Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/3kDdFUGzAZ9dlYysGTF1xh-onSY.roa
File: 3kDdFUGzAZ9dlYysGTF1xh-onSY.roa (raw, json)
Hash identifier: OafhxTPn0YnIbp6lzk47kO+otvQH2672hww5JNc2Ed8=
Subject key identifier: DE:40:DD:15:41:B3:01:9F:5D:95:8C:AC:19:31:75:C6:1F:A8:9D:26
Certificate issuer: /CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Certificate serial: 02370B2E
Authority key identifier: 03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/3kDdFUGzAZ9dlYysGTF1xh-onSY.roa
Signing time: Sat 01 Jan 2022 11:59:48 +0000
ROA not before: Sat 01 Jan 2022 11:59:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16206
IP address blocks: 185.77.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37161774 (0x2370b2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Validity
Not Before: Jan 1 11:59:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de40dd1541b3019f5d958cac193175c61fa89d26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:dc:a7:85:33:c1:1f:b6:0f:5a:36:d6:85:a3:
2c:4c:fb:bb:1d:87:2c:fe:36:ae:15:da:6f:ab:cd:
27:eb:b2:bf:11:f1:8f:ce:b5:08:50:7a:8a:b6:d0:
c3:e9:2b:92:f6:ea:67:5d:a1:95:e9:81:88:02:f5:
44:9b:44:e3:5d:e1:f8:4a:d7:b0:fd:f8:fe:9d:7f:
da:d4:57:35:b0:a2:39:b6:2c:84:bf:f5:03:09:6d:
19:73:18:b8:47:cf:42:3f:68:36:f2:47:f5:8d:ee:
d9:d2:d4:bc:bb:b9:2a:58:9f:24:2d:0a:0f:2a:92:
9f:49:82:53:7a:ed:34:e2:30:52:e0:69:65:3a:d7:
3c:43:ae:80:76:74:61:8c:56:3d:31:00:5e:95:b7:
44:d9:a3:1b:e1:3c:36:ff:94:f5:7b:88:f1:7a:e2:
3f:19:67:08:4c:92:da:86:f9:a8:be:88:49:2c:5f:
61:e2:65:c2:78:0d:60:77:75:29:43:19:50:26:9f:
27:11:43:41:4a:27:7b:76:8a:ba:f5:da:fd:e1:6e:
d1:42:1e:53:06:38:b2:a7:02:f9:8e:96:86:a1:82:
d3:57:2a:73:38:d9:5b:7a:ba:be:86:45:69:2a:da:
d4:ea:9c:0a:7e:7b:86:66:d8:0a:0c:0f:c1:73:a0:
31:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:40:DD:15:41:B3:01:9F:5D:95:8C:AC:19:31:75:C6:1F:A8:9D:26
X509v3 Authority Key Identifier:
keyid:03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/3kDdFUGzAZ9dlYysGTF1xh-onSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.159.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:71:f8:9b:a7:46:33:2b:43:9e:62:dd:6e:b1:61:5f:b4:4d:
89:e9:0f:0f:d5:03:b5:02:4a:ba:0e:2b:b4:19:be:4a:4c:a3:
3a:10:db:15:35:b2:33:09:b3:06:db:7e:9b:5d:14:ac:8d:49:
8c:d5:b3:41:f2:80:db:d5:74:b6:91:c9:f8:22:d9:04:59:b2:
05:4e:d1:8c:f1:1d:a4:fc:51:93:75:c0:b6:a9:f5:fc:e6:f3:
d6:86:09:f2:a7:31:4f:a0:a5:7e:9d:30:9e:30:02:23:cb:f0:
75:56:1a:be:4f:86:63:06:22:87:95:92:ef:0c:6f:78:2f:36:
b5:71:60:76:07:82:3a:f0:2d:91:cc:04:4d:2a:95:cd:d1:5f:
95:d1:49:55:1b:f3:4a:f5:d1:64:4d:01:38:1d:35:03:75:e8:
ea:bf:dc:02:f0:5b:7c:f5:99:14:7f:8d:a9:dd:80:9a:db:b9:
59:66:c7:4d:b8:13:38:c6:e3:9b:1d:7f:42:e6:78:e2:04:ed:
c0:50:3c:0f:8e:85:ad:c6:5e:ca:af:fe:a2:06:fd:6c:47:29:
03:e6:8e:c8:22:22:19:fc:2d:09:b6:df:93:0f:4a:74:57:60:
b7:4c:36:db:76:84:6e:5f:28:a8:30:fa:52:49:ff:5c:34:3f:
fc:29:6c:70
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAjcLLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
Mzc4NjJiNDYwOGM3OWY0NTAyOTVlYzVjODBjN2M3YWQ2ZGZlMmEyMB4XDTIyMDEw
MTExNTk0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGU0MGRkMTU0MWIz
MDE5ZjVkOTU4Y2FjMTkzMTc1YzYxZmE4OWQyNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMzcp4UzwR+2D1o21oWjLEz7ux2HLP42rhXab6vNJ+uyvxHx
j861CFB6irbQw+krkvbqZ12hlemBiAL1RJtE413h+ErXsP34/p1/2tRXNbCiObYs
hL/1AwltGXMYuEfPQj9oNvJH9Y3u2dLUvLu5KlifJC0KDyqSn0mCU3rtNOIwUuBp
ZTrXPEOugHZ0YYxWPTEAXpW3RNmjG+E8Nv+U9XuI8XriPxlnCEyS2ob5qL6ISSxf
YeJlwngNYHd1KUMZUCafJxFDQUone3aKuvXa/eFu0UIeUwY4sqcC+Y6WhqGC01cq
czjZW3q6voZFaSra1OqcCn57hmbYCgwPwXOgMYkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTeQN0VQbMBn12VjKwZMXXGH6idJjAfBgNVHSMEGDAWgBQDeGK0YIx59FAp
XsXIDHx61t/iojAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0EzaGl0R0NNZWZSUUtWN0Z5QXg4ZXRiZjRxSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjkvMWFmZTUzLWYxYjgtNDMxNS1hYjFjLWY0NzRmN2JkMzUzMS8x
LzNrRGRGVUd6QVo5ZGxZeXNHVEYxeGgtb25TWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkv
MWFmZTUzLWYxYjgtNDMxNS1hYjFjLWY0NzRmN2JkMzUzMS8xL0EzaGl0R0NNZWZS
UUtWN0Z5QXg4ZXRiZjRxSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlNnzANBgkqhkiG9w0BAQsFAAOC
AQEAm3H4m6dGMytDnmLdbrFhX7RNiekPD9UDtQJKug4rtBm+SkyjOhDbFTWyMwmz
Btt+m10UrI1JjNWzQfKA29V0tpHJ+CLZBFmyBU7RjPEdpPxRk3XAtqn1/Obz1oYJ
8qcxT6Clfp0wnjACI8vwdVYavk+GYwYih5WS7wxveC82tXFgdgeCOvAtkcwETSqV
zdFfldFJVRvzSvXRZE0BOB01A3Xo6r/cAvBbfPWZFH+Nqd2Amtu5WWbHTbgTOMbj
mx1/QuZ44gTtwFA8D46FrcZeyq/+ogb9bEcpA+aOyCIiGfwtCbbfkw9KdFdgt0w2
23aEbl8oqDD6Ukn/XDQ//ClscA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:47 2023 by rpki-client on console-fra.rpki-client.org