Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ixuTWD2xxwdl1K4Ce3yiz4kkP4A.roa
File: ixuTWD2xxwdl1K4Ce3yiz4kkP4A.roa (raw, json)
Hash identifier: OPKPfyGulp9LM+gB+2QVYAoffOypNovPeuqA/Knw6pg=
Subject key identifier: 8B:1B:93:58:3D:B1:C7:07:65:D4:AE:02:7B:7C:A2:CF:89:24:3F:80
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 01838A66ADEBE85732A4C27D863ECEF28488
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ixuTWD2xxwdl1K4Ce3yiz4kkP4A.roa
Signing time: Thu 29 Sep 2022 17:58:48 +0000
ROA not before: Thu 29 Sep 2022 17:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205570
IP address blocks: 77.81.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8a:66:ad:eb:e8:57:32:a4:c2:7d:86:3e:ce:f2:84:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Sep 29 17:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b1b93583db1c70765d4ae027b7ca2cf89243f80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:fb:21:ed:3c:43:76:d0:80:64:8d:bd:88:24:
73:a7:aa:fd:3d:b1:84:ab:c1:45:25:89:a6:46:82:
bb:10:79:22:29:f5:12:fa:cc:23:3d:c5:b5:78:87:
00:52:da:46:74:f0:3a:93:cf:fe:4e:94:2d:75:3e:
c0:d2:d9:3b:8b:ff:3a:d8:6c:49:1e:c8:92:e2:e0:
3d:44:9c:67:56:45:18:85:9d:a1:e8:d5:44:1b:2d:
f9:e9:66:73:25:c7:4a:23:0c:09:8f:23:1c:c1:82:
9b:0b:83:d0:62:a8:da:76:c2:41:3f:38:67:12:d8:
06:bc:e2:b5:47:f7:b8:0a:36:44:08:b5:a3:ce:d5:
c8:b9:63:af:7d:13:7c:45:a0:06:24:98:9d:5d:af:
b7:f1:ef:b6:f4:e4:1b:87:79:33:b1:6d:ac:4a:25:
e9:ca:0b:76:c6:75:1c:c2:2c:b2:71:4c:47:c0:3d:
99:cc:18:15:09:b9:ec:06:14:81:60:dd:9d:5d:11:
90:8c:9e:fd:d6:11:3e:90:bd:dd:f7:8a:b8:0d:21:
32:b3:70:a1:31:d4:4c:ea:0c:da:90:6c:c6:22:14:
98:1e:43:ae:32:b1:ba:47:db:88:68:f9:24:0c:5a:
bb:c5:66:7a:d3:4b:ee:04:2f:e3:48:bb:94:fd:5c:
d3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:1B:93:58:3D:B1:C7:07:65:D4:AE:02:7B:7C:A2:CF:89:24:3F:80
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ixuTWD2xxwdl1K4Ce3yiz4kkP4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.79.0/24
Signature Algorithm: sha256WithRSAEncryption
94:a1:d0:2d:c3:45:ae:6d:20:c0:24:72:3b:91:4e:23:a2:9f:
f1:3f:71:34:8d:0c:94:e5:5f:19:01:27:34:0c:c2:f7:71:b2:
60:56:15:b3:cf:8e:fe:83:88:4d:3c:e4:c5:a9:7b:28:75:11:
09:49:3f:ef:02:46:5e:48:1c:1f:47:ee:c8:5f:d0:01:4e:90:
18:a5:2f:c1:74:e9:d9:10:92:8e:ca:30:89:ba:25:ec:c1:da:
6f:52:71:fc:14:a5:58:18:48:30:44:86:51:79:fa:30:17:08:
da:be:26:d4:c8:96:88:e1:74:3a:f8:af:46:10:83:98:41:85:
41:a5:a1:1c:4a:0a:1e:28:ca:82:ee:10:33:e5:89:ab:c0:74:
bd:fb:a6:3f:b3:ed:6d:be:9c:85:76:56:5f:f4:87:12:9d:34:
22:fb:42:cc:75:65:9b:8b:ae:14:70:22:25:f2:65:56:27:90:
d1:c4:33:a2:16:d5:81:c4:92:a8:48:d3:6a:34:84:76:05:4a:
00:a8:76:10:d8:8f:3a:b6:01:d4:f4:52:c0:89:fb:ff:42:bb:
fb:a4:fb:2c:33:43:fc:e5:ee:1b:50:a1:a2:a6:21:73:ac:22:
34:47:2c:20:8b:7b:b7:48:a4:b3:7a:69:8f:ef:3d:96:8f:21:
c0:da:58:8f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOKZq3r6FcypMJ9hj7O8oSIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmYyZTg2ZGQ3Y2M5MTAxNjU4ZmY4ZDVhNTI0MTQ0NWZj
ZDFkNmEwHhcNMjIwOTI5MTc1ODQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YjFiOTM1ODNkYjFjNzA3NjVkNGFlMDI3YjdjYTJjZjg5MjQzZjgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmvsh7TxDdtCAZI29iCRzp6r9PbGE
q8FFJYmmRoK7EHkiKfUS+swjPcW1eIcAUtpGdPA6k8/+TpQtdT7A0tk7i/862GxJ
HsiS4uA9RJxnVkUYhZ2h6NVEGy356WZzJcdKIwwJjyMcwYKbC4PQYqjadsJBPzhn
EtgGvOK1R/e4CjZECLWjztXIuWOvfRN8RaAGJJidXa+38e+29OQbh3kzsW2sSiXp
ygt2xnUcwiyycUxHwD2ZzBgVCbnsBhSBYN2dXRGQjJ791hE+kL3d94q4DSEys3Ch
MdRM6gzakGzGIhSYHkOuMrG6R9uIaPkkDFq7xWZ600vuBC/jSLuU/VzTmwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIsbk1g9sccHZdSuAnt8os+JJD+AMB8GA1UdIwQY
MBaAFK8vLobdfMkQFlj/jVpSQURfzR1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYt
NDZiYjdhZWMxZjMwLzEvaXh1VFdEMnh4d2RsMUs0Q2UzeWl6NGtrUDRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYtNDZiYjdhZWMxZjMw
LzEvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVFPMA0G
CSqGSIb3DQEBCwUAA4IBAQCUodAtw0WubSDAJHI7kU4jop/xP3E0jQyU5V8ZASc0
DML3cbJgVhWzz47+g4hNPOTFqXsodREJST/vAkZeSBwfR+7IX9ABTpAYpS/BdOnZ
EJKOyjCJuiXswdpvUnH8FKVYGEgwRIZRefowFwjavibUyJaI4XQ6+K9GEIOYQYVB
paEcSgoeKMqC7hAz5YmrwHS9+6Y/s+1tvpyFdlZf9IcSnTQi+0LMdWWbi64UcCIl
8mVWJ5DRxDOiFtWBxJKoSNNqNIR2BUoAqHYQ2I86tgHU9FLAifv/Qrv7pPssM0P8
5e4bUKGipiFzrCI0Rywgi3u3SKSzemmP7z2WjyHA2liP
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org