Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/zh5hqcpzOM_MO1hZWSbZU-Q0toc.roa
File: zh5hqcpzOM_MO1hZWSbZU-Q0toc.roa (raw, json)
Hash identifier: RJw+/a2Is9u9fBgAhkK1RycEEhEUodRJ+WoXJfQAdpQ=
Subject key identifier: CE:1E:61:A9:CA:73:38:CF:CC:3B:58:59:59:26:D9:53:E4:34:B6:87
Certificate issuer: /CN=a0a154441df9623eeb5a196138d21bef5824b441
Certificate serial: 170A9EB5
Authority key identifier: A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/zh5hqcpzOM_MO1hZWSbZU-Q0toc.roa
Signing time: Mon 28 Mar 2022 09:52:53 +0000
ROA not before: Mon 28 Mar 2022 09:52:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34049
IP address blocks: 77.240.181.0/24 maxlen: 24
81.19.12.0/23 maxlen: 23
81.19.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 386571957 (0x170a9eb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a154441df9623eeb5a196138d21bef5824b441
Validity
Not Before: Mar 28 09:52:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce1e61a9ca7338cfcc3b58595926d953e434b687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:46:14:6d:ea:00:60:cc:77:ec:00:47:c5:2c:
7d:e0:0e:0f:20:b9:8f:60:2b:ec:29:6e:a5:d4:07:
8a:da:7b:22:c0:fa:8a:d0:a3:9e:39:65:82:0f:37:
c4:65:3e:86:91:e5:43:0b:2c:13:10:d4:df:88:e2:
fe:d8:f5:48:55:84:c2:e7:05:91:7b:69:14:43:24:
27:fe:5d:ef:3d:0d:32:82:2d:d7:95:b3:48:a6:3b:
3e:e8:fd:fe:00:bf:ca:79:4f:65:a8:22:0d:3f:37:
e0:48:cd:b5:79:56:29:34:d2:bc:88:01:0f:2a:8b:
e6:d6:93:0b:6f:63:1e:2c:ec:c1:c9:df:ba:cc:e3:
45:db:f8:ac:c5:f5:48:4b:97:57:08:7f:85:94:d3:
80:25:83:9c:59:81:dd:b9:60:37:5e:1e:d4:f4:79:
41:f7:22:31:95:7e:51:68:65:4f:36:94:c1:a0:c1:
60:1f:3d:6d:01:3f:b6:ef:ad:59:96:bc:82:e8:d8:
06:d5:02:9a:6c:ab:ad:26:31:fd:e2:e6:84:e4:22:
52:6c:bb:7e:41:63:c5:11:8b:53:4c:87:0a:56:d7:
51:2d:89:72:eb:5a:11:c9:f4:32:ac:6b:44:40:19:
f6:f9:d9:36:eb:1a:28:76:50:68:79:bc:06:7b:88:
f7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:1E:61:A9:CA:73:38:CF:CC:3B:58:59:59:26:D9:53:E4:34:B6:87
X509v3 Authority Key Identifier:
keyid:A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/zh5hqcpzOM_MO1hZWSbZU-Q0toc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.240.181.0/24
81.19.12.0-81.19.14.255
Signature Algorithm: sha256WithRSAEncryption
92:ff:b5:ce:82:b1:10:ae:1d:7c:fa:54:9e:da:9c:80:5d:c3:
cc:5e:bf:8b:df:5b:84:d6:5d:05:ca:51:6d:e4:70:56:dc:72:
9e:e7:67:d7:de:1b:c9:bf:33:32:00:aa:d4:26:62:88:35:f6:
32:bf:d3:4b:91:42:42:d9:be:27:6b:7d:9f:74:56:76:bd:c6:
6d:0a:ec:a1:5f:5c:cc:13:37:0f:3a:e0:9f:5f:12:4b:b0:c6:
07:75:47:64:b8:33:62:7d:4b:aa:72:fd:1b:a3:46:02:c2:98:
1c:71:04:c3:c7:b8:9e:af:c9:cf:fe:74:4a:2f:38:e3:59:cd:
43:d0:c6:7a:6f:ca:36:e7:b4:a2:e7:38:55:df:1c:4a:4c:f4:
77:f3:9b:09:c9:d3:3f:ca:18:bf:e2:87:4d:2d:9d:fc:7b:e7:
e3:92:03:dd:49:af:1c:9f:e6:da:c6:35:24:5f:7a:8b:0a:3e:
ef:7c:0c:ac:73:44:9f:1e:6f:08:80:5a:9d:b6:2d:bf:11:ff:
ea:79:48:a4:6f:81:93:5f:85:24:24:7f:e3:9a:a5:d7:3d:8f:
95:b6:21:e3:7f:ea:3f:c7:cc:36:80:99:82:4d:66:28:e1:0c:
c9:a7:b0:35:34:6a:fd:1d:6a:14:6d:7d:bc:11:3f:7f:98:6d:
3d:d5:53:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:57 2024 by rpki-client on console-fra.rpki-client.org