Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Dj-4iXv5zTdmSOaYk9H0ElC_0MI.roa
File: Dj-4iXv5zTdmSOaYk9H0ElC_0MI.roa (raw, json)
Hash identifier: qI6jDsBKJXWVN2y8ZgM2qiLyZKwxEZ8JGcH1Hyx0/yI=
Subject key identifier: 0E:3F:B8:89:7B:F9:CD:37:66:48:E6:98:93:D1:F4:12:50:BF:D0:C2
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2C9B6D8E
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Dj-4iXv5zTdmSOaYk9H0ElC_0MI.roa
Signing time: Sat 01 Jan 2022 04:59:32 +0000
ROA not before: Sat 01 Jan 2022 04:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24929
IP address blocks: 77.79.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 748383630 (0x2c9b6d8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e3fb8897bf9cd376648e69893d1f41250bfd0c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:88:ba:1d:2f:16:c4:29:20:c0:07:c4:44:cb:
80:ee:4a:86:2f:a1:a1:36:ee:02:d7:a7:40:91:d1:
e2:1d:1a:c4:b6:94:5b:0c:bd:44:ad:e4:d3:17:8c:
e5:5b:22:a2:8e:9a:64:d4:ea:7a:9c:03:c6:22:68:
9c:d8:98:b2:64:82:23:a0:be:4f:09:13:a0:77:89:
db:ac:39:d0:72:d9:94:6a:01:e9:be:f9:bc:d6:0d:
c6:75:37:2f:8f:bd:ec:8a:12:3a:dd:39:10:20:27:
ec:3e:29:be:90:5e:ee:6a:f8:a6:34:45:8c:07:eb:
0b:9f:4b:aa:15:ee:c0:40:46:05:53:30:3b:16:ea:
49:12:e3:d5:f4:01:36:96:55:3c:e3:0f:c6:10:35:
d0:de:72:cd:50:e5:53:35:80:60:b0:43:7a:fc:a7:
a3:a9:41:9a:d4:49:4d:21:b8:9d:47:60:15:77:b9:
95:7b:f3:81:53:de:3f:2c:78:e9:e8:6c:6b:73:0a:
23:f5:8d:57:2f:d9:1e:0a:5b:37:f8:46:69:65:7c:
04:ea:e1:73:1d:02:f4:24:12:55:4a:e6:c2:22:c3:
10:3d:69:30:dc:61:36:e9:62:dc:ca:d1:33:d5:ae:
99:1e:05:a6:17:00:1f:6e:94:91:e2:b2:8a:93:4f:
1b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:3F:B8:89:7B:F9:CD:37:66:48:E6:98:93:D1:F4:12:50:BF:D0:C2
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/Dj-4iXv5zTdmSOaYk9H0ElC_0MI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.237.0/24
Signature Algorithm: sha256WithRSAEncryption
21:68:0a:c1:5c:de:86:65:c7:2d:92:97:4e:61:fd:37:b6:15:
7f:e0:09:5b:fd:28:1e:23:1b:4f:f2:ec:78:bb:f2:e4:94:9c:
e9:d7:b0:b2:d1:27:0e:e4:63:23:3c:f3:49:1c:d4:31:4b:62:
f7:d7:42:be:61:0f:6e:9b:ba:de:6d:30:6f:3a:a1:bb:48:23:
20:b0:75:b9:bc:5a:a9:46:08:57:87:cf:e8:94:ca:5e:02:eb:
a0:4a:ac:6d:16:b6:28:cb:41:99:da:7d:5d:08:39:67:eb:dd:
d2:72:0c:30:e0:de:a3:1f:73:ae:a7:ed:1b:2f:a6:e9:d9:eb:
59:21:5f:63:83:92:74:a3:3d:c9:fe:09:b1:de:18:56:68:af:
d9:8a:eb:d4:d4:d0:c6:aa:b4:0b:46:5e:49:e4:8b:50:a8:3c:
1b:90:25:84:67:b1:80:c7:6c:00:cd:0c:f1:87:07:e4:62:26:
c7:29:a1:19:4e:01:48:e3:61:3b:83:67:4b:51:49:22:34:49:
9c:34:24:aa:ff:e2:25:94:c2:ed:e7:15:ed:cf:74:b7:cf:c5:
0d:5c:6b:52:db:89:af:74:77:5c:41:06:34:b1:91:b7:fd:aa:
2a:33:e9:bd:03:c8:9d:81:4c:dc:fe:52:ae:86:7a:40:8e:2f:
aa:fe:80:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org