Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/B3n7fJsei8owGOkK7XLPOaxwR38.roa
File: B3n7fJsei8owGOkK7XLPOaxwR38.roa (raw, json)
Hash identifier: 7sydfVPizkQfR6hVcfGODDAC+v+MaXbNDtBnGS8zXSc=
Subject key identifier: 07:79:FB:7C:9B:1E:8B:CA:30:18:E9:0A:ED:72:CF:39:AC:70:47:7F
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 05FF2B96
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/B3n7fJsei8owGOkK7XLPOaxwR38.roa
Signing time: Sun 27 Mar 2022 23:58:55 +0000
ROA not before: Sun 27 Mar 2022 23:58:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48592
IP address blocks: 128.65.160.0/22 maxlen: 22
77.81.78.0/24 maxlen: 24
77.81.76.0/24 maxlen: 24
185.39.180.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100608918 (0x5ff2b96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Mar 27 23:58:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0779fb7c9b1e8bca3018e90aed72cf39ac70477f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:70:4b:c7:3a:6f:81:9d:92:db:22:3b:11:e5:
83:fd:bf:90:43:9d:ec:35:b8:e3:e7:36:9e:ee:8b:
c3:5b:ac:3d:d2:21:2a:3b:89:90:90:01:ce:4f:8f:
f5:72:3f:1e:a9:1d:93:62:91:1e:fc:bb:19:60:9e:
d6:e0:04:2a:41:50:fb:a2:f3:25:88:53:a3:b6:84:
bc:23:d6:18:00:b4:36:d2:3c:43:ea:ca:9a:b2:25:
d3:7d:3c:2b:6e:eb:c5:70:58:d8:c2:90:4a:4a:a1:
ba:89:ef:40:70:c7:43:2a:44:94:c4:08:5b:ad:63:
95:ac:97:34:3d:66:b8:de:a0:62:e8:0d:cb:f7:28:
e5:f9:17:95:df:2c:b2:3e:3f:ec:00:d6:ba:e7:ee:
6c:a8:fd:11:cc:56:62:81:c0:06:79:91:18:14:63:
b2:d3:e6:78:12:5f:14:92:0f:db:c9:78:29:31:42:
95:e3:f5:c3:42:49:27:af:8f:20:fa:73:09:ab:92:
4e:b7:d2:a5:87:82:5f:4a:35:b7:52:42:25:85:dc:
da:64:08:61:83:af:51:cf:d6:13:ef:36:40:26:13:
0c:3b:91:3e:52:a8:df:b0:11:66:ea:ca:3b:c3:00:
18:ab:b3:0e:40:59:47:69:7d:86:ba:db:ab:55:31:
99:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:79:FB:7C:9B:1E:8B:CA:30:18:E9:0A:ED:72:CF:39:AC:70:47:7F
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/B3n7fJsei8owGOkK7XLPOaxwR38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.76.0/24
77.81.78.0/24
128.65.160.0/22
185.39.180.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:8c:32:dd:e9:1f:db:33:1b:56:36:12:f7:b9:ee:38:f7:50:
9f:92:f0:60:7c:1b:57:06:38:e7:ef:25:52:24:63:c2:18:48:
70:72:d8:ce:8a:37:3c:d3:d4:f7:88:f6:e5:d7:61:d8:36:42:
ec:11:75:d4:e2:4c:fe:d2:05:e1:43:7b:60:07:c6:ac:5c:d5:
6d:41:c3:2a:fe:b5:33:43:8c:9d:bd:5a:ad:f4:06:cf:18:65:
b5:20:63:48:cd:0d:e3:4c:a5:c7:d9:77:da:21:22:c1:c3:c5:
0d:e3:96:18:c2:e5:5a:9f:ee:86:72:b5:db:83:63:e1:be:1d:
07:58:66:4f:8d:d5:7f:93:d8:b5:e4:fd:38:b2:61:01:ea:8a:
ed:77:cd:60:7d:c1:97:02:d9:c6:35:be:ec:c8:aa:5b:ca:e7:
52:e6:6e:66:35:e2:b3:6a:be:85:b6:80:31:fa:6e:91:e1:48:
b0:21:8d:39:ac:15:e8:fe:f6:00:b1:cc:ab:49:89:6b:b2:4a:
99:20:16:a8:0b:25:ce:63:4b:3e:f9:66:2f:d1:5d:f5:94:25:
b1:bd:c9:6e:f1:a6:f8:18:61:bd:ac:0a:7a:37:a1:94:0b:ab:
cf:5e:a3:74:8c:86:ed:f6:01:b1:51:02:b6:82:43:35:21:9e:
7a:84:33:60
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIEBf8rljANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZjJmMmU4NmRkN2NjOTEwMTY1OGZmOGQ1YTUyNDE0NDVmY2QxZDZhMB4XDTIyMDMy
NzIzNTg1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDc3OWZiN2M5YjFl
OGJjYTMwMThlOTBhZWQ3MmNmMzlhYzcwNDc3ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL9wS8c6b4GdktsiOxHlg/2/kEOd7DW44+c2nu6Lw1usPdIh
KjuJkJABzk+P9XI/Hqkdk2KRHvy7GWCe1uAEKkFQ+6LzJYhTo7aEvCPWGAC0NtI8
Q+rKmrIl0308K27rxXBY2MKQSkqhuonvQHDHQypElMQIW61jlayXND1muN6gYugN
y/co5fkXld8ssj4/7ADWuufubKj9EcxWYoHABnmRGBRjstPmeBJfFJIP28l4KTFC
leP1w0JJJ6+PIPpzCauSTrfSpYeCX0o1t1JCJYXc2mQIYYOvUc/WE+82QCYTDDuR
PlKo37ARZurKO8MAGKuzDkBZR2l9hrrbq1UxmXUCAwEAAaOCAhswggIXMB0GA1Ud
DgQWBBQHeft8mx6LyjAY6Qrtcs85rHBHfzAfBgNVHSMEGDAWgBSvLy6G3XzJEBZY
/41aUkFEX80dajAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3J5OHVodDE4eVJBV1dQLU5XbEpCUkZfTkhXby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDQvZTA4YjhlLWJmMjItNDM1Yy04YjFmLTQ2YmI3YWVjMWYzMC8x
L0IzbjdmSnNlaThvd0dPa0s3WExQT2F4d1IzOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDQv
ZTA4YjhlLWJmMjItNDM1Yy04YjFmLTQ2YmI3YWVjMWYzMC8xL3J5OHVodDE4eVJB
V1dQLU5XbEpCUkZfTkhXby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAx
BggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAE1RTAMEAE1RTgMEAoBBoAMEArkn
tDANBgkqhkiG9w0BAQsFAAOCAQEAfYwy3ekf2zMbVjYS97nuOPdQn5LwYHwbVwY4
5+8lUiRjwhhIcHLYzoo3PNPU94j25ddh2DZC7BF11OJM/tIF4UN7YAfGrFzVbUHD
Kv61M0OMnb1arfQGzxhltSBjSM0N40ylx9l32iEiwcPFDeOWGMLlWp/uhnK124Nj
4b4dB1hmT43Vf5PYteT9OLJhAeqK7XfNYH3BlwLZxjW+7MiqW8rnUuZuZjXis2q+
hbaAMfpukeFIsCGNOawV6P72ALHMq0mJa7JKmSAWqAslzmNLPvlmL9Fd9ZQlsb3J
bvGm+BhhvawKejehlAurz16jdIyG7fYBsVECtoJDNSGeeoQzYA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org