Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/ZtS2nxMbp7Ukle1NezXNpsuSUnY.roa
File: ZtS2nxMbp7Ukle1NezXNpsuSUnY.roa (raw, json)
Hash identifier: D3ldJgb0kq1O9Gr8sVF2KmceLWj+Q6cLr5ZeAc7caSs=
Subject key identifier: 66:D4:B6:9F:13:1B:A7:B5:24:95:ED:4D:7B:35:CD:A6:CB:92:52:76
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 0193E813
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/ZtS2nxMbp7Ukle1NezXNpsuSUnY.roa
Signing time: Thu 27 Jan 2022 10:44:33 +0000
ROA not before: Thu 27 Jan 2022 10:44:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 77.74.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26470419 (0x193e813)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jan 27 10:44:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66d4b69f131ba7b52495ed4d7b35cda6cb925276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:66:30:c4:8e:85:7d:b0:48:62:a5:e1:d9:4c:
01:9a:08:9c:c6:f2:3a:9a:a0:f4:54:12:f5:ee:b2:
1b:bc:67:e0:7c:a7:ab:52:94:91:01:bd:84:54:10:
01:39:88:20:75:6d:75:b8:9e:16:1e:6d:2c:c6:8a:
77:f8:12:c2:15:92:80:c7:17:f4:80:a2:e8:f7:29:
1d:de:1f:bc:99:9d:8d:da:d6:40:25:93:9c:ee:da:
07:21:41:b1:3f:1a:1e:3d:5a:b7:d9:1a:58:22:34:
f0:0f:98:c3:4e:64:b5:8b:ad:8a:16:57:9c:44:ae:
f1:bc:9e:30:78:f3:f4:1e:63:75:55:57:aa:a6:29:
73:b4:08:8c:fa:8b:57:7b:5d:9d:58:0d:e0:c9:40:
75:4b:2b:d7:96:eb:8e:3c:aa:a6:91:ba:28:7c:30:
38:d4:10:c2:ca:91:7a:15:43:40:05:ed:89:45:49:
a4:1c:55:b8:2c:4b:6c:de:92:29:b4:4f:f6:dd:9b:
a3:7e:8d:46:66:18:f5:48:fd:4f:95:b9:2c:57:b6:
a7:8b:27:19:b7:c0:44:fe:5a:fa:68:7f:f9:d4:69:
ef:95:28:38:30:31:bb:fb:b9:66:ba:ff:4b:d9:d3:
01:43:6f:4e:a0:e3:3d:0c:c1:ef:8f:f6:d1:ed:0e:
51:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D4:B6:9F:13:1B:A7:B5:24:95:ED:4D:7B:35:CD:A6:CB:92:52:76
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/ZtS2nxMbp7Ukle1NezXNpsuSUnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.230.0/24
Signature Algorithm: sha256WithRSAEncryption
82:39:84:bf:a9:32:04:75:b8:57:46:43:cd:49:9d:42:a8:6a:
40:03:4b:70:5c:2b:77:8f:43:13:bc:4f:6f:bb:df:bc:6b:b9:
7f:77:54:90:bf:0f:7b:d5:50:7c:60:47:54:d2:d0:4d:8b:4b:
8b:36:c6:80:bc:e3:7f:4d:8f:77:0e:20:cc:88:80:e0:06:29:
f9:1b:68:bb:da:03:b2:33:7b:73:b5:39:b1:b6:a2:27:b9:e4:
45:a4:ec:83:a9:e8:4b:90:09:13:4d:72:16:e1:2f:e7:c8:0c:
f6:51:ce:b7:79:c7:ef:1b:4a:98:40:03:cd:42:18:f2:c6:ac:
ba:55:fc:91:ee:96:62:50:85:f9:36:08:0b:ee:a2:6c:e1:63:
7c:43:57:46:29:54:ca:22:d3:d6:5f:a1:bd:99:37:32:b1:e8:
dd:72:9a:3c:d5:55:bb:31:1a:29:f5:fc:9c:08:4d:cc:55:a5:
eb:0b:df:7c:66:c2:2d:7f:4d:60:69:48:44:f3:18:41:fd:48:
d0:fe:4e:46:2b:28:e2:4f:a7:d9:b5:b3:8c:1a:43:de:07:70:
13:dc:40:21:48:f0:bd:4e:47:c8:3f:25:78:e3:22:11:93:5a:
02:e7:b0:60:86:22:c2:c2:14:bc:2d:ab:c6:1f:cc:e7:13:ab:
9e:0d:76:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org