Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6e2cbf-7056-4419-b51c-62b1da261329/1/_wdKMKNJk1SRKkQdyMlvmVSCPhI.roa
File: _wdKMKNJk1SRKkQdyMlvmVSCPhI.roa (raw, json)
Hash identifier: MRnqvhq8t2CbzwTSAGwxT27C4jnQa33MdDqF/yGamLw=
Subject key identifier: FF:07:4A:30:A3:49:93:54:91:2A:44:1D:C8:C9:6F:99:54:82:3E:12
Certificate issuer: /CN=478c7fc6b211e271f7483f721d45f238dd7de5c4
Certificate serial: 0189BB41300C49E2A8104DEAF92DF2A1DB10
Authority key identifier: 47:8C:7F:C6:B2:11:E2:71:F7:48:3F:72:1D:45:F2:38:DD:7D:E5:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R4x_xrIR4nH3SD9yHUXyON195cQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6e2cbf-7056-4419-b51c-62b1da261329/1/_wdKMKNJk1SRKkQdyMlvmVSCPhI.roa
Signing time: Thu 03 Aug 2023 11:55:58 +0000
ROA not before: Thu 03 Aug 2023 11:55:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202423
IP address blocks: 77.220.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bb:41:30:0c:49:e2:a8:10:4d:ea:f9:2d:f2:a1:db:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=478c7fc6b211e271f7483f721d45f238dd7de5c4
Validity
Not Before: Aug 3 11:55:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff074a30a3499354912a441dc8c96f9954823e12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:de:ea:0f:2d:fb:98:f0:b9:09:1f:d6:84:53:
48:67:9a:02:b2:03:a4:da:f4:f2:b9:03:df:2c:59:
69:36:c1:46:5e:bc:1f:a2:67:3b:38:6a:bb:d9:d5:
c6:69:91:72:22:ff:5f:c4:6f:11:83:28:f8:71:de:
8c:ce:c9:da:48:21:a4:13:a9:ce:3e:fe:9a:d6:7d:
75:6c:cd:4e:1e:3e:3f:75:16:3e:83:d0:8a:bf:89:
83:25:e9:85:a5:1c:67:b7:c6:52:16:80:e6:3b:9b:
c1:a3:fe:80:50:7f:6c:5c:05:2e:46:f9:61:c7:09:
a1:b1:7c:53:75:95:10:90:0e:c8:a4:69:e6:67:dc:
cf:5f:0a:45:5b:d8:db:95:c8:a7:d7:82:a6:ac:15:
d6:75:16:35:e4:82:3a:e7:b8:4e:6f:d2:a9:09:0a:
2e:2f:32:96:39:0d:ca:5a:f1:44:01:da:c6:c4:7f:
84:48:26:4f:49:e1:ee:bb:d7:ce:fa:4c:16:93:02:
04:0b:96:c1:31:99:05:be:00:16:02:d2:7d:59:2e:
e1:16:61:12:17:92:d7:29:57:e8:c8:d2:6e:6b:80:
e0:de:da:08:6a:d1:77:7f:96:26:70:e2:7d:f7:77:
47:99:b2:9c:e3:b8:a6:e3:7e:d8:b7:0d:e5:a1:05:
f9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:07:4A:30:A3:49:93:54:91:2A:44:1D:C8:C9:6F:99:54:82:3E:12
X509v3 Authority Key Identifier:
keyid:47:8C:7F:C6:B2:11:E2:71:F7:48:3F:72:1D:45:F2:38:DD:7D:E5:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R4x_xrIR4nH3SD9yHUXyON195cQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6e2cbf-7056-4419-b51c-62b1da261329/1/_wdKMKNJk1SRKkQdyMlvmVSCPhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6e2cbf-7056-4419-b51c-62b1da261329/1/R4x_xrIR4nH3SD9yHUXyON195cQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.220.205.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:f5:1b:c0:76:31:8e:d7:a7:d6:5a:4c:8f:b8:25:0d:9e:70:
b1:97:29:1a:11:8c:d7:22:15:66:7e:ce:fd:73:b0:de:8d:77:
28:c4:6b:fb:9e:56:c3:e0:2e:c3:be:09:e9:4a:e2:e3:55:44:
d0:75:a1:db:e5:e9:d2:b6:92:c8:b8:d0:24:6e:5d:23:16:d1:
68:a2:4c:ee:d8:c7:e0:4f:98:e3:c0:75:a2:15:42:10:b4:5e:
c9:df:74:b5:81:e0:b9:98:35:9c:da:52:05:cd:c3:20:24:a1:
a3:7e:2c:3f:ee:fb:03:a0:d8:83:be:6e:f5:2c:b6:6c:af:4d:
f1:e6:ac:a2:33:92:e7:76:59:49:19:44:36:fd:10:b5:d1:39:
71:85:bb:db:4e:19:7e:f1:79:40:61:4f:5a:c8:14:34:ab:12:
26:87:66:42:c0:b1:d7:86:93:5c:6f:33:57:b4:0c:eb:f5:61:
3e:48:eb:d0:59:5b:66:0b:d6:c4:b9:5c:7a:52:3c:e6:fc:6c:
1a:d9:59:5a:1c:84:c8:1d:5c:54:cf:2e:f6:1f:92:fe:27:01:
be:59:03:dc:15:62:92:69:c4:2a:a6:9a:ef:9c:11:0a:6d:b4:
8c:b4:c6:82:a6:26:8d:68:b0:9b:2b:f6:49:8d:4b:03:12:1a:
c8:c7:5b:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYm7QTAMSeKoEE3q+S3yodsQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3OGM3ZmM2YjIxMWUyNzFmNzQ4M2Y3MjFkNDVmMjM4ZGQ3
ZGU1YzQwHhcNMjMwODAzMTE1NTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZjA3NGEzMGEzNDk5MzU0OTEyYTQ0MWRjOGM5NmY5OTU0ODIzZTEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAld7qDy37mPC5CR/WhFNIZ5oCsgOk
2vTyuQPfLFlpNsFGXrwfomc7OGq72dXGaZFyIv9fxG8Rgyj4cd6MzsnaSCGkE6nO
Pv6a1n11bM1OHj4/dRY+g9CKv4mDJemFpRxnt8ZSFoDmO5vBo/6AUH9sXAUuRvlh
xwmhsXxTdZUQkA7IpGnmZ9zPXwpFW9jblcin14KmrBXWdRY15II657hOb9KpCQou
LzKWOQ3KWvFEAdrGxH+ESCZPSeHuu9fO+kwWkwIEC5bBMZkFvgAWAtJ9WS7hFmES
F5LXKVfoyNJua4Dg3toIatF3f5YmcOJ993dHmbKc47im437Ytw3loQX5KwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP8HSjCjSZNUkSpEHcjJb5lUgj4SMB8GA1UdIwQY
MBaAFEeMf8ayEeJx90g/ch1F8jjdfeXEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUjR4X3hySVI0bkgzU0Q5eUhVWHlPTjE5NWNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS82ZTJjYmYtNzA1Ni00NDE5LWI1MWMt
NjJiMWRhMjYxMzI5LzEvX3dkS01LTkprMVNSS2tRZHlNbHZtVlNDUGhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS82ZTJjYmYtNzA1Ni00NDE5LWI1MWMtNjJiMWRhMjYxMzI5
LzEvUjR4X3hySVI0bkgzU0Q5eUhVWHlPTjE5NWNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATdzNMA0G
CSqGSIb3DQEBCwUAA4IBAQCf9RvAdjGO16fWWkyPuCUNnnCxlykaEYzXIhVmfs79
c7DejXcoxGv7nlbD4C7DvgnpSuLjVUTQdaHb5enStpLIuNAkbl0jFtFookzu2Mfg
T5jjwHWiFUIQtF7J33S1geC5mDWc2lIFzcMgJKGjfiw/7vsDoNiDvm71LLZsr03x
5qyiM5LndllJGUQ2/RC10TlxhbvbThl+8XlAYU9ayBQ0qxImh2ZCwLHXhpNcbzNX
tAzr9WE+SOvQWVtmC9bEuVx6Ujzm/Gwa2VlaHITIHVxUzy72H5L+JwG+WQPcFWKS
acQqpprvnBEKbbSMtMaCpiaNaLCbK/ZJjUsDEhrIx1vd
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:10 2025 by rpki-client