVwT5+xJxkNMN
FZUrGFaA1dn0+uU98Ca3NgNdjsW9y3jaCHQ6FK9Lgv3W
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:51 2023 by rpki-client on console-fra.rpki-client.org