Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/cGocNnXagYUMqBf2bfWvETxuQjc.roa
File: cGocNnXagYUMqBf2bfWvETxuQjc.roa (raw, json)
Hash identifier: OY9yOG+z0FNWOUxOLDUujnot1eh2BkusBGUzLQsrt+A=
Subject key identifier: 70:6A:1C:36:75:DA:81:85:0C:A8:17:F6:6D:F5:AF:11:3C:6E:42:37
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2C9A440B
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/cGocNnXagYUMqBf2bfWvETxuQjc.roa
Signing time: Sat 01 Jan 2022 04:59:32 +0000
ROA not before: Sat 01 Jan 2022 04:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24748
IP address blocks: 193.111.36.0/24 maxlen: 24
77.79.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 748307467 (0x2c9a440b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=706a1c3675da81850ca817f66df5af113c6e4237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9a:8c:d6:18:f9:7a:93:37:8c:eb:be:35:a2:
0c:e7:6c:a5:39:76:3a:01:d3:b8:27:6f:c7:a6:18:
75:fa:f9:d4:ac:88:42:84:f6:62:fb:1f:bb:2f:7e:
49:a6:6b:23:1c:61:86:4b:a1:15:14:e1:a4:ab:5a:
7a:b9:a0:ea:43:bd:47:d5:52:0c:60:85:21:e5:26:
10:41:68:39:11:12:4e:c8:ac:7d:7e:74:89:6e:e9:
2f:7b:29:d9:d1:80:2d:2d:2f:0a:18:a4:18:6f:52:
f7:4c:f2:c4:a6:d6:60:c8:0e:1a:a3:3b:4f:eb:50:
73:ab:7f:81:0e:34:39:f9:4a:78:9d:27:d9:ad:58:
18:44:65:f6:bc:11:39:92:f0:a7:0c:fd:3e:85:fc:
16:39:ea:d1:23:f8:b3:5f:c2:70:9b:f1:7c:36:6c:
79:f6:b9:a3:69:d3:ff:13:3a:4b:86:a4:58:4c:e6:
d4:ad:0f:6b:04:b9:5a:e6:11:a6:72:76:51:dc:03:
69:a0:a6:b9:b7:2f:9a:51:4a:9b:8b:a0:d1:f8:0b:
9e:a6:31:bf:6b:f0:1d:2c:c1:f1:f7:47:46:3d:f4:
6d:b5:f4:b2:6e:07:22:f6:7d:b5:5d:9a:f5:98:ec:
69:17:ed:b4:c5:af:c2:42:03:10:58:fa:8d:c2:49:
8b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:6A:1C:36:75:DA:81:85:0C:A8:17:F6:6D:F5:AF:11:3C:6E:42:37
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/cGocNnXagYUMqBf2bfWvETxuQjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.192.0/24
193.111.36.0/24
Signature Algorithm: sha256WithRSAEncryption
73:c1:ba:79:0d:15:ba:d5:bd:da:f6:41:65:08:6b:22:d2:24:
5d:6d:e7:dc:de:cd:c1:ea:54:20:fe:75:fe:bf:a0:d4:4a:6c:
2a:29:e7:7b:6c:4b:e0:08:d7:8a:b7:52:9b:1e:0b:75:3e:5b:
4d:20:04:32:48:0e:4e:1c:a0:45:d7:cf:e9:97:d0:06:fe:32:
08:37:20:4e:72:f5:a5:a7:b0:f2:48:7c:e9:b6:f3:13:fc:a5:
6a:88:d8:15:76:54:36:37:77:65:6b:f6:48:d4:ad:cc:0d:8e:
6e:c6:89:1e:65:23:b4:7a:78:9e:a6:fe:15:8a:61:3c:1f:16:
16:50:04:57:7b:4a:28:2b:44:bd:3a:10:6a:9a:47:66:5a:ef:
ee:4b:53:73:32:2d:63:66:75:4f:cb:a3:0a:aa:a2:a7:ca:f9:
9a:95:d2:5b:1d:98:a6:3e:a2:d4:4d:fc:28:ad:ce:ac:ea:1e:
57:7b:1c:a7:fc:9b:1f:d1:6f:18:fa:aa:19:ba:e4:3f:7b:16:
bf:f5:8b:de:5a:77:f4:e6:66:f5:13:64:a2:f1:2b:a8:31:15:
f9:7c:59:70:de:c0:c5:a5:37:6a:34:30:2a:96:21:7b:bc:e9:
bd:62:b0:2b:ed:f0:02:38:8c:04:f0:ec:cd:df:56:59:75:26:
20:c2:74:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org