Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/l1Qr6NV1A0KQKdVVurIpRpzNteg.roa
File: l1Qr6NV1A0KQKdVVurIpRpzNteg.roa (raw, json)
Hash identifier: 0nJnvTPO46IZow5UAc72OYDbck58Y7sE2S72IKchlEM=
Subject key identifier: 97:54:2B:E8:D5:75:03:42:90:29:D5:55:BA:B2:29:46:9C:CD:B5:E8
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 01844282F80161C85290FCD82702E41DB7FC
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/l1Qr6NV1A0KQKdVVurIpRpzNteg.roa
Signing time: Fri 04 Nov 2022 11:59:49 +0000
ROA not before: Fri 04 Nov 2022 11:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210636
IP address blocks: 77.74.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:42:82:f8:01:61:c8:52:90:fc:d8:27:02:e4:1d:b7:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Nov 4 11:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97542be8d57503429029d555bab229469ccdb5e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3d:30:7e:52:02:db:b5:27:22:e6:76:26:cc:
48:65:4e:b4:54:44:70:85:5b:06:81:49:14:d2:97:
09:2d:eb:86:84:82:37:9f:af:6f:18:74:31:d3:fb:
8a:86:29:6f:f8:e8:66:49:6e:6e:95:69:78:b0:9e:
3b:9c:15:f4:e0:6b:dc:96:eb:ba:ec:08:b6:fc:d3:
63:ba:5a:27:a2:99:4a:53:44:09:0c:45:32:f0:09:
6b:05:88:07:30:00:2a:2e:d9:86:1b:8e:95:53:63:
c3:a9:ba:76:0b:16:79:59:4d:15:b0:4a:05:e3:55:
97:d8:4f:1d:2a:33:d8:97:b8:75:4a:95:c2:7b:c4:
8d:d1:f3:d9:0e:e1:bc:ae:c0:1a:d0:21:7e:28:81:
ef:ad:6f:e0:2c:63:97:cd:83:9c:a2:99:b0:7e:99:
53:55:2a:98:77:82:5f:40:f0:8c:c7:51:05:33:e8:
ae:11:3e:5a:56:1e:e5:c4:65:08:8c:07:23:7d:52:
1b:a8:5c:eb:23:f9:8e:2d:98:b3:e9:f3:d6:0b:05:
1e:47:10:80:99:8e:f5:e7:9b:87:d6:8c:d1:73:68:
3b:ae:b8:45:45:58:a6:7e:18:3c:53:38:66:dd:05:
8e:23:82:cc:39:ff:cb:eb:49:ee:0d:34:12:4d:89:
1f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:54:2B:E8:D5:75:03:42:90:29:D5:55:BA:B2:29:46:9C:CD:B5:E8
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/l1Qr6NV1A0KQKdVVurIpRpzNteg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.231.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:60:f9:fb:cc:43:b1:30:68:c8:fa:af:39:bc:f6:7d:9e:f7:
9c:b4:67:07:13:5a:f3:80:fa:d7:ff:75:f5:6f:87:fd:3d:e4:
8a:c5:30:67:59:4f:56:94:98:48:21:d0:26:e1:43:39:33:ab:
76:f1:fc:29:7c:cf:67:5d:c9:ec:37:2c:ce:cd:7f:bc:69:ef:
ec:94:78:09:8d:3e:da:69:dd:eb:b9:b8:53:0b:1c:c6:3e:b4:
e4:25:b5:83:62:09:5c:8f:ce:06:b5:8f:ed:cf:9e:8b:76:a6:
37:62:be:bd:96:e6:35:0d:31:0a:cd:38:30:7d:80:1a:4e:f4:
16:a7:00:cd:87:77:c4:13:4e:85:ba:43:0b:df:2c:96:f7:81:
78:2f:a2:ab:19:b2:c7:53:da:25:95:6d:9d:fe:19:05:55:3b:
dc:19:2e:30:2c:61:80:2d:67:df:7e:2c:ce:ff:43:d8:6b:b0:
10:f0:16:af:0e:fa:e6:de:3b:69:81:d8:2f:5b:82:13:af:f2:
8b:2d:54:11:26:55:da:b4:dc:af:0f:0d:67:74:b3:2e:66:72:
47:f4:4d:2d:50:55:e2:74:27:7b:a1:12:00:9a:26:dd:dc:4e:
8d:c2:c9:0f:c8:ec:ef:13:bb:78:ce:6e:c0:3a:25:af:c8:77:
a2:19:47:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org