Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/nUD5v_BU4ZfKq5qh9boXkjwYjAg.roa
File: nUD5v_BU4ZfKq5qh9boXkjwYjAg.roa (raw, json)
Hash identifier: xywYlrXrtGBqXfP4e53KpR8w8F0ByXZocWlNMCQ/zMg=
Subject key identifier: 9D:40:F9:BF:F0:54:E1:97:CA:AB:9A:A1:F5:BA:17:92:3C:18:8C:08
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 06389375
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/nUD5v_BU4ZfKq5qh9boXkjwYjAg.roa
Signing time: Sat 14 May 2022 17:54:40 +0000
ROA not before: Sat 14 May 2022 17:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 77.73.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104371061 (0x6389375)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: May 14 17:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d40f9bff054e197caab9aa1f5ba17923c188c08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:44:b1:7a:90:54:1f:73:3b:01:56:ee:cc:20:
92:1d:3e:bb:b1:9e:b0:29:be:9b:44:45:d7:55:08:
8a:0d:8f:ea:57:54:60:d2:8c:b6:9f:b9:c0:a6:51:
ad:5c:58:ee:0b:5e:ea:be:c3:c4:0b:5d:ff:62:a6:
d2:8f:fe:78:12:df:62:e2:84:7b:be:9c:80:bd:0d:
45:db:d9:c9:ff:37:76:60:65:15:92:38:59:e2:da:
16:3e:e5:1e:f2:41:eb:15:09:00:e8:2c:3a:9a:70:
32:ab:3e:d1:a7:6a:c2:6a:31:ec:bd:52:8d:5a:90:
f6:c4:da:19:11:ff:44:87:67:17:24:be:7b:13:e1:
40:0d:4d:9a:2b:6a:07:da:5c:50:f0:23:32:c7:4f:
8c:e9:7b:b8:cf:1e:97:d3:b4:76:10:06:89:38:2b:
e5:99:12:79:cc:7b:ec:61:20:73:85:61:7b:16:ca:
d2:af:6a:43:43:1c:a9:6f:35:bd:a6:cb:92:0f:ea:
9f:be:cd:51:22:68:4b:3b:e2:40:65:30:94:ac:24:
3c:cd:0b:ca:0b:51:18:48:88:e8:af:a3:71:3a:23:
04:a7:c9:94:82:81:00:cd:02:80:97:97:1f:7f:8d:
06:88:4c:da:8c:5b:8f:af:5a:99:c1:8e:c4:0a:47:
52:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:40:F9:BF:F0:54:E1:97:CA:AB:9A:A1:F5:BA:17:92:3C:18:8C:08
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/nUD5v_BU4ZfKq5qh9boXkjwYjAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.131.0/24
Signature Algorithm: sha256WithRSAEncryption
46:50:7f:08:14:86:b8:f5:a4:69:7a:31:59:e8:de:78:47:d9:
eb:43:93:09:bd:3b:a0:0e:a8:b0:b3:55:bc:a1:01:38:6f:f3:
22:97:44:07:81:dd:15:d3:d7:24:7d:47:96:ad:a7:71:bb:da:
dc:2b:ba:47:dc:d5:ed:e9:14:9c:98:07:b8:1b:0d:e9:94:b1:
d7:98:5b:40:a3:9d:a3:f2:d9:77:25:d8:81:df:49:a8:e2:aa:
31:1c:0a:5d:19:f6:f0:7d:9a:ee:46:95:77:f0:30:f5:6a:2c:
8c:d2:f9:bc:a4:f3:ad:56:c9:59:62:a1:70:c9:eb:41:91:ce:
31:50:29:87:29:e8:e8:ce:e3:88:a2:cc:38:4f:a9:5b:55:f3:
69:31:45:fc:2d:1e:ea:2a:a5:46:4b:47:6b:a7:85:e2:b8:e9:
34:de:69:b4:b9:9e:57:79:68:da:42:53:d7:ac:3c:f5:53:58:
0c:61:de:0e:59:44:39:09:79:b1:88:46:4b:a7:b4:99:b4:f6:
94:07:ae:33:11:2f:9a:8d:84:7c:13:46:1c:6a:e7:74:7a:93:
06:75:b5:7f:98:db:8b:02:69:d8:4f:13:5c:d4:46:19:cb:36:
b5:1b:23:99:5d:6b:02:bd:d7:57:a0:da:8e:9e:f9:28:c1:e8:
74:c6:ef:bf
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBjiTdTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZmZhMTNmMWFlMDUzOTE2MjgwZWM2OGVlMWIwOTc2ZjllYmQzZWE4MB4XDTIyMDUx
NDE3NTQ0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWQ0MGY5YmZmMDU0
ZTE5N2NhYWI5YWExZjViYTE3OTIzYzE4OGMwODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAONEsXqQVB9zOwFW7swgkh0+u7GesCm+m0RF11UIig2P6ldU
YNKMtp+5wKZRrVxY7gte6r7DxAtd/2Km0o/+eBLfYuKEe76cgL0NRdvZyf83dmBl
FZI4WeLaFj7lHvJB6xUJAOgsOppwMqs+0adqwmox7L1SjVqQ9sTaGRH/RIdnFyS+
exPhQA1NmitqB9pcUPAjMsdPjOl7uM8el9O0dhAGiTgr5ZkSecx77GEgc4VhexbK
0q9qQ0McqW81vabLkg/qn77NUSJoSzviQGUwlKwkPM0LygtRGEiI6K+jcTojBKfJ
lIKBAM0CgJeXH3+NBohM2oxbj69amcGOxApHUmkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSdQPm/8FThl8qrmqH1uheSPBiMCDAfBgNVHSMEGDAWgBSv+hPxrgU5FigO
xo7hsJdvnr0+qDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Jfb1Q4YTRGT1JZb0RzYU80YkNYYjU2OVBxZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTkvYTNjMGE0LTMxOTEtNGU1MS04ZDgwLTQ3OGMyYzhjYjJhMC8x
L25VRDV2X0JVNFpmS3E1cWg5Ym9Ya2p3WWpBZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkv
YTNjMGE0LTMxOTEtNGU1MS04ZDgwLTQ3OGMyYzhjYjJhMC8xL3Jfb1Q4YTRGT1JZ
b0RzYU80YkNYYjU2OVBxZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE1JgzANBgkqhkiG9w0BAQsFAAOC
AQEARlB/CBSGuPWkaXoxWejeeEfZ60OTCb07oA6osLNVvKEBOG/zIpdEB4HdFdPX
JH1Hlq2ncbva3Cu6R9zV7ekUnJgHuBsN6ZSx15hbQKOdo/LZdyXYgd9JqOKqMRwK
XRn28H2a7kaVd/Aw9WosjNL5vKTzrVbJWWKhcMnrQZHOMVAphyno6M7jiKLMOE+p
W1XzaTFF/C0e6iqlRktHa6eF4rjpNN5ptLmeV3lo2kJT16w89VNYDGHeDllEOQl5
sYhGS6e0mbT2lAeuMxEvmo2EfBNGHGrndHqTBnW1f5jbiwJp2E8TXNRGGcs2tRsj
mV1rAr3XV6Dajp75KMHodMbvvw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:51 2023 by rpki-client on console-fra.rpki-client.org