Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/2b7f70-fad1-403c-b08e-2c3ea4b86e20/1/ZI-1ppO0cz5l2ikuy2B2OWY5PrI.roa
File: ZI-1ppO0cz5l2ikuy2B2OWY5PrI.roa (raw, json)
Hash identifier: 6Hy0Lgt4jxjQQ4XTu4WswdZxWvqM5mwu+/FhU6LKX7I=
Subject key identifier: 64:8F:B5:A6:93:B4:73:3E:65:DA:29:2E:CB:60:76:39:66:39:3E:B2
Certificate issuer: /CN=1b1504baf82ef8eb0ae508af40b638e3660a5488
Certificate serial: 0AB4B6
Authority key identifier: 1B:15:04:BA:F8:2E:F8:EB:0A:E5:08:AF:40:B6:38:E3:66:0A:54:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GxUEuvgu-OsK5QivQLY442YKVIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/2b7f70-fad1-403c-b08e-2c3ea4b86e20/1/ZI-1ppO0cz5l2ikuy2B2OWY5PrI.roa
Signing time: Sat 01 Jan 2022 00:54:48 +0000
ROA not before: Sat 01 Jan 2022 00:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210459
IP address blocks: 77.81.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 701622 (0xab4b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b1504baf82ef8eb0ae508af40b638e3660a5488
Validity
Not Before: Jan 1 00:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=648fb5a693b4733e65da292ecb60763966393eb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:45:17:07:34:dc:14:67:0d:09:64:53:b6:50:
58:8a:5a:a6:3d:75:ff:24:da:da:bf:ec:d5:c7:49:
8f:03:58:0e:ca:b7:4c:83:c3:3b:57:44:0c:8a:cf:
87:4b:f1:9e:b0:9a:a2:ee:9b:70:eb:2c:73:97:0a:
ba:2c:00:3b:c5:f2:c8:74:a1:1e:74:b1:a2:5a:ec:
d1:d8:f9:f3:a5:75:75:f7:f2:b8:9c:fb:9a:ff:aa:
92:d4:d3:0c:55:ed:8b:58:83:7d:1f:74:0c:26:15:
46:ef:ce:11:28:a8:76:62:2d:a8:ea:ca:0d:9a:b6:
69:12:18:82:0d:14:ae:a0:ab:c0:80:8d:c2:3e:21:
ce:10:55:47:26:9b:db:4a:82:60:e0:aa:9d:3b:71:
01:c2:b3:d3:b5:b3:41:b5:0f:f0:6c:71:2f:39:94:
87:5d:49:c9:3c:4d:a7:07:f9:f2:6a:5d:24:4e:76:
0e:80:7f:dd:e1:d5:d9:c8:e7:ff:00:56:6e:64:a7:
a8:d6:89:d9:1f:ba:49:e7:67:66:72:0a:07:69:6b:
42:f4:bd:d6:1f:a7:d5:83:cd:06:79:0f:08:b1:d8:
f0:85:22:b6:29:a1:0f:23:bf:15:a1:f6:d9:9c:6d:
98:ab:6b:1c:5d:34:47:8b:b8:7d:2a:6b:f9:3d:a4:
93:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:8F:B5:A6:93:B4:73:3E:65:DA:29:2E:CB:60:76:39:66:39:3E:B2
X509v3 Authority Key Identifier:
keyid:1B:15:04:BA:F8:2E:F8:EB:0A:E5:08:AF:40:B6:38:E3:66:0A:54:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GxUEuvgu-OsK5QivQLY442YKVIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2b7f70-fad1-403c-b08e-2c3ea4b86e20/1/ZI-1ppO0cz5l2ikuy2B2OWY5PrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/2b7f70-fad1-403c-b08e-2c3ea4b86e20/1/GxUEuvgu-OsK5QivQLY442YKVIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.177.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:cd:59:8d:c0:0a:1c:28:44:d4:96:6a:73:8c:06:9f:f2:7d:
42:a7:1f:cc:cd:34:05:81:82:4b:dd:f6:f0:1c:7b:07:3a:c8:
e7:50:93:52:00:8a:cf:ce:cc:aa:4e:dd:10:28:c8:e4:8f:b7:
98:bb:81:5c:3b:e2:89:dc:89:cc:00:70:ef:97:82:e4:55:34:
d0:46:a5:55:fb:d5:28:87:a4:96:04:2f:23:d1:2b:f5:fc:f2:
2e:74:0a:68:c4:6f:df:77:30:3d:c7:7f:87:77:2c:a9:a4:6b:
c8:31:68:4f:55:f9:50:2f:a6:12:59:15:30:84:8f:e2:9f:31:
e7:65:6c:0d:66:71:93:2b:76:ed:3c:9e:46:b3:6f:f1:05:ff:
b0:2f:93:3a:34:bf:5f:7c:23:4b:95:79:51:33:f8:12:13:d1:
91:15:90:a1:79:29:f2:19:42:5c:51:a7:69:99:43:06:81:d1:
81:d1:f3:da:24:27:05:10:2f:3d:1a:e9:4c:86:6b:ee:bd:ee:
67:fc:86:44:c3:f1:39:6e:e2:c6:a1:2f:a9:b2:aa:41:bb:3c:
6f:dd:c0:eb:79:67:e5:1b:5b:1b:54:36:33:ed:53:49:9b:95:
63:72:48:d5:33:69:0a:4d:37:b1:92:0c:50:92:e0:66:5e:cc:
0e:6e:4a:d4
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDCrS2MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDFi
MTUwNGJhZjgyZWY4ZWIwYWU1MDhhZjQwYjYzOGUzNjYwYTU0ODgwHhcNMjIwMTAx
MDA1NDQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2NDhmYjVhNjkzYjQ3
MzNlNjVkYTI5MmVjYjYwNzYzOTY2MzkzZWIyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAsUUXBzTcFGcNCWRTtlBYilqmPXX/JNrav+zVx0mPA1gOyrdM
g8M7V0QMis+HS/GesJqi7ptw6yxzlwq6LAA7xfLIdKEedLGiWuzR2PnzpXV19/K4
nPua/6qS1NMMVe2LWIN9H3QMJhVG784RKKh2Yi2o6soNmrZpEhiCDRSuoKvAgI3C
PiHOEFVHJpvbSoJg4KqdO3EBwrPTtbNBtQ/wbHEvOZSHXUnJPE2nB/nyal0kTnYO
gH/d4dXZyOf/AFZuZKeo1onZH7pJ52dmcgoHaWtC9L3WH6fVg80GeQ8IsdjwhSK2
KaEPI78VofbZnG2Yq2scXTRHi7h9Kmv5PaSTYQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFGSPtaaTtHM+ZdopLstgdjlmOT6yMB8GA1UdIwQYMBaAFBsVBLr4LvjrCuUI
r0C2OONmClSIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
R3hVRXV2Z3UtT3NLNVFpdlFMWTQ0MllLVklnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC85ZC8yYjdmNzAtZmFkMS00MDNjLWIwOGUtMmMzZWE0Yjg2ZTIwLzEv
WkktMXBwTzBjejVsMmlrdXkyQjJPV1k1UHJJLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC8y
YjdmNzAtZmFkMS00MDNjLWIwOGUtMmMzZWE0Yjg2ZTIwLzEvR3hVRXV2Z3UtT3NL
NVFpdlFMWTQ0MllLVklnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVGxMA0GCSqGSIb3DQEBCwUAA4IB
AQCgzVmNwAocKETUlmpzjAaf8n1Cpx/MzTQFgYJL3fbwHHsHOsjnUJNSAIrPzsyq
Tt0QKMjkj7eYu4FcO+KJ3InMAHDvl4LkVTTQRqVV+9Uoh6SWBC8j0Sv1/PIudApo
xG/fdzA9x3+HdyyppGvIMWhPVflQL6YSWRUwhI/inzHnZWwNZnGTK3btPJ5Gs2/x
Bf+wL5M6NL9ffCNLlXlRM/gSE9GRFZCheSnyGUJcUadpmUMGgdGB0fPaJCcFEC89
GulMhmvuve5n/IZEw/E5buLGoS+psqpBuzxv3cDreWflG1sbVDYz7VNJm5VjckjV
M2kKTTexkgxQkuBmXswObkrU
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:02 2023 by rpki-client on console-fra.rpki-client.org