Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/1-mlhX24ihLVznv8l4lxvMWR8esc.roa
File: 1-mlhX24ihLVznv8l4lxvMWR8esc.roa (raw, json)
Hash identifier: 5nQr3seC3Il17UYigFYyjknTzAYapbTxLbm0TPurUl8=
Subject key identifier: FA:69:61:5F:6E:22:84:B5:73:9E:FF:25:E2:5C:6F:31:64:7C:7A:C7
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 0182466D96C5A28514DB8FF881BB1F0A82C4
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/1-mlhX24ihLVznv8l4lxvMWR8esc.roa
Signing time: Thu 28 Jul 2022 20:09:23 +0000
ROA not before: Thu 28 Jul 2022 20:09:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35758
IP address blocks: 77.74.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:46:6d:96:c5:a2:85:14:db:8f:f8:81:bb:1f:0a:82:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jul 28 20:09:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa69615f6e2284b5739eff25e25c6f31647c7ac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:61:5d:14:5b:db:ce:ad:be:d2:26:75:a3:37:
9b:ae:9c:93:c4:51:47:e3:15:31:fb:d7:40:39:c6:
2a:76:c1:d3:5f:44:a4:2b:87:87:e3:7f:08:f4:e8:
61:86:b6:00:8e:87:28:bd:dc:b5:80:25:42:bc:83:
f1:4e:af:ce:11:44:71:5d:bb:74:be:95:cf:9e:fc:
45:18:9e:9a:63:ec:63:a5:77:8f:41:6d:6c:fe:09:
d3:b7:32:94:35:15:8e:e0:ec:c2:ae:99:96:97:f5:
4c:ff:f4:b8:a0:63:bd:98:60:6a:06:03:b4:8c:25:
b1:07:f1:90:f1:8f:00:52:50:4d:a0:8a:3a:91:a2:
98:7b:d2:b2:b1:9a:cc:57:4c:d9:0e:5f:04:c4:57:
09:3e:92:ed:2e:4d:89:28:b7:75:aa:72:6c:26:ad:
b7:9d:8d:cc:22:03:26:c8:e5:d1:a0:13:7f:72:00:
1a:1e:aa:74:ab:4f:fe:0e:5c:a8:6b:2e:79:ef:c4:
62:4a:4b:39:e8:ad:c9:ec:7e:8c:d6:d5:c6:6a:99:
89:7e:0f:f4:e2:1d:76:f7:80:f3:53:4c:0f:b1:65:
e4:26:26:dd:22:7f:b5:9b:9e:95:d2:13:67:c8:80:
f4:44:a0:9f:f2:de:a4:f5:1d:9f:57:4c:b4:83:f5:
7e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:69:61:5F:6E:22:84:B5:73:9E:FF:25:E2:5C:6F:31:64:7C:7A:C7
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/1-mlhX24ihLVznv8l4lxvMWR8esc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.228.0/24
Signature Algorithm: sha256WithRSAEncryption
23:91:bd:d8:2e:4c:3d:f5:27:65:5e:bc:af:57:fa:65:1f:8b:
49:d6:94:e3:66:c8:ec:05:b0:e6:91:56:59:36:c7:74:15:b6:
14:07:56:f5:2a:6e:11:69:66:16:be:a2:07:77:fc:eb:68:03:
32:fc:35:9d:05:cb:aa:7d:f5:10:2f:bc:d9:b1:f9:9d:8d:66:
7d:e1:a5:19:21:26:5e:4d:ef:c4:c6:83:e6:14:1a:82:67:05:
28:68:92:0e:32:b4:eb:57:9c:be:b2:c9:44:c6:25:67:e3:f5:
10:ff:22:a6:45:50:a3:1b:06:8b:c9:a5:d5:a5:0f:0b:13:b8:
57:5e:a5:73:9a:cf:51:fb:99:2a:8c:af:aa:38:9e:0b:53:26:
bf:8b:94:54:a2:2b:04:4e:11:89:78:8e:d2:9f:04:5a:14:b7:
51:76:ed:b7:d8:a1:01:c7:3f:25:a3:14:81:c5:bd:47:3f:0e:
79:cc:06:84:78:82:1c:d7:80:10:96:47:d1:cc:d3:01:66:ad:
69:8d:b5:bf:21:16:c5:20:6e:17:4b:cd:e3:6c:7a:aa:ef:60:
d3:46:f1:82:96:48:e8:75:fb:25:b5:7a:4b:1f:27:fe:e1:c6:
07:a0:6a:7c:1d:fa:d7:3d:d0:df:36:0c:93:f2:93:d3:7b:33:
cd:2d:71:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org