Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/8QjggpkKY6seL8ezPjV9-ry3tl0.roa
File: 8QjggpkKY6seL8ezPjV9-ry3tl0.roa (raw, json)
Hash identifier: Co0sVgrKmpIY1g/9BuIu1aUy6ipZUTNa8Ie3EJXCaj4=
Subject key identifier: F1:08:E0:82:99:0A:63:AB:1E:2F:C7:B3:3E:35:7D:FA:BC:B7:B6:5D
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 01C7FF1F
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/8QjggpkKY6seL8ezPjV9-ry3tl0.roa
Signing time: Wed 16 Feb 2022 06:16:17 +0000
ROA not before: Wed 16 Feb 2022 06:16:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 77.74.225.0/24 maxlen: 24
77.74.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29884191 (0x1c7ff1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Feb 16 06:16:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f108e082990a63ab1e2fc7b33e357dfabcb7b65d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:57:69:d1:19:0f:28:8d:8e:49:fe:55:90:1f:
81:b0:c2:c3:82:9b:74:db:23:93:d2:25:e6:03:b0:
99:ca:7d:91:f3:99:56:1e:4a:43:3c:91:14:93:e9:
f4:83:40:5a:f2:d7:7d:a6:83:36:8b:f9:9a:f3:2e:
a7:b7:2c:1e:3d:12:1f:6e:c3:67:5f:76:4b:9b:06:
dc:cd:5f:82:78:2b:c0:80:2e:46:ed:9b:f0:54:ff:
df:55:75:ad:c9:de:cc:55:45:77:c7:81:7d:4e:aa:
1b:4f:0b:22:73:2f:5f:dc:07:70:4d:4d:57:cd:13:
eb:46:d7:41:1e:b2:ef:59:14:8f:32:7a:d0:2d:25:
d7:74:d8:e5:3d:5e:41:00:46:ed:cc:aa:f5:f9:5c:
5c:e1:fc:7a:05:2d:b1:0f:ae:87:a5:3b:b7:fd:88:
6c:4e:de:72:e0:02:02:da:b4:f9:94:63:29:74:1e:
78:06:4e:8a:98:a6:45:dc:90:a1:e8:74:e0:38:23:
48:56:e0:91:ee:bb:d6:2c:a6:b1:e2:73:3d:be:e6:
73:8a:a7:3a:9f:cc:44:e7:1f:d3:c9:c8:74:ef:6e:
87:95:f8:26:3d:65:41:4f:66:2f:b2:39:10:6b:72:
82:15:01:f7:66:10:62:91:32:63:96:bf:88:d9:1f:
fa:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:08:E0:82:99:0A:63:AB:1E:2F:C7:B3:3E:35:7D:FA:BC:B7:B6:5D
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/8QjggpkKY6seL8ezPjV9-ry3tl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.225.0/24
77.74.230.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:8b:66:30:9d:15:5d:a2:29:59:78:c2:6d:1f:56:83:d0:40:
1b:61:29:9e:53:98:d6:5d:50:be:58:5e:63:17:6a:81:54:4b:
6a:3b:10:37:97:3b:43:58:bc:7f:38:9a:cf:56:4e:ab:8f:69:
8e:60:93:f9:65:f2:ba:82:18:90:b9:4f:5b:11:59:f2:db:fb:
a9:11:89:97:ad:9f:8d:40:cb:02:9c:24:e8:f9:89:d3:a1:63:
f2:e1:9c:1a:17:07:c6:26:f3:cd:a4:8c:33:e8:60:27:c7:d8:
06:3d:cd:4c:c8:a6:71:57:15:62:57:25:27:ef:34:de:b1:de:
77:d0:97:d3:08:1b:42:ef:d9:c9:c3:4a:22:1c:29:2b:7a:f8:
29:fd:c2:7b:da:f6:7f:78:09:6f:1d:66:29:aa:03:7c:d5:c2:
a8:1f:4d:b4:eb:e0:ff:47:79:63:c4:f3:b0:f1:95:e0:a5:1d:
42:5a:ed:8a:0c:8b:a9:ed:7a:b6:9e:86:ea:c3:c4:62:80:85:
e8:63:41:ee:59:e9:4c:b6:63:76:8c:49:b9:3d:f7:bf:4c:16:
bc:e1:4a:50:92:a7:cc:db:af:09:36:04:23:de:f0:a0:00:c2:
08:a8:f4:08:11:a5:ce:20:51:8f:3d:f5:4f:f6:21:06:14:29:
21:b0:0d:ea
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAcf/HzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
OGM2MGEwZDJkNzBhOTMzN2QwYmRhNTZkMWFkNTk2YWMxZjY5Y2RhMB4XDTIyMDIx
NjA2MTYxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjEwOGUwODI5OTBh
NjNhYjFlMmZjN2IzM2UzNTdkZmFiY2I3YjY1ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMJXadEZDyiNjkn+VZAfgbDCw4KbdNsjk9Il5gOwmcp9kfOZ
Vh5KQzyRFJPp9INAWvLXfaaDNov5mvMup7csHj0SH27DZ192S5sG3M1fgngrwIAu
Ru2b8FT/31V1rcnezFVFd8eBfU6qG08LInMvX9wHcE1NV80T60bXQR6y71kUjzJ6
0C0l13TY5T1eQQBG7cyq9flcXOH8egUtsQ+uh6U7t/2IbE7ecuACAtq0+ZRjKXQe
eAZOipimRdyQoeh04DgjSFbgke671iymseJzPb7mc4qnOp/MROcf08nIdO9uh5X4
Jj1lQU9mL7I5EGtyghUB92YQYpEyY5a/iNkf+tkCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTxCOCCmQpjqx4vx7M+NX36vLe2XTAfBgNVHSMEGDAWgBTYxgoNLXCpM30L
2lbRrVlqwfac2jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJNWUtEUzF3cVROOUM5cFcwYTFaYXNIMm5Oby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvYjUxYTg1LWY5OWYtNDIzZi05ZmFlLWRkMjk0YzM3OGY2Yy8x
LzhRamdncGtLWTZzZUw4ZXpQalY5LXJ5M3RsMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
YjUxYTg1LWY5OWYtNDIzZi05ZmFlLWRkMjk0YzM3OGY2Yy8xLzJNWUtEUzF3cVRO
OUM5cFcwYTFaYXNIMm5Oby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAE1K4QMEAE1K5jANBgkqhkiG9w0B
AQsFAAOCAQEAnItmMJ0VXaIpWXjCbR9Wg9BAG2EpnlOY1l1QvlheYxdqgVRLajsQ
N5c7Q1i8fziaz1ZOq49pjmCT+WXyuoIYkLlPWxFZ8tv7qRGJl62fjUDLApwk6PmJ
06Fj8uGcGhcHxibzzaSMM+hgJ8fYBj3NTMimcVcVYlclJ+803rHed9CX0wgbQu/Z
ycNKIhwpK3r4Kf3Ce9r2f3gJbx1mKaoDfNXCqB9NtOvg/0d5Y8TzsPGV4KUdQlrt
igyLqe16tp6G6sPEYoCF6GNB7lnpTLZjdoxJuT33v0wWvOFKUJKnzNuvCTYEI97w
oADCCKj0CBGlziBRjz31T/YhBhQpIbAN6g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org