Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/d2aab0-8363-4b14-9cc2-c8bb8ea39804/1/71cTBQV83a8QX6bt6evHLqKdEYc.roa
File: 71cTBQV83a8QX6bt6evHLqKdEYc.roa (raw, json)
Hash identifier: ziWd0JAnzQ7lf9vrgoY85bKqVde20Agx+c655q9Qdgw=
Subject key identifier: EF:57:13:05:05:7C:DD:AF:10:5F:A6:ED:E9:EB:C7:2E:A2:9D:11:87
Certificate issuer: /CN=77b020308865c3360dab19f3a5703341864e9f50
Certificate serial: 01856E1442DAA3731C1E653CBCB09D8258AD
Authority key identifier: 77:B0:20:30:88:65:C3:36:0D:AB:19:F3:A5:70:33:41:86:4E:9F:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7AgMIhlwzYNqxnzpXAzQYZOn1A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/d2aab0-8363-4b14-9cc2-c8bb8ea39804/1/71cTBQV83a8QX6bt6evHLqKdEYc.roa
Signing time: Sun 01 Jan 2023 16:04:59 +0000
ROA not before: Sun 01 Jan 2023 16:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8680
IP address blocks: 185.87.144.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:42:da:a3:73:1c:1e:65:3c:bc:b0:9d:82:58:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77b020308865c3360dab19f3a5703341864e9f50
Validity
Not Before: Jan 1 16:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef571305057cddaf105fa6ede9ebc72ea29d1187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:13:d4:e2:97:5b:8c:a9:f8:29:67:8d:c1:f2:
2f:f9:40:d3:a7:3a:ef:32:25:8a:23:a8:be:ff:4c:
b4:c0:7f:cb:0f:e0:41:fd:5a:b6:1d:c3:7f:95:37:
e1:fe:64:56:ef:87:c9:bc:f9:2f:6f:ca:87:a7:68:
f5:f2:5d:f6:2b:5a:4f:87:4d:64:e2:89:4d:87:70:
e7:58:61:42:4c:f6:1c:4c:2e:69:50:dc:3c:63:c8:
d6:0f:0a:90:f4:13:6c:49:44:26:55:c0:2a:bc:f7:
f5:2f:95:c2:4f:4c:61:df:fc:6e:a6:48:96:64:6c:
77:93:68:26:fa:2d:1a:fb:0a:e3:32:46:19:c7:2e:
54:9f:bb:c9:63:2b:3f:42:7d:87:5d:43:aa:a7:43:
1b:be:a3:43:03:69:44:16:6b:77:24:46:bc:12:51:
3d:22:de:f5:b1:cb:b5:60:7c:ca:63:02:03:05:89:
d1:2a:e7:5a:6e:4b:f7:d9:0d:8f:42:bb:71:87:ef:
23:b5:d8:6c:82:d0:53:35:88:aa:c8:29:13:b3:23:
f7:52:1b:16:a8:79:8c:58:e8:00:f2:32:ee:24:44:
8f:da:15:22:5c:80:34:d6:fa:d4:9f:5c:9a:f7:64:
1e:0d:04:da:37:40:b9:d9:33:e9:46:62:cb:50:4c:
14:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:57:13:05:05:7C:DD:AF:10:5F:A6:ED:E9:EB:C7:2E:A2:9D:11:87
X509v3 Authority Key Identifier:
keyid:77:B0:20:30:88:65:C3:36:0D:AB:19:F3:A5:70:33:41:86:4E:9F:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7AgMIhlwzYNqxnzpXAzQYZOn1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d2aab0-8363-4b14-9cc2-c8bb8ea39804/1/71cTBQV83a8QX6bt6evHLqKdEYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d2aab0-8363-4b14-9cc2-c8bb8ea39804/1/d7AgMIhlwzYNqxnzpXAzQYZOn1A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.144.0/22
Signature Algorithm: sha256WithRSAEncryption
62:e7:74:13:00:1d:0f:6e:ff:9f:e7:f8:47:d4:82:ae:32:cb:
6d:c8:36:a3:2c:92:4d:b0:ca:d8:86:02:d0:dd:a4:cc:51:77:
b1:9c:58:7a:70:ee:a7:97:bb:39:2f:fa:09:20:9f:e2:ad:ea:
87:05:80:95:48:aa:7d:49:77:e6:1c:f7:5d:24:f4:8d:7f:4c:
f4:75:a6:67:88:a9:e9:8e:1f:fe:2d:6d:0e:fd:13:e2:27:cc:
36:38:e1:0a:e5:bf:49:e9:c5:60:41:e5:b5:96:26:f6:1d:ac:
7c:fd:41:05:a3:9b:80:27:ec:4e:49:f7:53:ef:3a:a7:06:66:
a5:39:bf:6f:fe:82:40:5c:dd:33:8f:a4:fa:4d:fb:11:00:3c:
cb:59:ed:89:8a:79:18:1f:aa:4d:d7:dc:91:41:b5:0e:a4:82:
12:f4:e6:5f:bd:ae:67:00:0c:4d:c3:ca:04:fe:4a:1a:2a:75:
d6:d1:72:5e:08:28:22:7a:ee:7d:bf:e3:8d:21:91:01:a9:c8:
7d:f0:0f:80:14:fc:59:1b:49:33:60:98:09:11:2c:f7:ac:ad:
6b:a6:10:36:4f:43:bf:4e:d2:ca:6e:bc:08:e3:67:1e:16:82:
ca:6b:d4:72:dc:93:a8:ef:50:ad:d8:53:c2:ce:eb:7b:77:dc:
fe:08:b2:de
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuFELao3McHmU8vLCdglitMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3YjAyMDMwODg2NWMzMzYwZGFiMTlmM2E1NzAzMzQxODY0
ZTlmNTAwHhcNMjMwMTAxMTYwNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjU3MTMwNTA1N2NkZGFmMTA1ZmE2ZWRlOWViYzcyZWEyOWQxMTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmhPU4pdbjKn4KWeNwfIv+UDTpzrv
MiWKI6i+/0y0wH/LD+BB/Vq2HcN/lTfh/mRW74fJvPkvb8qHp2j18l32K1pPh01k
4olNh3DnWGFCTPYcTC5pUNw8Y8jWDwqQ9BNsSUQmVcAqvPf1L5XCT0xh3/xupkiW
ZGx3k2gm+i0a+wrjMkYZxy5Un7vJYys/Qn2HXUOqp0MbvqNDA2lEFmt3JEa8ElE9
It71scu1YHzKYwIDBYnRKudabkv32Q2PQrtxh+8jtdhsgtBTNYiqyCkTsyP3UhsW
qHmMWOgA8jLuJESP2hUiXIA01vrUn1ya92QeDQTaN0C52TPpRmLLUEwUKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO9XEwUFfN2vEF+m7enrxy6inRGHMB8GA1UdIwQY
MBaAFHewIDCIZcM2DasZ86VwM0GGTp9QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDdBZ01JaGx3ellOcXhuenBYQXpRWVpPbjFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9kMmFhYjAtODM2My00YjE0LTljYzIt
YzhiYjhlYTM5ODA0LzEvNzFjVEJRVjgzYThRWDZidDZldkhMcUtkRVljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC9kMmFhYjAtODM2My00YjE0LTljYzItYzhiYjhlYTM5ODA0
LzEvZDdBZ01JaGx3ellOcXhuenBYQXpRWVpPbjFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVeQMA0G
CSqGSIb3DQEBCwUAA4IBAQBi53QTAB0Pbv+f5/hH1IKuMsttyDajLJJNsMrYhgLQ
3aTMUXexnFh6cO6nl7s5L/oJIJ/ireqHBYCVSKp9SXfmHPddJPSNf0z0daZniKnp
jh/+LW0O/RPiJ8w2OOEK5b9J6cVgQeW1lib2Hax8/UEFo5uAJ+xOSfdT7zqnBmal
Ob9v/oJAXN0zj6T6TfsRADzLWe2JinkYH6pN19yRQbUOpIIS9OZfva5nAAxNw8oE
/koaKnXW0XJeCCgieu59v+ONIZEBqch98A+AFPxZG0kzYJgJESz3rK1rphA2T0O/
TtLKbrwI42ceFoLKa9Ry3JOo71Ct2FPCzut7d9z+CLLe
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:28 2025 by rpki-client