Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/aRSpfWnckHcqibZc97Np5gfwvuI.roa
File: aRSpfWnckHcqibZc97Np5gfwvuI.roa (raw, json)
Hash identifier: TdR/hHuLR0iXxq6uqiVpFOPYoSvIYNa4Da/LB+/y0+I=
Subject key identifier: 69:14:A9:7D:69:DC:90:77:2A:89:B6:5C:F7:B3:69:E6:07:F0:BE:E2
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 0184581554891EA1B8D988FB1D0B8F9844F2
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/aRSpfWnckHcqibZc97Np5gfwvuI.roa
Signing time: Tue 08 Nov 2022 16:31:43 +0000
ROA not before: Tue 08 Nov 2022 16:31:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 77.81.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:58:15:54:89:1e:a1:b8:d9:88:fb:1d:0b:8f:98:44:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Nov 8 16:31:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6914a97d69dc90772a89b65cf7b369e607f0bee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:13:31:1d:55:e9:15:0b:3b:5e:72:41:c0:2e:
6c:6b:ea:3b:de:b2:53:12:56:42:3e:e1:a4:48:c0:
32:00:84:d3:c7:74:e3:4f:32:10:8c:be:a2:43:aa:
a5:34:19:0f:86:21:8f:7c:9c:e4:08:36:28:54:3b:
56:e5:20:40:8a:6e:c1:ec:76:86:4e:a6:40:f0:a6:
33:cf:86:76:c3:be:96:c0:30:c5:18:de:4d:aa:07:
a7:ca:e5:15:52:8f:c0:82:36:42:cf:22:39:2b:ea:
c9:a1:2d:79:52:9d:84:e0:73:7d:a2:32:57:32:45:
30:4a:19:77:09:ab:b4:9f:95:a3:5f:42:69:29:9d:
0c:50:01:eb:4d:04:37:bd:a8:45:69:c1:a4:ee:11:
18:5b:e7:6f:5d:b9:eb:5c:f9:ea:8e:b3:d0:54:d5:
cf:36:f9:93:9b:24:03:02:d8:4b:bd:e6:1b:f4:88:
7f:f2:04:a1:99:35:58:26:bd:2a:87:4a:15:78:ab:
62:62:58:4e:3c:a1:b4:ad:a2:44:9a:ea:83:9b:65:
d7:d2:19:d8:14:19:2c:34:12:23:68:b8:bc:fe:06:
ae:dc:3b:4e:9e:0d:39:bf:6d:b3:89:5d:54:50:6c:
69:3c:84:bd:d6:02:c0:24:86:82:8f:8d:7c:5d:bc:
1b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:14:A9:7D:69:DC:90:77:2A:89:B6:5C:F7:B3:69:E6:07:F0:BE:E2
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/aRSpfWnckHcqibZc97Np5gfwvuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.77.0/24
Signature Algorithm: sha256WithRSAEncryption
77:5e:a2:15:54:10:b7:df:83:ec:5b:6f:87:1d:69:9e:cb:8d:
5b:a7:e9:53:50:d5:0e:ae:b2:5f:75:98:44:e2:55:43:b9:2f:
05:2d:1b:99:ce:12:e9:c7:c7:c1:f8:d7:fa:4d:0b:cc:e8:9a:
f2:5b:7f:ec:22:c0:b7:26:48:60:4c:20:91:87:d8:15:67:e0:
90:a0:75:e6:d7:e1:72:7a:a5:65:35:de:2b:e8:bb:61:9d:3e:
f1:36:70:26:9b:28:bb:7f:3d:eb:6e:94:fb:2e:1c:65:68:b8:
2b:9f:1e:60:b2:7f:db:41:0b:bc:1a:8a:b1:d7:77:11:0e:60:
94:4c:ef:41:3b:ab:0c:77:24:e4:a9:6e:c7:93:0a:89:5e:cb:
5f:ff:0e:93:9d:26:67:d5:c0:b4:be:a2:77:de:79:6b:80:6a:
e6:6c:38:cc:8c:3c:4c:da:e1:ec:bb:21:28:f8:8e:8d:3e:01:
a3:5e:70:f0:c6:68:4b:86:50:ae:ae:fc:da:5f:12:0d:c0:2a:
99:68:e5:9b:31:99:bd:52:73:3f:89:24:bc:30:77:4b:84:47:
98:81:1d:88:d0:39:64:ef:ee:fa:fa:be:ce:0d:c6:b5:f8:04:
41:dc:59:b0:d8:0f:48:74:10:32:b1:54:c7:e8:65:5d:76:46:
c3:1f:7c:27
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRYFVSJHqG42Yj7HQuPmETyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmYyZTg2ZGQ3Y2M5MTAxNjU4ZmY4ZDVhNTI0MTQ0NWZj
ZDFkNmEwHhcNMjIxMTA4MTYzMTQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OTE0YTk3ZDY5ZGM5MDc3MmE4OWI2NWNmN2IzNjllNjA3ZjBiZWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBMxHVXpFQs7XnJBwC5sa+o73rJT
ElZCPuGkSMAyAITTx3TjTzIQjL6iQ6qlNBkPhiGPfJzkCDYoVDtW5SBAim7B7HaG
TqZA8KYzz4Z2w76WwDDFGN5NqgenyuUVUo/AgjZCzyI5K+rJoS15Up2E4HN9ojJX
MkUwShl3Cau0n5WjX0JpKZ0MUAHrTQQ3vahFacGk7hEYW+dvXbnrXPnqjrPQVNXP
NvmTmyQDAthLveYb9Ih/8gShmTVYJr0qh0oVeKtiYlhOPKG0raJEmuqDm2XX0hnY
FBksNBIjaLi8/gau3DtOng05v22ziV1UUGxpPIS91gLAJIaCj418XbwbHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGkUqX1p3JB3Kom2XPezaeYH8L7iMB8GA1UdIwQY
MBaAFK8vLobdfMkQFlj/jVpSQURfzR1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYt
NDZiYjdhZWMxZjMwLzEvYVJTcGZXbmNrSGNxaWJaYzk3TnA1Z2Z3dnVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYtNDZiYjdhZWMxZjMw
LzEvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVFNMA0G
CSqGSIb3DQEBCwUAA4IBAQB3XqIVVBC334PsW2+HHWmey41bp+lTUNUOrrJfdZhE
4lVDuS8FLRuZzhLpx8fB+Nf6TQvM6JryW3/sIsC3JkhgTCCRh9gVZ+CQoHXm1+Fy
eqVlNd4r6LthnT7xNnAmmyi7fz3rbpT7LhxlaLgrnx5gsn/bQQu8Goqx13cRDmCU
TO9BO6sMdyTkqW7HkwqJXstf/w6TnSZn1cC0vqJ33nlrgGrmbDjMjDxM2uHsuyEo
+I6NPgGjXnDwxmhLhlCurvzaXxINwCqZaOWbMZm9UnM/iSS8MHdLhEeYgR2I0Dlk
7+76+r7ODca1+ARB3Fmw2A9IdBAysVTH6GVddkbDH3wn
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org