Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/y1iXWow5Vwxqg6Cd9dMhx_0otTo.roa
File: y1iXWow5Vwxqg6Cd9dMhx_0otTo.roa (raw, json)
Hash identifier: eO+44qVAdQ6qCvEFznS2x6oJAXFCFnFAqY+kNCQxf+w=
Subject key identifier: CB:58:97:5A:8C:39:57:0C:6A:83:A0:9D:F5:D3:21:C7:FD:28:B5:3A
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 03230C11
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/y1iXWow5Vwxqg6Cd9dMhx_0otTo.roa
Signing time: Mon 04 Jul 2022 10:42:25 +0000
ROA not before: Mon 04 Jul 2022 10:42:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 77.74.231.0/24 maxlen: 24
109.105.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52628497 (0x3230c11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jul 4 10:42:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb58975a8c39570c6a83a09df5d321c7fd28b53a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8e:83:48:f9:c0:41:64:55:5b:b5:4c:3c:07:
8c:4d:3c:4e:d6:16:04:39:47:62:4e:ac:fb:ae:5d:
73:5c:39:81:d6:6a:a4:09:ea:b2:a9:fc:4c:00:1b:
23:48:42:c6:c6:21:12:8a:c6:23:b9:53:0f:f3:f6:
d6:2f:95:9c:17:47:33:d5:00:83:0c:94:22:a1:72:
5d:1a:09:29:bb:0a:ef:7d:7f:02:98:c8:52:b9:20:
3f:1f:3a:99:65:ed:37:28:a4:64:c4:91:e3:6b:f3:
4e:50:e6:11:e9:d2:d8:76:bf:db:a0:ef:18:b8:74:
45:22:69:ee:be:2e:e7:42:cc:ea:87:e9:4d:9a:d4:
97:27:3e:47:71:97:ad:b6:15:36:9b:c1:96:32:71:
21:e6:f4:cb:41:68:ef:30:6c:8c:5a:2a:2b:a0:41:
3f:68:77:98:b0:9c:e3:23:a9:cb:8f:13:c5:9a:f6:
35:b3:98:9d:e6:44:62:df:a7:fe:07:d9:4d:22:5f:
16:12:a4:dc:35:f3:16:4a:0f:6b:0b:62:74:00:47:
4d:05:51:86:0d:b1:47:26:d0:03:7a:68:1d:00:97:
fe:7d:f4:de:11:fc:c7:20:0a:8e:8e:4a:1b:8f:30:
ff:bf:66:2f:eb:c7:95:e9:c4:4b:38:36:9c:43:b7:
d1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:58:97:5A:8C:39:57:0C:6A:83:A0:9D:F5:D3:21:C7:FD:28:B5:3A
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/y1iXWow5Vwxqg6Cd9dMhx_0otTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.231.0/24
109.105.192.0/24
Signature Algorithm: sha256WithRSAEncryption
13:f7:c7:98:46:6c:46:57:36:0f:3c:b7:d9:92:2c:03:d2:3a:
61:90:74:f1:2e:ca:28:be:34:32:77:89:3b:a9:6a:c8:8d:59:
c6:06:59:84:2f:5f:73:a0:22:be:c3:c3:ba:9d:88:d8:ed:e7:
17:b4:87:37:88:a5:ea:89:7a:ac:b5:12:7f:d2:e7:f7:4c:84:
75:ae:23:ba:59:a9:88:9f:9e:58:fe:87:45:f6:69:4d:1b:3e:
f8:62:dd:2a:6c:bb:b6:6d:14:49:0e:f4:1a:a0:c2:fb:21:cd:
13:03:d2:38:61:66:fd:b7:a8:3c:af:3f:7a:bb:48:57:2e:3c:
a7:ec:ff:0a:a4:61:4f:48:68:0c:a2:27:4e:41:cd:ac:d3:7f:
de:91:2d:b7:b2:bd:fb:d3:62:17:cb:5d:ce:30:3a:ff:24:99:
a4:05:19:5a:cf:bf:f9:40:75:ad:6f:26:05:9c:e0:58:ff:22:
17:38:c3:16:02:05:64:a2:45:7d:bb:91:06:e0:55:8f:22:0b:
fe:70:22:a4:9b:01:73:2d:4c:19:32:75:a7:df:a7:75:e4:af:
6e:c1:e5:b0:a6:70:0c:2a:56:b2:9c:9b:d7:07:4b:05:00:c7:
05:69:c8:df:76:41:d0:f0:e1:b1:e6:3d:5b:9e:3a:62:f2:a8:
67:61:db:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org