Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/N3zrE0q-UmJW65eJ3neZ0LEX98g.roa
File: N3zrE0q-UmJW65eJ3neZ0LEX98g.roa (raw, json)
Hash identifier: htdIg3s3fs86gIOF7aW1or3B7XlSV45ZTnnVNNSJXcI=
Subject key identifier: 37:7C:EB:13:4A:BE:52:62:56:EB:97:89:DE:77:99:D0:B1:17:F7:C8
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 01F77B4C
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/N3zrE0q-UmJW65eJ3neZ0LEX98g.roa
Signing time: Wed 02 Mar 2022 13:38:56 +0000
ROA not before: Wed 02 Mar 2022 13:38:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 77.74.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32996172 (0x1f77b4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Mar 2 13:38:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=377ceb134abe526256eb9789de7799d0b117f7c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cd:fc:25:51:02:5a:99:b9:10:a6:c1:36:93:
31:92:52:88:9e:01:2e:02:9e:12:c3:b1:e9:3c:cf:
d1:06:4a:66:32:c5:69:6b:4a:aa:7d:64:d9:e4:dd:
b6:14:d7:90:b9:e5:d5:dc:9f:4d:a0:71:6c:f7:a1:
d2:f7:a5:25:08:b7:76:d0:f8:8b:a9:48:92:bd:16:
d9:82:9d:f6:6e:a1:0c:1e:03:1d:fc:d2:1b:7d:6f:
01:28:c0:af:aa:64:6f:f3:b1:42:de:95:ca:9d:f2:
5b:bb:b1:c2:00:b3:cd:b6:17:76:20:80:82:7c:11:
b6:52:61:5b:ba:b3:9f:15:d3:5a:ac:7a:82:36:45:
2c:88:82:3c:fa:5c:d3:82:b3:b4:19:9e:81:b2:7d:
cb:2d:07:52:ab:c3:95:b1:20:69:57:25:3f:db:ab:
56:d1:e3:a0:33:0e:40:21:05:54:1d:b1:5b:fd:9f:
5b:d5:3f:6a:45:d0:2d:c1:21:ba:73:3c:ff:0d:3f:
df:5d:aa:1c:1b:c0:59:90:7d:61:60:3e:c6:b6:93:
2e:2a:2b:0b:20:7b:ae:29:f4:89:81:d2:ee:c2:0a:
58:7a:8c:eb:d9:e5:5f:2b:3f:54:90:f6:c2:56:3b:
23:72:55:9d:1e:a3:27:7e:6f:6b:d3:c1:5d:74:17:
f6:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:7C:EB:13:4A:BE:52:62:56:EB:97:89:DE:77:99:D0:B1:17:F7:C8
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/N3zrE0q-UmJW65eJ3neZ0LEX98g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.231.0/24
Signature Algorithm: sha256WithRSAEncryption
43:ed:86:da:69:2b:04:67:1e:ab:9c:4d:63:29:74:5d:5c:81:
47:ad:9f:40:7d:56:c0:8f:30:cd:b3:35:8c:bd:2f:cd:03:41:
76:e5:6d:54:d5:85:b7:e7:b4:35:cc:13:78:07:2d:fa:d0:31:
3d:9b:35:80:83:1d:af:57:8d:a9:92:cc:e4:e3:d4:03:94:2c:
51:59:a2:43:0b:d8:e9:d6:ef:42:8c:12:82:ce:87:db:a8:c0:
03:75:0f:b0:d8:cd:f7:dc:98:59:5b:92:69:68:61:83:4f:9f:
4d:1d:2b:b6:0d:bb:40:af:84:39:e6:b9:d7:ad:49:f4:85:91:
b3:de:40:54:d8:ae:63:ed:c9:aa:e8:ae:6c:17:06:48:eb:1f:
0e:31:04:3d:50:8e:01:85:e3:81:60:68:ff:ed:f5:bc:aa:87:
13:a5:9c:06:75:8f:bb:f0:e1:67:a1:bf:82:c4:86:d2:75:1a:
16:bc:d2:cb:3f:41:df:b2:0e:1e:04:f2:6d:9b:9c:32:9f:ee:
ed:da:b5:87:05:6e:46:5d:86:36:1c:d2:e4:d7:9b:b4:d2:ad:
3e:f1:59:30:91:79:28:b7:48:2b:52:1d:b9:04:9f:76:81:21:
d5:13:9d:ab:6b:fc:f1:30:42:f2:dc:d1:db:55:8a:28:7e:7e:
49:20:aa:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org