Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/aPr5OOFB-g2eKutPB1Wl73VbM2k.roa
File: aPr5OOFB-g2eKutPB1Wl73VbM2k.roa (raw, json)
Hash identifier: 7q0GGId3QaKgEOvP00AIzrcBTcfoxiKOwEc0G6zvLOA=
Subject key identifier: 68:FA:F9:38:E1:41:FA:0D:9E:2A:EB:4F:07:55:A5:EF:75:5B:33:69
Certificate issuer: /CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Certificate serial: 0781288A
Authority key identifier: BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/aPr5OOFB-g2eKutPB1Wl73VbM2k.roa
Signing time: Sat 01 Jan 2022 11:59:46 +0000
ROA not before: Sat 01 Jan 2022 11:59:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42751
IP address blocks: 77.222.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125905034 (0x781288a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Validity
Not Before: Jan 1 11:59:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68faf938e141fa0d9e2aeb4f0755a5ef755b3369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:14:77:46:f1:99:ce:96:97:bb:79:ee:c9:cf:
ca:63:d8:f4:82:7c:2b:58:96:ba:d9:e1:79:f8:e2:
10:ea:0d:02:e1:4c:4c:93:83:7b:c1:aa:96:df:c7:
c6:89:c0:0d:f7:8f:d4:ae:6f:06:8b:59:a6:64:b2:
8f:91:08:b4:82:e9:2a:95:96:c6:d9:84:25:0c:e4:
a2:45:85:ae:2a:39:dd:45:cd:e3:55:b9:b2:97:69:
19:dd:fd:77:d0:0f:b2:73:a4:41:d0:4f:2f:92:24:
89:54:dd:7d:47:7c:ed:67:c0:1f:fd:1e:b5:8d:e7:
3f:8b:18:cf:6f:1a:ff:80:a6:b0:f3:3c:dd:99:01:
b4:63:99:4b:8f:3b:93:cf:53:c4:c4:8f:4b:0e:c7:
a5:4e:28:14:b6:a3:d2:03:4d:e4:9e:dd:17:b1:17:
fd:34:ec:91:d4:af:b6:c2:63:85:c2:1c:69:4d:85:
f5:df:ef:a1:ff:14:48:59:f1:bf:be:dc:5e:e4:2c:
1d:5d:f8:3a:14:77:1b:ff:19:dc:50:11:f0:ad:cd:
22:48:f5:7e:a5:9d:2e:9d:22:83:08:41:a8:3a:ed:
ca:57:e7:ac:10:46:94:55:7e:f6:ad:4f:6a:ca:d6:
de:ca:86:89:1f:d3:7e:30:c4:f9:90:f7:31:47:cc:
fc:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:FA:F9:38:E1:41:FA:0D:9E:2A:EB:4F:07:55:A5:EF:75:5B:33:69
X509v3 Authority Key Identifier:
keyid:BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/aPr5OOFB-g2eKutPB1Wl73VbM2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.222.32.0/21
Signature Algorithm: sha256WithRSAEncryption
83:98:82:18:2d:fa:98:4c:f9:a7:46:1e:2f:4e:f9:1d:27:a2:
09:b7:43:76:16:97:4b:5d:1f:76:58:50:7a:0e:fb:52:1b:9b:
02:0d:b8:0c:0f:b5:3a:d9:c3:06:24:f1:e9:18:64:9b:46:5e:
ad:70:ce:c1:82:21:72:ef:f6:67:11:b3:23:da:1a:97:61:79:
11:73:be:18:4f:56:33:42:2b:70:13:9d:ff:de:2e:5f:ea:e7:
18:eb:54:86:f4:db:46:e0:57:fe:aa:cb:38:63:72:d2:34:2f:
b2:6d:e0:de:29:63:ad:fd:ce:bc:37:b1:c2:e0:40:8e:56:c8:
93:41:65:78:1f:f8:36:98:2a:2f:5a:91:20:88:3e:a1:74:fd:
a6:24:16:30:4a:ad:e6:16:33:6a:b1:5f:b0:3a:6c:10:1a:46:
d2:18:b4:13:3a:4c:9d:0b:44:a8:02:e9:f1:84:4f:46:ad:02:
8c:5f:6e:a9:37:67:16:35:52:20:0c:11:a8:08:a3:dd:e5:b1:
28:48:59:a5:79:6e:86:a6:11:29:11:4f:d2:58:af:5f:99:ab:
0e:aa:5e:33:66:eb:ea:00:85:35:72:be:28:aa:9a:25:c1:b8:
9a:2c:e9:4e:07:ab:85:60:65:1a:93:08:f0:34:83:33:37:33:
f0:c3:44:5c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB4EoijANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZGZhZDIzZTExY2YwZDI0YTQ3NzU5NGViYTA5Zjk5YWNjNmYxZmZmMB4XDTIyMDEw
MTExNTk0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjhmYWY5MzhlMTQx
ZmEwZDllMmFlYjRmMDc1NWE1ZWY3NTViMzM2OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKAUd0bxmc6Wl7t57snPymPY9IJ8K1iWutnhefjiEOoNAuFM
TJODe8Gqlt/HxonADfeP1K5vBotZpmSyj5EItILpKpWWxtmEJQzkokWFrio53UXN
41W5spdpGd39d9APsnOkQdBPL5IkiVTdfUd87WfAH/0etY3nP4sYz28a/4CmsPM8
3ZkBtGOZS487k89TxMSPSw7HpU4oFLaj0gNN5J7dF7EX/TTskdSvtsJjhcIcaU2F
9d/vof8USFnxv77cXuQsHV34OhR3G/8Z3FAR8K3NIkj1fqWdLp0igwhBqDrtylfn
rBBGlFV+9q1PasrW3sqGiR/TfjDE+ZD3MUfM/JcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRo+vk44UH6DZ4q608HVaXvdVszaTAfBgNVHSMEGDAWgBS9+tI+Ec8NJKR3
WU66CfmazG8f/zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZmclNQaEhQRFNTa2QxbE91Z241bXN4dkhfOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDMvZTI1MjM5LTZhYjAtNDkxOS1hNzZhLTRmNGU3MWUzMjA4NC8x
L2FQcjVPT0ZCLWcyZUt1dFBCMVdsNzNWYk0yay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDMv
ZTI1MjM5LTZhYjAtNDkxOS1hNzZhLTRmNGU3MWUzMjA4NC8xL3ZmclNQaEhQRFNT
a2QxbE91Z241bXN4dkhfOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA03eIDANBgkqhkiG9w0BAQsFAAOC
AQEAg5iCGC36mEz5p0YeL075HSeiCbdDdhaXS10fdlhQeg77UhubAg24DA+1OtnD
BiTx6Rhkm0ZerXDOwYIhcu/2ZxGzI9oal2F5EXO+GE9WM0IrcBOd/94uX+rnGOtU
hvTbRuBX/qrLOGNy0jQvsm3g3iljrf3OvDexwuBAjlbIk0FleB/4NpgqL1qRIIg+
oXT9piQWMEqt5hYzarFfsDpsEBpG0hi0EzpMnQtEqALp8YRPRq0CjF9uqTdnFjVS
IAwRqAij3eWxKEhZpXluhqYRKRFP0livX5mrDqpeM2br6gCFNXK+KKqaJcG4mizp
TgerhWBlGpMI8DSDMzcz8MNEXA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:13 2024 by rpki-client on console-ams.rpki-client.org