Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/PtkGwaZEeU9X3C4A41VAuOnjPk4.roa
File: PtkGwaZEeU9X3C4A41VAuOnjPk4.roa (raw, json)
Hash identifier: eOckT0D3agH1/D3laBE8G5HncRDYlGspBMoCAqzXpPg=
Subject key identifier: 3E:D9:06:C1:A6:44:79:4F:57:DC:2E:00:E3:55:40:B8:E9:E3:3E:4E
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 018220D2D13AB77FA548246359907E19F829
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/PtkGwaZEeU9X3C4A41VAuOnjPk4.roa
Signing time: Thu 21 Jul 2022 12:54:23 +0000
ROA not before: Thu 21 Jul 2022 12:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43179
IP address blocks: 77.74.226.0/24 maxlen: 24
77.74.224.0/24 maxlen: 24
77.74.227.0/24 maxlen: 24
109.105.206.0/24 maxlen: 24
109.105.204.0/24 maxlen: 24
109.105.202.0/24 maxlen: 24
109.105.203.0/24 maxlen: 24
109.105.201.0/24 maxlen: 24
109.105.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:d2:d1:3a:b7:7f:a5:48:24:63:59:90:7e:19:f8:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jul 21 12:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ed906c1a644794f57dc2e00e35540b8e9e33e4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:65:e4:50:a2:c6:8c:dd:4f:6f:46:59:b5:83:
67:80:e8:40:5c:b2:90:cc:09:72:76:9e:ed:5e:6b:
8f:ca:93:c4:72:ec:1a:c1:00:bc:b9:5d:64:c0:09:
b8:8c:af:4c:c0:97:5b:34:06:09:53:47:4d:1e:bf:
79:92:4c:52:a0:e4:4d:9e:5f:80:fa:bd:7b:93:be:
5d:71:1c:0d:b1:d7:69:26:ac:4e:fc:70:44:09:f5:
5c:f1:30:e4:25:8b:21:58:6a:8e:f8:bc:7c:89:c1:
3e:a8:c4:76:e9:50:5a:29:b3:62:dd:b2:c2:a3:d7:
83:6b:34:41:ff:e2:50:4b:9c:19:80:6b:d0:2f:c0:
95:f9:42:20:7f:9c:b8:78:20:c9:d8:ef:27:95:41:
b5:d5:65:d5:10:38:11:ae:ce:66:e5:b6:1c:d6:79:
19:3c:67:07:8b:27:81:67:b9:15:a9:ad:c0:48:25:
a5:12:52:ff:f8:fd:44:25:5c:4b:44:04:92:de:5b:
36:79:af:36:a9:ae:75:cb:df:b6:a7:fd:93:6f:39:
f6:a6:8b:53:7d:72:aa:f7:31:af:02:20:55:1c:f4:
4b:23:01:6c:80:fd:9a:46:54:bb:8a:47:0e:35:a3:
e5:6d:2b:2a:a0:22:e8:a0:bc:f7:79:ad:e0:25:51:
cb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D9:06:C1:A6:44:79:4F:57:DC:2E:00:E3:55:40:B8:E9:E3:3E:4E
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/PtkGwaZEeU9X3C4A41VAuOnjPk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.224.0/24
77.74.226.0/23
109.105.200.0-109.105.204.255
109.105.206.0/24
Signature Algorithm: sha256WithRSAEncryption
88:3e:34:2c:98:98:79:da:fc:57:44:d1:81:61:de:2f:7b:54:
75:aa:94:aa:21:4f:fc:c6:c8:b0:4e:c3:0d:fe:52:8f:95:b3:
02:51:6d:a5:6b:b2:03:6d:6c:8f:56:12:14:6f:6f:31:52:5b:
4c:ee:09:0c:0b:10:af:47:4d:50:a1:fa:6e:74:92:f6:0e:e5:
57:8d:f0:46:7a:a3:cb:cf:64:88:b4:f2:81:5d:11:43:7d:42:
27:15:53:ef:15:7a:aa:2c:32:39:94:ad:73:54:14:60:69:cd:
b1:35:53:51:1e:87:af:9f:5f:ee:be:38:80:71:12:b0:d8:da:
ee:19:70:6e:3d:18:f7:d3:26:93:fb:19:77:e8:cf:5a:ca:ca:
c4:14:ed:8d:0a:9e:1a:45:3a:42:6d:6a:1e:1e:9f:26:45:a2:
2d:3f:90:52:81:5a:ff:ae:a8:44:ec:12:34:ea:e7:12:55:58:
d2:4a:eb:71:e4:fc:a3:0b:a9:27:eb:5e:e6:00:51:0e:c9:23:
d0:98:c8:a0:bc:49:74:aa:d1:0b:31:d0:a3:3f:ba:26:ab:36:
f1:a6:fe:aa:52:f4:83:93:b8:19:cf:d5:f8:35:d7:ba:f8:68:
89:f0:61:e6:ff:d4:bb:93:ca:84:08:b1:f7:ed:4e:9e:0f:44:
16:66:c6:ff
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAYIg0tE6t3+lSCRjWZB+GfgpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YzYwYTBkMmQ3MGE5MzM3ZDBiZGE1NmQxYWQ1OTZhYzFm
NjljZGEwHhcNMjIwNzIxMTI1NDIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZWQ5MDZjMWE2NDQ3OTRmNTdkYzJlMDBlMzU1NDBiOGU5ZTMzZTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWXkUKLGjN1Pb0ZZtYNngOhAXLKQ
zAlydp7tXmuPypPEcuwawQC8uV1kwAm4jK9MwJdbNAYJU0dNHr95kkxSoORNnl+A
+r17k75dcRwNsddpJqxO/HBECfVc8TDkJYshWGqO+Lx8icE+qMR26VBaKbNi3bLC
o9eDazRB/+JQS5wZgGvQL8CV+UIgf5y4eCDJ2O8nlUG11WXVEDgRrs5m5bYc1nkZ
PGcHiyeBZ7kVqa3ASCWlElL/+P1EJVxLRASS3ls2ea82qa51y9+2p/2Tbzn2potT
fXKq9zGvAiBVHPRLIwFsgP2aRlS7ikcONaPlbSsqoCLooLz3ea3gJVHL8wIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFD7ZBsGmRHlPV9wuAONVQLjp4z5OMB8GA1UdIwQY
MBaAFNjGCg0tcKkzfQvaVtGtWWrB9pzaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUt
ZGQyOTRjMzc4ZjZjLzEvUHRrR3dhWkVlVTlYM0M0QTQxVkF1T25qUGs0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUtZGQyOTRjMzc4ZjZj
LzEvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQATUrgAwQB
TUriMAwDBANtacgDBABtacwDBABtac4wDQYJKoZIhvcNAQELBQADggEBAIg+NCyY
mHna/FdE0YFh3i97VHWqlKohT/zGyLBOww3+Uo+VswJRbaVrsgNtbI9WEhRvbzFS
W0zuCQwLEK9HTVCh+m50kvYO5VeN8EZ6o8vPZIi08oFdEUN9QicVU+8VeqosMjmU
rXNUFGBpzbE1U1Eeh6+fX+6+OIBxErDY2u4ZcG49GPfTJpP7GXfoz1rKysQU7Y0K
nhpFOkJtah4enyZFoi0/kFKBWv+uqETsEjTq5xJVWNJK63Hk/KMLqSfrXuYAUQ7J
I9CYyKC8SXSq0Qsx0KM/uiarNvGm/qpS9IOTuBnP1fg117r4aInwYeb/1LuTyoQI
sfftTp4PRBZmxv8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org