Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/2scHV9slSNV01SMQKU7yAsTx5_A.roa
File: 2scHV9slSNV01SMQKU7yAsTx5_A.roa (raw, json)
Hash identifier: /3tC5zwZplXTiwoYYxsmdCENEb7PVovzM3+CSwuZanw=
Subject key identifier: DA:C7:07:57:DB:25:48:D5:74:D5:23:10:29:4E:F2:02:C4:F1:E7:F0
Certificate issuer: /CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Certificate serial: 2FBEE816
Authority key identifier: C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/2scHV9slSNV01SMQKU7yAsTx5_A.roa
Signing time: Sat 01 Jan 2022 10:04:53 +0000
ROA not before: Sat 01 Jan 2022 10:04:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57626
IP address blocks: 77.87.56.0/21 maxlen: 24
91.123.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 801040406 (0x2fbee816)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Validity
Not Before: Jan 1 10:04:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dac70757db2548d574d52310294ef202c4f1e7f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:18:7c:a6:7e:af:fe:3a:1c:90:10:09:24:9c:
d4:cc:2b:3b:a2:d8:a8:db:ef:f9:76:15:8d:98:be:
38:6e:bc:e7:f8:4c:6f:0d:1e:95:5b:e2:25:05:ba:
a6:2f:1a:92:6c:bc:32:94:d9:39:7e:d0:34:7f:51:
70:71:f6:cf:36:97:fc:3a:f2:f1:80:93:f8:1a:22:
81:37:d5:f9:57:51:96:b9:ca:8d:40:ac:93:84:ef:
2b:54:8f:93:d0:71:a2:14:2d:5b:5e:ec:de:04:1d:
c2:0f:95:63:22:c5:d5:d3:e3:38:79:03:35:5f:48:
d8:d7:ed:d3:8d:0c:d4:49:12:87:76:21:0f:82:dd:
03:26:a6:1e:e9:be:07:f1:bb:cf:1d:83:fa:30:25:
bf:3d:f1:21:b8:f7:56:28:aa:af:72:dd:73:63:d7:
18:9c:17:74:26:11:d3:4c:34:46:ba:52:6e:0c:dc:
f9:55:16:0f:59:88:20:ab:59:38:5e:92:84:72:b7:
c8:1f:4d:13:8e:1b:de:b5:8b:36:c8:b3:66:65:a6:
9f:83:86:7b:be:8f:55:c4:f9:c2:7e:bd:5c:42:b4:
ef:e9:43:56:ad:91:0d:bd:c5:e9:15:b2:5d:bb:b2:
6e:8d:b7:0f:ab:99:d8:93:6e:98:43:da:96:6e:aa:
fc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C7:07:57:DB:25:48:D5:74:D5:23:10:29:4E:F2:02:C4:F1:E7:F0
X509v3 Authority Key Identifier:
keyid:C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/2scHV9slSNV01SMQKU7yAsTx5_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/w5gGDxvyLwmZywcbG0JpbbxD4Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.56.0/21
91.123.240.0/20
Signature Algorithm: sha256WithRSAEncryption
6c:fe:ad:c6:47:23:42:7e:f3:9b:9b:82:ac:6b:ab:fe:13:7b:
50:8d:c9:21:99:ce:32:a6:34:5d:48:aa:67:48:f7:43:48:f5:
d6:1e:3c:44:70:09:75:ca:6f:da:9c:77:aa:0a:f9:62:e7:7f:
d4:1f:f2:12:34:70:92:97:9d:dc:19:1f:30:5b:7b:7a:aa:b5:
21:e9:cb:b5:ff:22:8c:09:d4:55:67:45:bd:fd:34:ce:6c:68:
b0:7e:61:5e:39:7b:8f:6a:1e:48:b0:e7:92:77:42:e8:df:6c:
f8:e0:b1:da:a9:6e:33:8b:90:71:ca:9d:fa:cb:e9:ef:4f:27:
96:5d:20:ad:63:a0:67:56:f6:8a:a5:69:e1:a7:ee:9d:15:bc:
22:be:c3:46:1c:e0:10:fc:ce:44:6c:cf:c0:ba:7e:2b:b9:16:
58:b3:0d:a3:42:fd:21:3b:22:ca:8c:9a:40:d3:9b:42:96:92:
8e:95:e0:4e:3c:cd:85:e0:32:70:ab:af:f6:00:0a:5d:40:19:
b4:6a:34:86:3b:19:0b:bc:8e:5d:eb:57:92:10:30:06:a8:53:
40:e4:46:d1:48:19:60:8f:65:55:46:3d:80:e4:21:48:f0:c4:
ef:ee:0a:c6:e7:ac:8d:37:d4:a4:35:07:e2:49:94:13:2b:ff:
1b:bd:9c:2d
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEL77oFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Mzk4MDYwZjFiZjIyZjA5OTljYjA3MWIxYjQyNjk2ZGJjNDNlMTBjMB4XDTIyMDEw
MTEwMDQ1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGFjNzA3NTdkYjI1
NDhkNTc0ZDUyMzEwMjk0ZWYyMDJjNGYxZTdmMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANoYfKZ+r/46HJAQCSSc1MwrO6LYqNvv+XYVjZi+OG685/hM
bw0elVviJQW6pi8akmy8MpTZOX7QNH9RcHH2zzaX/Dry8YCT+BoigTfV+VdRlrnK
jUCsk4TvK1SPk9BxohQtW17s3gQdwg+VYyLF1dPjOHkDNV9I2Nft040M1EkSh3Yh
D4LdAyamHum+B/G7zx2D+jAlvz3xIbj3Viiqr3Ldc2PXGJwXdCYR00w0RrpSbgzc
+VUWD1mIIKtZOF6ShHK3yB9NE44b3rWLNsizZmWmn4OGe76PVcT5wn69XEK07+lD
Vq2RDb3F6RWyXbuybo23D6uZ2JNumEPalm6q/PECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTaxwdX2yVI1XTVIxApTvICxPHn8DAfBgNVHSMEGDAWgBTDmAYPG/IvCZnL
BxsbQmltvEPhDDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3c1Z0dEeHZ5THdtWnl3Y2JHMEpwYmJ4RDRRdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvM2JmYzMxLWRjMzItNDU0MS04NDYwLWM5MjdiOGMyYzdjNC8x
LzJzY0hWOXNsU05WMDFTTVFLVTd5QXNUeDVfQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
M2JmYzMxLWRjMzItNDU0MS04NDYwLWM5MjdiOGMyYzdjNC8xL3c1Z0dEeHZ5THdt
Wnl3Y2JHMEpwYmJ4RDRRdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEA01XOAMEBFt78DANBgkqhkiG9w0B
AQsFAAOCAQEAbP6txkcjQn7zm5uCrGur/hN7UI3JIZnOMqY0XUiqZ0j3Q0j11h48
RHAJdcpv2px3qgr5Yud/1B/yEjRwkped3BkfMFt7eqq1IenLtf8ijAnUVWdFvf00
zmxosH5hXjl7j2oeSLDnkndC6N9s+OCx2qluM4uQccqd+svp708nll0grWOgZ1b2
iqVp4afunRW8Ir7DRhzgEPzORGzPwLp+K7kWWLMNo0L9ITsiyoyaQNObQpaSjpXg
TjzNheAycKuv9gAKXUAZtGo0hjsZC7yOXetXkhAwBqhTQORG0UgZYI9lVUY9gOQh
SPDE7+4KxuesjTfUpDUH4kmUEyv/G72cLQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:02 2024 by rpki-client on console-fra.rpki-client.org