Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/FKD2W6fERS3CKTV5IiuwKgJJ0Ow.roa
File: FKD2W6fERS3CKTV5IiuwKgJJ0Ow.roa (raw, json)
Hash identifier: +KETDrStOTXgbzHSbvgua3v7ysOPdbFrilR163aTyaU=
Subject key identifier: 14:A0:F6:5B:A7:C4:45:2D:C2:29:35:79:22:2B:B0:2A:02:49:D0:EC
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 01FE87AF
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/FKD2W6fERS3CKTV5IiuwKgJJ0Ow.roa
Signing time: Fri 04 Mar 2022 12:51:54 +0000
ROA not before: Fri 04 Mar 2022 12:51:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43179
IP address blocks: 77.74.226.0/24 maxlen: 24
77.74.224.0/24 maxlen: 24
77.74.228.0/24 maxlen: 24
77.74.229.0/24 maxlen: 24
77.74.227.0/24 maxlen: 24
109.105.193.0/24 maxlen: 24
109.105.206.0/24 maxlen: 24
109.105.204.0/24 maxlen: 24
109.105.202.0/24 maxlen: 24
109.105.203.0/24 maxlen: 24
109.105.201.0/24 maxlen: 24
109.105.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33458095 (0x1fe87af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Mar 4 12:51:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14a0f65ba7c4452dc2293579222bb02a0249d0ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e6:61:35:a8:76:bb:f2:6c:db:b5:bb:84:d0:
3d:81:ce:4a:03:b4:16:d9:90:f0:0e:e7:d2:e6:be:
eb:53:6f:7a:11:da:b4:d8:76:0f:18:8c:38:b4:f7:
84:c0:6f:74:e7:34:6f:5c:af:66:7c:e5:3c:33:1f:
2a:b5:29:c4:2f:1f:90:a7:02:b4:88:f8:30:62:4b:
d7:35:a8:ac:4d:fc:8b:44:25:5a:d6:f2:d7:d7:ff:
75:0d:8c:5b:85:ec:bf:95:cb:5c:63:f8:33:f4:98:
32:75:48:69:bc:a2:e1:2f:2f:ec:d7:89:26:b6:76:
77:7e:2a:df:48:ec:63:34:fd:5a:c1:05:b0:c0:b0:
48:8f:45:1d:aa:f4:18:bd:98:8b:3d:f9:4f:2e:95:
2c:1d:4c:e5:30:81:59:75:a6:cb:7b:b8:04:a6:84:
5f:39:af:70:24:85:42:03:de:75:32:d6:d0:4f:8e:
13:23:a2:ea:28:5d:ca:ef:08:36:67:4f:98:ed:e4:
f8:fd:6e:5f:ce:5a:c7:1e:ee:35:b7:17:2c:3b:5a:
93:22:29:54:0d:9b:d4:8b:07:3e:92:ef:6c:21:bd:
e1:75:4a:4f:74:e9:0c:fc:49:7c:0e:f3:e7:ce:20:
34:2f:cf:13:ff:dd:e2:8e:4e:f3:fa:05:b8:28:8f:
6e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A0:F6:5B:A7:C4:45:2D:C2:29:35:79:22:2B:B0:2A:02:49:D0:EC
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/FKD2W6fERS3CKTV5IiuwKgJJ0Ow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.224.0/24
77.74.226.0-77.74.229.255
109.105.193.0/24
109.105.200.0-109.105.204.255
109.105.206.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:b0:36:2a:28:f8:ac:18:08:44:65:a1:97:81:f9:8e:fe:3f:
c8:7c:d5:7b:65:1c:e5:6e:c4:df:0a:ee:62:ef:d3:12:9a:f2:
1a:aa:1a:b0:4e:42:52:42:59:99:f5:43:d7:9c:57:df:47:ba:
e2:e7:ef:07:86:c0:df:11:9b:15:60:9f:f7:df:47:2c:45:47:
99:fb:0a:88:01:60:67:60:ee:17:63:94:dc:c5:eb:b5:64:a8:
53:41:4e:0d:25:c4:ca:03:00:68:d7:75:fb:00:b3:66:3d:1c:
e3:db:1f:35:75:b9:f6:dd:4d:c9:7b:0b:61:e0:cb:06:86:40:
31:e7:ac:0b:ba:fe:f2:96:22:fb:f0:e5:bd:6a:6f:98:9f:f6:
34:20:b5:3f:b2:71:a2:53:1c:fa:b7:6e:67:af:a1:a2:a1:1c:
36:01:21:de:ad:1c:b6:33:08:8e:03:b4:a9:07:41:76:44:1f:
0d:5f:7d:de:45:e1:2a:36:75:26:35:a7:40:09:19:c6:78:6d:
c3:e2:7d:27:2f:98:d4:c0:b8:43:d8:e6:34:f7:48:28:cb:e0:
df:59:fd:1b:e8:2c:a0:2a:80:e8:c8:19:1a:d0:bb:c9:09:9d:
2b:5b:3e:fa:88:b1:21:0d:d3:f3:23:1b:e5:2d:f0:a2:f4:15:
7e:fa:56:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org