Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/54c70d-f57a-4a56-b20c-1399ad37c4e3/1/1-CX3sCbrH78f0bK5OmHfkP8SeJ0.roa
File: 1-CX3sCbrH78f0bK5OmHfkP8SeJ0.roa (raw, json)
Hash identifier: OyFJaNp6XCHNUo6d/w95nHbljbZC9ou2agEkAl17+0s=
Subject key identifier: F8:25:F7:B0:26:EB:1F:BF:1F:D1:B2:B9:3A:61:DF:90:FF:12:78:9D
Certificate issuer: /CN=432ebe0b60bae2ecbf21ef14fc5fdc9ddb9a3f21
Certificate serial: 03595014
Authority key identifier: 43:2E:BE:0B:60:BA:E2:EC:BF:21:EF:14:FC:5F:DC:9D:DB:9A:3F:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qy6-C2C64uy_Ie8U_F_cnduaPyE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/54c70d-f57a-4a56-b20c-1399ad37c4e3/1/1-CX3sCbrH78f0bK5OmHfkP8SeJ0.roa
Signing time: Sat 01 Jan 2022 09:04:28 +0000
ROA not before: Sat 01 Jan 2022 09:04:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47417
IP address blocks: 77.73.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56184852 (0x3595014)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432ebe0b60bae2ecbf21ef14fc5fdc9ddb9a3f21
Validity
Not Before: Jan 1 09:04:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f825f7b026eb1fbf1fd1b2b93a61df90ff12789d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:31:14:e0:f9:f9:6b:1a:42:0d:42:08:7a:53:
59:54:67:18:18:ea:22:d5:b0:47:a4:b0:7c:17:1f:
d2:bc:97:c0:8e:c4:ad:66:4b:af:86:ac:65:85:2c:
88:c8:44:4f:15:33:64:44:68:95:0e:d8:6c:98:d0:
93:e2:18:05:21:4b:97:f2:78:af:e0:8a:fb:b1:f3:
7f:3d:2b:73:2f:6a:d3:a2:6a:32:3c:8d:d7:2d:2a:
a8:22:0f:64:0e:7d:68:a8:a9:02:3b:a2:96:97:37:
0d:9e:3b:12:9a:3a:9a:4e:cd:4c:c8:af:a1:da:02:
0b:1e:08:56:bf:89:6e:09:76:a1:71:8b:73:fe:95:
3a:16:07:78:bc:51:b0:ae:48:36:9f:2c:49:0b:60:
1c:31:6c:04:01:5a:51:33:a5:be:c8:40:9a:6e:c7:
c7:6b:41:32:5c:4f:81:5b:c2:17:61:6a:cc:20:6f:
bc:f2:62:e8:dd:9b:58:2c:e1:3c:b3:c5:c7:1c:fa:
03:ef:87:9d:7f:cf:cd:12:96:fa:ec:e5:55:d2:ab:
92:9d:f3:e1:9a:29:6e:bf:54:3d:d0:3c:ec:94:32:
cc:8d:67:d8:a7:78:74:0d:2d:94:80:d9:c2:e5:b5:
3e:fd:80:59:54:68:71:91:1f:7f:8a:28:65:b3:53:
6f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:25:F7:B0:26:EB:1F:BF:1F:D1:B2:B9:3A:61:DF:90:FF:12:78:9D
X509v3 Authority Key Identifier:
keyid:43:2E:BE:0B:60:BA:E2:EC:BF:21:EF:14:FC:5F:DC:9D:DB:9A:3F:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qy6-C2C64uy_Ie8U_F_cnduaPyE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/54c70d-f57a-4a56-b20c-1399ad37c4e3/1/1-CX3sCbrH78f0bK5OmHfkP8SeJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/54c70d-f57a-4a56-b20c-1399ad37c4e3/1/Qy6-C2C64uy_Ie8U_F_cnduaPyE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.208.0/21
Signature Algorithm: sha256WithRSAEncryption
8c:3a:27:e4:14:04:91:35:7c:58:63:e3:96:94:bf:bb:b5:e1:
4c:b7:10:f3:cb:a1:4b:3c:9b:8b:e2:22:95:b4:dc:fc:ad:ce:
04:3b:71:f1:10:51:c0:ad:b8:79:c8:82:33:fe:2c:f6:db:ff:
b3:7c:31:60:c2:b7:5b:85:f0:ab:68:e3:ed:5d:9b:c5:cd:c8:
ed:8d:c8:45:e2:34:5c:85:fa:c1:0f:ed:09:81:69:93:41:9f:
73:db:61:f8:98:de:1b:fb:16:b5:dc:34:88:09:e9:b4:1b:b7:
37:17:15:8a:cc:74:ea:d3:a8:57:14:b5:72:14:d7:ac:26:4f:
ff:62:ea:34:2a:f6:70:69:b4:f5:0d:0c:43:09:80:0a:46:f7:
8a:1d:25:11:be:b2:9b:94:30:bf:3d:22:26:14:fa:08:23:72:
0f:d7:05:e4:6e:d4:95:c2:bc:05:5b:b3:7d:af:14:ad:b1:80:
4c:af:db:bf:34:28:e3:46:48:ae:3b:95:8c:e0:f0:14:7c:60:
a9:c1:f9:60:be:27:b6:1a:ad:47:6c:d5:38:ea:02:26:d8:0d:
d4:6d:fd:78:2e:d9:3a:e1:2c:28:08:8d:86:32:9d:18:b5:84:
b8:29:02:10:bf:2d:dd:be:12:a6:e6:b7:3f:18:5b:0b:49:8a:
f3:43:cc:72
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEA1lQFDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MzJlYmUwYjYwYmFlMmVjYmYyMWVmMTRmYzVmZGM5ZGRiOWEzZjIxMB4XDTIyMDEw
MTA5MDQyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjgyNWY3YjAyNmVi
MWZiZjFmZDFiMmI5M2E2MWRmOTBmZjEyNzg5ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI8xFOD5+WsaQg1CCHpTWVRnGBjqItWwR6SwfBcf0ryXwI7E
rWZLr4asZYUsiMhETxUzZERolQ7YbJjQk+IYBSFLl/J4r+CK+7Hzfz0rcy9q06Jq
MjyN1y0qqCIPZA59aKipAjuilpc3DZ47Epo6mk7NTMivodoCCx4IVr+Jbgl2oXGL
c/6VOhYHeLxRsK5INp8sSQtgHDFsBAFaUTOlvshAmm7Hx2tBMlxPgVvCF2FqzCBv
vPJi6N2bWCzhPLPFxxz6A++HnX/PzRKW+uzlVdKrkp3z4Zopbr9UPdA87JQyzI1n
2Kd4dA0tlIDZwuW1Pv2AWVRocZEff4ooZbNTbykCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT4JfewJusfvx/Rsrk6Yd+Q/xJ4nTAfBgNVHSMEGDAWgBRDLr4LYLri7L8h
7xT8X9yd25o/ITAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1F5Ni1DMkM2NHV5X0llOFVfRl9jbmR1YVB5RS5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmQvNTRjNzBkLWY1N2EtNGE1Ni1iMjBjLTEzOTlhZDM3YzRlMy8x
LzEtQ1gzc0Nickg3OGYwYks1T21IZmtQOFNlSjAucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Jk
LzU0YzcwZC1mNTdhLTRhNTYtYjIwYy0xMzk5YWQzN2M0ZTMvMS9ReTYtQzJDNjR1
eV9JZThVX0ZfY25kdWFQeUUuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANNSdAwDQYJKoZIhvcNAQELBQAD
ggEBAIw6J+QUBJE1fFhj45aUv7u14Uy3EPPLoUs8m4viIpW03PytzgQ7cfEQUcCt
uHnIgjP+LPbb/7N8MWDCt1uF8Kto4+1dm8XNyO2NyEXiNFyF+sEP7QmBaZNBn3Pb
YfiY3hv7FrXcNIgJ6bQbtzcXFYrMdOrTqFcUtXIU16wmT/9i6jQq9nBptPUNDEMJ
gApG94odJRG+spuUML89IiYU+ggjcg/XBeRu1JXCvAVbs32vFK2xgEyv2780KONG
SK47lYzg8BR8YKnB+WC+J7YarUds1TjqAibYDdRt/Xgu2TrhLCgIjYYynRi1hLgp
AhC/Ld2+Eqbmtz8YWwtJivNDzHI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:23 2024 by rpki-client on console-ams.rpki-client.org