Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/7UZRLCMM8EjViitaEJFMJJbmqLk.roa
File: 7UZRLCMM8EjViitaEJFMJJbmqLk.roa (raw, json)
Hash identifier: 6yG26NzUUNbSmXeBjCmC+P6n0MPEY5dOLDQcZvVzMos=
Subject key identifier: ED:46:51:2C:23:0C:F0:48:D5:8A:2B:5A:10:91:4C:24:96:E6:A8:B9
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 179D81F6
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/7UZRLCMM8EjViitaEJFMJJbmqLk.roa
Signing time: Sat 01 Jan 2022 13:03:27 +0000
ROA not before: Sat 01 Jan 2022 13:03:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205948
IP address blocks: 5.1.77.0/24 maxlen: 32
5.1.78.0/24 maxlen: 32
5.1.73.0/24 maxlen: 32
5.1.80.0/24 maxlen: 24
2a07:6fc0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396198390 (0x179d81f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 1 13:03:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed46512c230cf048d58a2b5a10914c2496e6a8b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:cd:aa:59:34:f9:ad:82:f4:9b:bd:ed:4f:2f:
23:9e:5c:3f:53:e3:e6:b4:8b:6a:6e:ba:c8:23:55:
e1:ae:6a:ec:17:18:5c:c8:96:89:62:aa:e3:90:de:
0e:01:da:b4:62:7c:5e:a4:6b:fe:9a:38:c1:cc:73:
38:f6:4c:7c:06:89:99:f0:52:c7:e5:a3:72:2f:6c:
d5:a0:0d:90:8c:00:47:89:f9:2f:7d:09:23:cd:0c:
fe:bd:4b:a9:76:5f:9a:f0:12:63:f7:68:af:60:36:
ee:2d:70:6d:98:38:b9:3d:50:67:13:90:82:95:4b:
e3:6d:ca:15:8b:89:5d:6a:4b:d5:c6:21:25:b9:f9:
2c:e8:e7:e8:68:c1:74:0b:fe:03:4a:a6:cb:d2:03:
fb:61:ef:4f:82:1d:bd:11:3b:6f:f8:79:cd:99:7f:
5b:d8:0c:29:e4:fa:4e:ea:fb:64:29:f4:af:1a:26:
fb:cf:7a:51:bc:00:4a:8f:bd:d6:d5:97:48:4e:74:
58:75:00:69:82:fe:7d:72:6a:d3:33:5a:36:f8:9b:
56:6e:11:b9:d0:5b:fd:74:b7:82:bc:8b:c8:1e:e1:
34:dc:11:e3:55:31:0e:9a:ca:d2:fc:86:da:9e:a2:
b3:2f:fa:42:ba:82:43:f1:c2:f7:6e:58:0d:dc:ce:
15:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:46:51:2C:23:0C:F0:48:D5:8A:2B:5A:10:91:4C:24:96:E6:A8:B9
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/7UZRLCMM8EjViitaEJFMJJbmqLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.73.0/24
5.1.77.0-5.1.78.255
5.1.80.0/24
IPv6:
2a07:6fc0::/48
Signature Algorithm: sha256WithRSAEncryption
af:94:ad:65:fc:56:90:ac:ed:7a:31:4b:bc:2b:d4:74:43:4f:
66:72:1e:ab:df:57:f2:b0:07:a8:88:23:22:5a:90:7d:f3:c2:
f8:60:66:2c:ad:3b:5e:f8:8e:d7:75:77:d6:8e:0b:d7:9f:e6:
ef:83:4b:b2:0c:ac:56:dd:ee:cc:a8:bc:3f:14:61:07:35:50:
65:63:29:66:78:37:74:c6:fe:4e:60:bb:00:e1:e3:3c:5e:f2:
1c:7a:64:5b:a6:88:20:1c:67:4e:3f:6a:fd:6a:82:81:dd:dd:
9c:50:48:0e:2b:91:5f:18:03:fa:85:e4:a0:fb:43:a2:ca:01:
4d:8f:65:8e:de:7e:22:72:99:8e:20:a1:83:66:f7:c2:21:4a:
14:48:f5:be:0c:dc:9f:de:69:ae:6f:ef:b4:b7:6c:da:62:2a:
a2:65:f5:d7:c0:02:bd:14:4f:86:d6:ee:b3:c9:3c:c4:11:2f:
f5:59:56:74:93:3b:a2:bd:c5:39:3d:91:b9:8d:55:ba:e5:03:
04:fb:73:00:d6:01:90:f0:de:a3:65:d4:76:c6:2b:06:0d:8d:
7e:e3:c0:b5:63:f4:17:3f:25:a2:6e:21:03:8d:af:d2:58:7c:
ff:1e:8d:a8:98:aa:16:7d:5b:e4:fc:8d:d0:e5:79:db:33:46:
fb:be:63:dd
-----BEGIN CERTIFICATE-----
MIIFFDCCA/ygAwIBAgIEF52B9jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NDI1M2M0ZjIzM2NlOTg0NzY5OWFlNjhlY2JmNWQ3NTE0YjBmYWRiMB4XDTIyMDEw
MTEzMDMyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWQ0NjUxMmMyMzBj
ZjA0OGQ1OGEyYjVhMTA5MTRjMjQ5NmU2YThiOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPjNqlk0+a2C9Ju97U8vI55cP1Pj5rSLam66yCNV4a5q7BcY
XMiWiWKq45DeDgHatGJ8XqRr/po4wcxzOPZMfAaJmfBSx+Wjci9s1aANkIwAR4n5
L30JI80M/r1LqXZfmvASY/dor2A27i1wbZg4uT1QZxOQgpVL423KFYuJXWpL1cYh
Jbn5LOjn6GjBdAv+A0qmy9ID+2HvT4IdvRE7b/h5zZl/W9gMKeT6Tur7ZCn0rxom
+896UbwASo+91tWXSE50WHUAaYL+fXJq0zNaNvibVm4RudBb/XS3gryLyB7hNNwR
41UxDprK0vyG2p6isy/6QrqCQ/HC925YDdzOFSMCAwEAAaOCAi4wggIqMB0GA1Ud
DgQWBBTtRlEsIwzwSNWKK1oQkUwkluaouTAfBgNVHSMEGDAWgBS0JTxPIzzphHaZ
rmjsv111FLD62zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RDVThUeU04NllSMm1hNW83TDlkZFJTdy10cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDFkNmUxLTVjYWQtNDBkYi05NzczLTU4YjM4ZjVhYzgwYi8x
LzdVWlJMQ01NOEVqVmlpdGFFSkZNSkpibXFMay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDFkNmUxLTVjYWQtNDBkYi05NzczLTU4YjM4ZjVhYzgwYi8xL3RDVThUeU04NllS
Mm1hNW83TDlkZFJTdy10cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBE
BggrBgEFBQcBBwEB/wQ1MDMwIAQCAAEwGgMEAAUBSTAMAwQABQFNAwQABQFOAwQA
BQFQMA8EAgACMAkDBwAqB2/AAAAwDQYJKoZIhvcNAQELBQADggEBAK+UrWX8VpCs
7XoxS7wr1HRDT2ZyHqvfV/KwB6iIIyJakH3zwvhgZiytO174jtd1d9aOC9ef5u+D
S7IMrFbd7syovD8UYQc1UGVjKWZ4N3TG/k5guwDh4zxe8hx6ZFumiCAcZ04/av1q
goHd3ZxQSA4rkV8YA/qF5KD7Q6LKAU2PZY7efiJymY4goYNm98IhShRI9b4M3J/e
aa5v77S3bNpiKqJl9dfAAr0UT4bW7rPJPMQRL/VZVnSTO6K9xTk9kbmNVbrlAwT7
cwDWAZDw3qNl1HbGKwYNjX7jwLVj9Bc/JaJuIQONr9JYfP8ejaiYqhZ9W+T8jdDl
edszRvu+Y90=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:44 2024 by rpki-client on console-fra.rpki-client.org