Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/M9elEt8YioHrgpKVplXPZQx7qIE.roa
File: M9elEt8YioHrgpKVplXPZQx7qIE.roa (raw, json)
Hash identifier: cvdfECMx2egd2fLegKq7uPaAohtkjpLshmzgvqenx/o=
Subject key identifier: 33:D7:A5:12:DF:18:8A:81:EB:82:92:95:A6:55:CF:65:0C:7B:A8:81
Certificate issuer: /CN=99e7209a8c9b176fbf623edf3ee0b82007fc2c40
Certificate serial: 1ED60926
Authority key identifier: 99:E7:20:9A:8C:9B:17:6F:BF:62:3E:DF:3E:E0:B8:20:07:FC:2C:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/M9elEt8YioHrgpKVplXPZQx7qIE.roa
Signing time: Sat 01 Jan 2022 08:56:09 +0000
ROA not before: Sat 01 Jan 2022 08:56:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12810
IP address blocks: 78.40.0.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 517343526 (0x1ed60926)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99e7209a8c9b176fbf623edf3ee0b82007fc2c40
Validity
Not Before: Jan 1 08:56:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33d7a512df188a81eb829295a655cf650c7ba881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3c:81:84:d3:84:91:f9:c8:05:c6:3e:f9:f0:
a5:3a:2b:75:c0:9c:3e:ca:2a:b4:b1:2e:7b:6e:de:
f9:d9:ed:6c:65:60:0c:d9:f4:e5:ae:47:0e:a0:6f:
7b:c9:80:2f:44:d2:d6:20:90:4e:12:67:fa:94:6c:
36:71:d7:1b:cf:73:db:bf:e1:b0:f9:b2:e0:63:cb:
5f:23:75:5b:28:c5:9e:48:53:05:b7:a6:d2:5d:8c:
75:c1:c9:f0:a9:5a:a6:d2:68:3f:51:cc:bd:45:e3:
0a:2d:ae:7f:b2:c3:dc:07:81:0c:0b:dd:ca:96:dd:
33:91:f7:de:cd:ee:db:52:b5:7d:5c:32:c6:f1:7a:
40:14:68:ad:5b:eb:89:27:10:eb:d2:b1:9b:4a:7a:
4f:7d:52:25:02:39:fe:68:b9:04:cc:2e:30:fb:7f:
37:ef:5f:f5:3b:a7:db:b3:f1:bb:95:7d:05:b6:26:
4d:db:65:f8:02:5a:3e:9a:dd:fa:b9:d6:bf:b7:3c:
e4:d6:ac:96:f1:f6:73:da:f2:6f:ec:59:66:c2:92:
ca:30:9a:c7:62:51:7a:26:c0:9b:6b:db:d2:e2:5d:
e2:9f:df:24:65:d0:0b:af:b0:c8:72:16:2f:0a:7c:
f2:66:b1:70:25:5f:a7:4c:90:8d:2c:a2:ec:16:ae:
a4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:D7:A5:12:DF:18:8A:81:EB:82:92:95:A6:55:CF:65:0C:7B:A8:81
X509v3 Authority Key Identifier:
keyid:99:E7:20:9A:8C:9B:17:6F:BF:62:3E:DF:3E:E0:B8:20:07:FC:2C:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/M9elEt8YioHrgpKVplXPZQx7qIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/mecgmoybF2-_Yj7fPuC4IAf8LEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.40.0.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:93:bc:df:05:52:9c:56:58:d4:14:06:17:5e:56:ba:ad:83:
a5:bf:3e:5b:c0:ee:2b:80:14:b0:49:2e:c0:bb:b0:17:88:4c:
49:46:68:79:57:30:79:dc:2e:ae:9a:65:2d:aa:4a:fc:12:da:
f9:ed:ed:f1:23:7c:20:09:15:2f:2a:a9:ac:4c:9d:7b:a3:bd:
de:ab:2a:b1:4f:ad:0a:fd:29:48:25:1a:64:9e:af:8c:11:88:
59:65:96:cd:cb:3a:a8:e2:2e:e1:0b:36:02:88:9c:3e:de:49:
16:5b:b9:fe:58:01:07:7e:07:97:74:07:cd:a4:d3:31:80:d8:
48:a9:54:6d:3b:86:d0:be:ea:ab:93:a5:43:02:5f:60:37:a9:
06:34:95:fa:c2:3d:5b:f3:30:7f:3b:8f:37:54:ef:49:5a:1e:
e3:69:57:61:f6:f3:a2:94:68:1c:ef:94:91:94:6f:a8:00:53:
6b:90:33:42:32:e2:db:74:b5:d8:12:4b:5b:e3:96:b5:60:08:
af:5f:7e:8b:1f:18:5b:fd:24:ee:71:51:08:09:04:06:a0:b1:
d6:5a:69:c5:d5:4b:30:c5:c5:72:8a:40:f9:cd:03:3e:93:48:
93:4d:75:15:45:e0:8b:8c:ca:25:2d:c7:06:1b:b9:8a:95:52:
33:f3:d6:fe
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHtYJJjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
OWU3MjA5YThjOWIxNzZmYmY2MjNlZGYzZWUwYjgyMDA3ZmMyYzQwMB4XDTIyMDEw
MTA4NTYwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzNkN2E1MTJkZjE4
OGE4MWViODI5Mjk1YTY1NWNmNjUwYzdiYTg4MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALA8gYTThJH5yAXGPvnwpTordcCcPsoqtLEue27e+dntbGVg
DNn05a5HDqBve8mAL0TS1iCQThJn+pRsNnHXG89z27/hsPmy4GPLXyN1WyjFnkhT
Bbem0l2MdcHJ8KlaptJoP1HMvUXjCi2uf7LD3AeBDAvdypbdM5H33s3u21K1fVwy
xvF6QBRorVvriScQ69Kxm0p6T31SJQI5/mi5BMwuMPt/N+9f9Tun27Pxu5V9BbYm
Tdtl+AJaPprd+rnWv7c85NaslvH2c9ryb+xZZsKSyjCax2JReibAm2vb0uJd4p/f
JGXQC6+wyHIWLwp88maxcCVfp0yQjSyi7BaupE8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQz16US3xiKgeuCkpWmVc9lDHuogTAfBgNVHSMEGDAWgBSZ5yCajJsXb79i
Pt8+4LggB/wsQDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21lY2dtb3liRjItX1lqN2ZQdUM0SUFmOExFQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2IvZWY1ODU2LWJiYzAtNDVhNC04OTFlLWIyZGNjMTg2M2U4Yi8x
L005ZWxFdDhZaW9IcmdwS1ZwbFhQWlF4N3FJRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Iv
ZWY1ODU2LWJiYzAtNDVhNC04OTFlLWIyZGNjMTg2M2U4Yi8xL21lY2dtb3liRjIt
X1lqN2ZQdUM0SUFmOExFQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAU4oADANBgkqhkiG9w0BAQsFAAOC
AQEAOpO83wVSnFZY1BQGF15Wuq2Dpb8+W8DuK4AUsEkuwLuwF4hMSUZoeVcwedwu
rpplLapK/BLa+e3t8SN8IAkVLyqprEyde6O93qsqsU+tCv0pSCUaZJ6vjBGIWWWW
zcs6qOIu4Qs2AoicPt5JFlu5/lgBB34Hl3QHzaTTMYDYSKlUbTuG0L7qq5OlQwJf
YDepBjSV+sI9W/MwfzuPN1TvSVoe42lXYfbzopRoHO+UkZRvqABTa5AzQjLi23S1
2BJLW+OWtWAIr19+ix8YW/0k7nFRCAkEBqCx1lppxdVLMMXFcopA+c0DPpNIk011
FUXgi4zKJS3HBhu5ipVSM/PW/g==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:32 2023 by rpki-client on console.sobornost.net