Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/DpeXhWe3Q8bx5g6OmXqWlcL4XLQ.roa
File: DpeXhWe3Q8bx5g6OmXqWlcL4XLQ.roa (raw, json)
Hash identifier: EQBpdHbDVgA2XpM3Cpz75aBewTOiHgJfOg8rcSM5y3g=
Subject key identifier: 0E:97:97:85:67:B7:43:C6:F1:E6:0E:8E:99:7A:96:95:C2:F8:5C:B4
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 0182F9A1BD213D8E9B1C0CE58537BE1559FB
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/DpeXhWe3Q8bx5g6OmXqWlcL4XLQ.roa
Signing time: Thu 01 Sep 2022 15:18:22 +0000
ROA not before: Thu 01 Sep 2022 15:18:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 77.74.228.0/24 maxlen: 24
109.105.192.0/24 maxlen: 24
109.105.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f9:a1:bd:21:3d:8e:9b:1c:0c:e5:85:37:be:15:59:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Sep 1 15:18:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e97978567b743c6f1e60e8e997a9695c2f85cb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:42:46:9f:ff:6d:82:34:29:93:4c:6e:a8:3b:
7b:7d:15:4d:2c:84:d0:86:e9:2f:03:91:a4:3b:44:
3e:5b:e7:24:a5:cd:9f:99:ab:2b:38:14:d3:1e:17:
49:23:78:06:d6:fe:39:23:a7:40:fb:e9:7e:6b:6e:
f6:80:37:c9:13:54:25:eb:64:13:18:4b:b7:c7:15:
a1:74:5f:54:d1:dc:97:49:42:f1:0f:e4:8b:b5:fe:
62:eb:23:eb:11:0e:d5:26:da:b1:8d:4d:57:08:79:
a6:42:60:4f:b2:6f:c1:75:02:52:3a:fb:7c:4c:81:
09:f7:46:ed:26:69:c4:99:14:46:07:50:4f:bd:11:
50:9a:55:f0:f6:40:af:27:71:e0:ce:f8:2f:bf:68:
dd:c5:87:3c:31:56:af:44:47:25:29:e9:54:5c:af:
15:51:1e:a7:b2:2b:c1:72:0f:70:81:66:05:19:5b:
d8:59:6f:0a:05:b2:44:20:9d:9e:45:08:96:d9:5e:
04:2f:27:6a:4f:c4:2c:07:89:ea:0a:b1:8c:83:62:
2a:ac:37:83:26:82:a7:1c:ef:c6:5f:48:fa:d9:b5:
1c:56:b3:14:71:f6:eb:77:da:0d:13:0f:89:54:99:
20:a5:3d:74:34:43:a3:e4:65:4a:81:f7:54:a0:eb:
59:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:97:97:85:67:B7:43:C6:F1:E6:0E:8E:99:7A:96:95:C2:F8:5C:B4
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/DpeXhWe3Q8bx5g6OmXqWlcL4XLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.228.0/24
109.105.192.0/24
109.105.197.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:35:d1:59:37:63:63:fd:db:72:df:d6:c1:a6:7e:55:91:7e:
1e:e5:b7:48:70:b6:92:86:33:b9:e0:c3:71:22:ff:fe:01:87:
c3:5a:07:05:a4:a4:09:b9:31:01:be:e6:51:19:59:db:68:bf:
10:93:17:d0:d7:e2:4b:11:3b:be:ee:fa:05:04:33:47:cf:f0:
c5:53:24:56:16:1f:55:55:ff:a5:dc:c0:ff:b1:7b:33:99:a1:
70:e4:3d:42:56:41:11:42:a5:f6:92:b6:5c:a1:ff:a1:2c:59:
d6:68:19:95:19:c1:7f:d1:97:a5:c9:47:f7:9b:9f:ac:36:ce:
65:23:ed:08:ee:77:c1:fe:8c:80:2e:5f:43:66:4b:0f:20:11:
16:dc:ad:fd:ec:1b:49:9c:31:4e:4c:68:27:dc:c7:92:a3:0f:
36:73:48:82:c0:1e:bf:3c:c4:59:7f:bd:f7:5b:a6:00:f8:50:
52:c3:f6:ac:40:41:ba:9a:fd:f3:14:9a:82:ab:d4:87:8d:56:
95:f7:09:74:4d:4b:44:c0:f1:62:60:1d:2e:8d:5b:ba:2b:85:
da:6d:7c:7b:19:d7:e8:92:4c:69:aa:1a:26:5c:34:08:28:75:
b5:12:2d:e8:a3:f4:47:f2:4e:f8:a8:2d:f2:92:f5:24:b0:d2:
f5:51:50:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org