Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9c70e9-3df3-4bc7-82e6-006e9bb8ed59/1/iKdse6r0Ivl5rVlAGsz7vxawIz0.roa
File: iKdse6r0Ivl5rVlAGsz7vxawIz0.roa (raw, json)
Hash identifier: BD90OV56lpYEOGpYZp5pjxALACEkC55W2uHg82L1xwo=
Subject key identifier: 88:A7:6C:7B:AA:F4:22:F9:79:AD:59:40:1A:CC:FB:BF:16:B0:23:3D
Certificate issuer: /CN=71c1690ef57afcffae73bdb9934309f8b70ebb61
Certificate serial: 0570E284
Authority key identifier: 71:C1:69:0E:F5:7A:FC:FF:AE:73:BD:B9:93:43:09:F8:B7:0E:BB:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ccFpDvV6_P-uc725k0MJ-LcOu2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9c70e9-3df3-4bc7-82e6-006e9bb8ed59/1/iKdse6r0Ivl5rVlAGsz7vxawIz0.roa
Signing time: Sat 01 Jan 2022 11:00:55 +0000
ROA not before: Sat 01 Jan 2022 11:00:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34530
IP address blocks: 77.87.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91284100 (0x570e284)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71c1690ef57afcffae73bdb9934309f8b70ebb61
Validity
Not Before: Jan 1 11:00:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88a76c7baaf422f979ad59401accfbbf16b0233d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:de:1a:c6:e2:bd:e2:37:38:40:8c:64:d8:7b:
48:21:4a:9a:24:17:f0:11:f1:76:40:fd:d4:92:26:
37:37:b2:5d:19:d9:57:bd:9d:7e:cb:53:68:e1:9e:
3e:e8:7a:5e:d2:82:09:4d:72:ed:0d:e5:c8:78:a1:
e1:e1:6c:e8:73:11:83:58:ca:19:3e:f2:f3:99:f3:
03:fc:5a:e3:4a:84:27:f7:29:89:f3:6c:5e:ef:b9:
13:5d:61:dc:5b:18:56:7e:70:4b:fd:dc:d8:8b:33:
cd:7f:3f:f4:20:aa:1f:03:a3:49:1f:77:f3:c4:ab:
ec:1f:1d:c9:a8:44:72:bb:50:d2:b2:38:7c:a7:07:
dd:ea:e7:9b:30:85:62:75:13:33:4c:87:83:ec:a2:
40:51:fe:d5:72:11:d4:82:83:f1:de:84:59:8d:8a:
16:4c:52:af:e0:21:18:6e:5c:ab:65:66:1c:0d:08:
cd:6c:36:e4:e8:e4:3e:80:64:ce:34:37:0c:6a:5c:
76:40:a9:66:17:6f:d7:ee:57:32:f0:18:3c:2f:a8:
0c:ff:15:ec:9c:07:f4:e1:2d:d2:6b:0b:90:ac:f3:
5f:83:e1:00:ab:6d:67:4a:b3:26:63:dc:2f:c0:ca:
be:b2:60:ba:13:08:94:61:0f:1e:bf:16:6a:ca:7b:
40:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:A7:6C:7B:AA:F4:22:F9:79:AD:59:40:1A:CC:FB:BF:16:B0:23:3D
X509v3 Authority Key Identifier:
keyid:71:C1:69:0E:F5:7A:FC:FF:AE:73:BD:B9:93:43:09:F8:B7:0E:BB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ccFpDvV6_P-uc725k0MJ-LcOu2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9c70e9-3df3-4bc7-82e6-006e9bb8ed59/1/iKdse6r0Ivl5rVlAGsz7vxawIz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9c70e9-3df3-4bc7-82e6-006e9bb8ed59/1/ccFpDvV6_P-uc725k0MJ-LcOu2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.75.0/24
Signature Algorithm: sha256WithRSAEncryption
47:67:92:bd:8f:9d:d3:7c:f4:67:d8:f8:e5:8f:33:d0:d0:c3:
f0:a7:9f:79:b9:85:06:a7:a2:d7:0a:8f:6f:79:0d:f8:85:95:
a6:0d:58:2c:be:e7:09:1b:6e:bb:78:e3:66:1f:70:54:b6:24:
ff:4c:7b:b5:1f:0b:48:a7:a8:43:16:3e:a1:2c:5e:21:b9:5a:
59:23:00:b9:4e:b0:5f:a5:6c:2b:01:0b:57:69:b8:82:30:79:
3b:5d:1a:0e:07:51:e6:da:85:b3:29:dd:90:00:a4:22:f9:f7:
6d:f0:ca:57:38:2f:a8:8b:96:0f:af:6c:2a:4b:20:89:f8:b1:
7f:fb:4a:74:64:50:05:60:25:91:69:d9:b3:e8:62:df:b3:45:
23:1d:60:67:4a:6d:e8:29:25:cb:51:93:bf:68:1b:e5:45:ff:
97:1c:38:c1:56:cd:cc:3f:5d:60:52:38:56:9f:d6:f6:36:cf:
f0:56:6a:50:c6:5b:5f:f6:c1:3a:26:ed:a4:b0:62:c5:2d:04:
f7:cb:7d:7e:99:2d:55:5a:ac:e3:34:c9:51:35:0f:e8:a3:d8:
70:e6:4f:27:dd:95:f3:df:81:06:6e:18:80:da:7b:9c:3c:cc:
17:27:8c:f8:1c:d7:0c:45:12:6a:4e:34:ca:e3:86:ba:0d:f6:
e0:e9:f6:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:48 2024 by rpki-client on console-fra.rpki-client.org