Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/dwYZgp9mvnmsw-MK_m8XG4pvcU0.roa
File: dwYZgp9mvnmsw-MK_m8XG4pvcU0.roa (raw, json)
Hash identifier: OOl9Pjkgwvtg6UcLrulZcVjV5X6iUDET7OYwfoPnTBY=
Subject key identifier: 77:06:19:82:9F:66:BE:79:AC:C3:E3:0A:FE:6F:17:1B:8A:6F:71:4D
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 01850C2B79669CA4BC7F4A062F7FB28EDCFF
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/dwYZgp9mvnmsw-MK_m8XG4pvcU0.roa
Signing time: Tue 13 Dec 2022 15:47:33 +0000
ROA not before: Tue 13 Dec 2022 15:47:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200559
IP address blocks: 192.71.41.0/24 maxlen: 24
192.71.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0c:2b:79:66:9c:a4:bc:7f:4a:06:2f:7f:b2:8e:dc:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Dec 13 15:47:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=770619829f66be79acc3e30afe6f171b8a6f714d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:00:be:87:b5:df:dd:0b:30:da:7c:14:b8:fa:
77:b8:53:8e:eb:0b:5d:b8:46:1b:4f:9c:00:fe:47:
d6:7e:62:9c:f1:ba:6b:0a:2c:67:ee:bc:b3:1b:07:
de:82:1a:1d:d4:f5:a2:8f:98:c3:49:c6:4b:53:60:
0e:68:22:93:9e:41:3f:94:b7:35:12:a0:ce:3e:e2:
20:b1:9c:22:f2:35:37:69:95:9b:be:1c:e4:6c:64:
ba:e7:ec:11:cc:3d:54:91:8b:98:4c:af:37:80:90:
58:fd:70:27:5b:57:bb:08:ae:3b:a2:8a:14:8e:23:
fb:08:8f:09:8a:04:91:da:73:66:6c:92:3f:f1:01:
ee:89:07:15:88:ad:1b:44:c2:ea:54:47:b4:03:a4:
ec:74:cf:db:50:b6:b9:e9:3f:2e:13:0e:a2:dd:52:
48:d8:63:9b:fe:62:9f:88:04:bf:47:c6:af:a2:1d:
75:83:74:f1:eb:ac:04:f4:5a:d5:72:d9:73:c0:a7:
b0:7f:8b:cf:02:ce:ce:f8:d0:83:9b:5e:d2:47:eb:
10:ec:4e:7b:1d:f5:06:8a:48:dd:84:dd:c8:67:46:
48:10:70:5e:6e:0c:64:a0:25:15:77:7a:67:c5:90:
e3:d4:24:8c:3f:10:a4:8c:f2:1d:c4:df:9a:24:cf:
f3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:06:19:82:9F:66:BE:79:AC:C3:E3:0A:FE:6F:17:1B:8A:6F:71:4D
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/dwYZgp9mvnmsw-MK_m8XG4pvcU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.40.0/23
Signature Algorithm: sha256WithRSAEncryption
75:c5:93:01:a2:18:3b:4d:41:2e:f8:0d:51:d2:99:f9:13:ad:
e9:a7:e5:f9:31:5c:6f:a7:13:e1:64:53:8d:02:0d:e9:43:a0:
02:81:99:9b:7f:66:41:77:42:d8:fd:2e:53:10:c9:d5:99:8e:
8e:83:9c:f1:3e:f8:78:6d:ad:6f:2b:af:bc:d5:c6:64:93:aa:
a9:f2:b1:ae:92:a3:54:af:85:bd:f5:bb:be:6a:92:f2:0d:76:
17:f4:70:4c:2f:ee:ca:65:76:85:9e:24:75:27:50:07:84:51:
bb:32:7f:44:1e:0b:a1:d2:02:f8:40:e1:c0:f5:3f:b1:23:b6:
24:e8:f8:2a:92:8a:d8:17:c4:6b:78:85:e8:78:b6:99:35:ed:
23:32:67:c4:36:10:0a:39:b7:7b:54:d0:dd:e1:6b:94:2c:7a:
4e:8f:94:e0:2e:f7:25:2b:58:3b:28:97:6c:87:de:fb:5b:d4:
d2:38:5e:ba:b9:7a:31:cb:39:99:6e:be:6d:00:02:79:a2:27:
06:2c:b5:a3:7e:e7:1c:e7:83:66:1e:51:6e:02:a8:61:54:3d:
09:3c:b4:92:9d:bd:ac:5e:1e:b9:b8:08:68:35:91:ad:37:eb:
eb:fb:66:2c:17:78:7f:38:de:17:36:f2:95:50:53:d2:ab:86:
a9:dd:52:d3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUMK3lmnKS8f0oGL3+yjtz/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh
ZGFmMWIwHhcNMjIxMjEzMTU0NzMzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzA2MTk4MjlmNjZiZTc5YWNjM2UzMGFmZTZmMTcxYjhhNmY3MTRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgAC+h7Xf3Qsw2nwUuPp3uFOO6wtd
uEYbT5wA/kfWfmKc8bprCixn7ryzGwfeghod1PWij5jDScZLU2AOaCKTnkE/lLc1
EqDOPuIgsZwi8jU3aZWbvhzkbGS65+wRzD1UkYuYTK83gJBY/XAnW1e7CK47oooU
jiP7CI8JigSR2nNmbJI/8QHuiQcViK0bRMLqVEe0A6TsdM/bULa56T8uEw6i3VJI
2GOb/mKfiAS/R8avoh11g3Tx66wE9FrVctlzwKewf4vPAs7O+NCDm17SR+sQ7E57
HfUGikjdhN3IZ0ZIEHBebgxkoCUVd3pnxZDj1CSMPxCkjPIdxN+aJM/zFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHcGGYKfZr55rMPjCv5vFxuKb3FNMB8GA1UdIwQY
MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt
OTQzZDAzMzIxMzI2LzEvZHdZWmdwOW12bm1zdy1NS19tOFhHNHB2Y1UwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2
LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwEcoMA0G
CSqGSIb3DQEBCwUAA4IBAQB1xZMBohg7TUEu+A1R0pn5E63pp+X5MVxvpxPhZFON
Ag3pQ6ACgZmbf2ZBd0LY/S5TEMnVmY6Og5zxPvh4ba1vK6+81cZkk6qp8rGukqNU
r4W99bu+apLyDXYX9HBML+7KZXaFniR1J1AHhFG7Mn9EHguh0gL4QOHA9T+xI7Yk
6PgqkorYF8RreIXoeLaZNe0jMmfENhAKObd7VNDd4WuULHpOj5TgLvclK1g7KJds
h977W9TSOF66uXoxyzmZbr5tAAJ5oicGLLWjfucc54NmHlFuAqhhVD0JPLSSnb2s
Xh65uAhoNZGtN+vr+2YsF3h/ON4XNvKVUFPSq4ap3VLT
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:47 2023 by rpki-client on console-fra.rpki-client.org