Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/R-b4JYtYC7vuRafw4d6H6p2CRy0.roa
File: R-b4JYtYC7vuRafw4d6H6p2CRy0.roa (raw, json)
Hash identifier: D3IamF2eVi9IH/tMoBJ3RNB1LViiJHhMK60J09ROMQM=
Subject key identifier: 47:E6:F8:25:8B:58:0B:BB:EE:45:A7:F0:E1:DE:87:EA:9D:82:47:2D
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 0183832A91D47CC3C460D953DBC815271D1D
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/R-b4JYtYC7vuRafw4d6H6p2CRy0.roa
Signing time: Wed 28 Sep 2022 08:15:48 +0000
ROA not before: Wed 28 Sep 2022 08:15:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 77.74.231.0/24 maxlen: 24
109.105.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:83:2a:91:d4:7c:c3:c4:60:d9:53:db:c8:15:27:1d:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Sep 28 08:15:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47e6f8258b580bbbee45a7f0e1de87ea9d82472d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:0e:95:ab:25:b6:46:84:ff:7f:b2:50:df:ee:
78:76:00:bb:70:bd:5f:71:10:3b:a1:5d:49:45:c4:
98:b5:bf:3e:f4:9f:3a:b8:37:7a:1f:7c:c3:58:b3:
65:f2:dd:7c:21:71:49:77:a3:23:14:c1:59:65:8b:
5d:0e:71:e6:c4:b4:8d:06:03:3f:38:30:7b:47:c1:
43:21:91:3a:c0:c9:38:1c:45:58:83:7e:40:a5:4b:
77:d8:c3:f8:d1:96:0b:91:df:f0:70:92:bc:97:fd:
c4:09:72:d9:60:d5:0c:5f:6f:44:e0:19:cf:8c:d6:
d3:b9:2a:03:6b:a1:19:c5:1c:b7:e5:3a:e8:3e:74:
cb:0c:d2:f2:7e:e1:35:05:70:31:4d:9f:1d:73:00:
d1:e7:98:08:7f:4b:9e:6f:c0:c2:7a:9f:f4:36:fc:
a3:9b:cf:0f:f7:c5:cf:28:01:dc:a9:f2:59:fe:d8:
66:59:2d:99:d9:fb:d3:c0:b9:1b:15:b9:57:ab:ba:
d1:78:ec:31:21:e9:06:51:96:dd:90:51:8e:42:bf:
f1:8f:5e:cd:3c:c1:ae:35:06:f5:5d:b4:b0:fd:ac:
70:d6:30:26:9b:c8:3f:a7:e7:5a:8f:1b:29:77:ad:
98:b0:39:0c:39:8e:8a:a4:29:71:d0:2b:13:2a:a3:
4f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:E6:F8:25:8B:58:0B:BB:EE:45:A7:F0:E1:DE:87:EA:9D:82:47:2D
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/R-b4JYtYC7vuRafw4d6H6p2CRy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.231.0/24
109.105.198.0/24
Signature Algorithm: sha256WithRSAEncryption
55:19:65:2c:4b:f4:43:00:2a:7a:0d:ff:a6:20:dc:c9:50:5b:
54:f2:30:eb:10:7f:c1:82:79:84:64:2c:3c:8c:b0:74:d9:7c:
44:7c:6f:6a:39:b4:71:cf:72:33:70:ab:f5:2e:52:dd:62:05:
ad:91:0d:ee:5d:61:9c:bb:b6:ec:8d:dc:87:fc:97:eb:0c:d1:
77:21:a3:66:09:3c:91:ba:5c:39:f8:0b:24:98:81:77:3f:a7:
58:f1:41:94:a5:ed:8f:21:3b:03:22:3f:25:ca:c3:f5:67:44:
4b:11:0a:51:b0:44:55:ee:d4:a5:63:ed:9b:cc:56:e3:7a:b2:
0f:31:a4:f8:93:7e:61:bb:a5:98:cd:74:1e:55:a0:9d:65:38:
9d:fa:2f:31:56:32:e6:11:93:bc:e6:77:ff:f2:f7:fc:07:77:
80:31:f3:7b:ca:4f:e1:09:16:16:de:b7:cb:60:bb:32:e4:3e:
99:42:51:f6:5c:2d:0f:e3:40:f4:9e:76:e3:0d:43:c2:d5:7a:
c2:5a:90:5e:90:a1:ce:de:e4:cc:86:42:d5:cf:dd:6b:70:b5:
d7:0e:1e:93:a4:ca:8b:75:7d:26:65:70:33:cb:b7:1a:67:51:
3d:a8:a6:59:a1:69:81:41:ad:6a:80:e9:6c:9a:e5:e8:2e:2c:
a8:0f:ae:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org