Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/zVLs4w0MDyN6ITeF4o2SbHq5-Io.roa
File: zVLs4w0MDyN6ITeF4o2SbHq5-Io.roa (raw, json)
Hash identifier: 1A3KwNmCMS2uLUgcNcGvj8vixekPN3HPPwU492nuXEY=
Subject key identifier: CD:52:EC:E3:0D:0C:0F:23:7A:21:37:85:E2:8D:92:6C:7A:B9:F8:8A
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA8D77769014D5D1FFE381CED3CC24
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/zVLs4w0MDyN6ITeF4o2SbHq5-Io.roa
Signing time: Mon 02 Jan 2023 13:45:06 +0000
ROA not before: Mon 02 Jan 2023 13:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207206
IP address blocks: 77.79.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:8d:77:76:90:14:d5:d1:ff:e3:81:ce:d3:cc:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd52ece30d0c0f237a213785e28d926c7ab9f88a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:fc:d8:0e:e4:1a:43:42:87:23:8e:2f:cb:71:
9c:e9:55:32:0f:5c:2c:76:5b:6c:3a:db:23:c9:41:
7f:fa:0b:6f:be:e0:ad:67:56:f0:a2:e5:ae:d5:f8:
f0:31:43:bd:2e:1c:2c:93:ce:25:c3:34:94:b8:6a:
17:a6:c6:4c:93:cb:dd:fc:82:d9:88:b8:f5:d7:e7:
09:44:bc:67:ab:5b:25:a5:2d:fe:dc:61:5c:06:65:
50:2b:d9:c5:07:b8:4f:11:10:43:f3:c6:b8:d1:64:
10:92:9a:17:4a:a7:84:98:a5:31:bf:08:c6:0f:67:
84:e9:a6:fa:be:6a:5f:42:3a:7f:3c:82:5e:b7:80:
b9:4b:30:92:b7:e1:be:02:41:0b:37:6a:e6:ce:d9:
c8:03:a4:f0:b8:2d:2e:cb:50:0a:f1:10:0c:35:45:
c1:32:a0:8c:0e:6e:64:0d:92:cd:84:95:a2:0d:15:
08:2c:8b:e7:d7:fd:56:d1:89:1a:74:a7:ae:ed:ca:
d9:72:98:c8:7f:d0:6e:b7:d4:b5:6f:ae:96:fe:cd:
0a:2b:45:7b:14:9f:51:17:cb:49:82:20:86:01:5b:
49:15:b6:f0:0c:ea:1d:f9:a5:51:21:44:50:07:ec:
d3:f3:35:5e:b6:4d:bf:b8:8c:ae:41:6e:96:a0:95:
40:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:52:EC:E3:0D:0C:0F:23:7A:21:37:85:E2:8D:92:6C:7A:B9:F8:8A
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/zVLs4w0MDyN6ITeF4o2SbHq5-Io.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.243.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:48:98:6d:7e:8e:84:a5:32:82:0f:24:21:5b:f0:1f:1f:d2:
43:33:10:17:d1:33:76:b9:f1:eb:7b:42:c4:4f:1d:28:0d:9f:
ff:f7:a0:5e:01:85:5c:f3:da:13:be:44:bf:bf:c2:db:af:40:
74:9c:49:f1:0d:f3:3e:17:9c:af:92:e3:89:33:ee:bd:8f:c0:
27:7c:ee:8f:1b:2f:61:f1:34:80:51:de:54:d5:fb:44:fa:f7:
04:f0:6d:18:75:7a:42:05:d4:5d:30:80:6f:98:1d:ac:0d:52:
b9:b3:7d:88:9d:c8:a6:7a:68:70:3a:af:15:df:8b:43:e9:e0:
2e:89:51:1f:a9:57:8b:5e:f8:49:9e:cf:de:11:19:00:a3:fa:
e2:f0:48:c6:d2:a1:36:b4:eb:54:8f:ab:bf:a3:f6:51:3f:53:
de:da:ca:f2:9a:79:1c:0a:5d:b5:9a:c9:23:67:a8:b6:56:77:
76:7c:e8:2e:50:23:5d:bb:0d:0e:f1:89:32:ce:96:0e:10:dd:
f0:4e:bf:53:81:91:d6:b0:11:6e:89:e5:b0:01:f1:0e:05:14:
56:cb:a8:71:74:ac:38:ef:ba:c7:72:51:ed:6b:b2:f5:1e:fb:
81:3f:61:2a:c3:cb:d3:ee:89:c8:35:83:10:26:e8:00:d1:07:
7b:45:3a:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:49 2025 by rpki-client