Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/zvCBX98PrAEAIBBUc7Xo_70hCYc.roa
File: zvCBX98PrAEAIBBUc7Xo_70hCYc.roa (raw, json)
Hash identifier: mfdWYkW/ESlASZyQQoqB417K3gJgVxqRqLKbrq8O1wE=
Subject key identifier: CE:F0:81:5F:DF:0F:AC:01:00:20:10:54:73:B5:E8:FF:BD:21:09:87
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 018226B3F175B5221B752F84DD470600862E
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/zvCBX98PrAEAIBBUc7Xo_70hCYc.roa
Signing time: Fri 22 Jul 2022 16:18:23 +0000
ROA not before: Fri 22 Jul 2022 16:18:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 77.74.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:26:b3:f1:75:b5:22:1b:75:2f:84:dd:47:06:00:86:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jul 22 16:18:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cef0815fdf0fac010020105473b5e8ffbd210987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a0:1f:36:18:bc:c3:62:dd:51:8a:e2:17:b8:
13:26:e4:ca:89:c5:03:e6:f5:30:2b:14:6e:fb:ad:
2f:fa:a2:ec:da:5e:d8:cc:1e:2c:4a:28:95:ea:0d:
56:16:60:a0:bb:d0:ee:67:9f:38:8f:93:0a:ac:15:
e5:0c:96:e7:db:23:d9:f9:98:ea:35:7e:e8:69:98:
27:32:59:86:16:77:09:4b:01:8d:61:34:19:a7:20:
e2:c8:42:05:d7:f7:b2:14:0c:a8:0c:2d:e0:0f:ad:
7c:d2:b0:7d:aa:ce:72:99:1b:91:8b:62:27:e0:5f:
be:24:82:05:24:fa:c9:aa:1a:af:a7:0c:bd:bb:82:
ff:11:50:f6:93:b8:55:c6:76:b4:0e:d5:ff:f3:2e:
52:5c:f1:e4:b4:ca:18:0b:2c:13:0f:7e:79:69:00:
de:91:91:dc:1c:f2:52:5e:21:11:cd:85:09:43:7c:
f3:84:9c:31:af:23:f4:52:c7:09:ba:a0:34:c5:18:
ce:08:93:b4:fd:8c:62:ca:2e:17:ee:5b:8d:84:6c:
e7:d6:94:34:e8:15:1b:aa:bc:01:5d:fa:5d:fa:d8:
8f:a3:7c:e6:e7:27:da:92:49:69:74:18:d1:e6:c3:
39:d0:0c:5a:4a:24:b5:2c:86:0f:d8:e8:0e:28:0a:
4c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F0:81:5F:DF:0F:AC:01:00:20:10:54:73:B5:E8:FF:BD:21:09:87
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/zvCBX98PrAEAIBBUc7Xo_70hCYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.225.0/24
Signature Algorithm: sha256WithRSAEncryption
95:81:31:16:f2:d5:b2:1f:a5:ac:26:05:87:47:a3:74:2e:87:
84:20:2f:47:32:ca:47:fa:df:8b:27:89:8e:4b:ac:12:ae:b2:
cd:f7:6a:18:03:d9:c0:7b:70:62:43:ca:2f:69:81:52:d7:ce:
c8:5f:b7:da:6d:ed:28:05:9d:52:b3:73:0b:7b:7d:03:7a:dd:
38:c3:8a:b4:04:48:fc:6e:ca:f7:46:bc:c4:0a:dc:42:3e:fd:
cb:89:8d:f7:8b:8c:3a:83:c8:68:b4:5d:eb:0e:d1:94:01:f8:
d7:b6:cd:93:01:02:78:14:bb:7b:65:2f:73:54:2e:ad:84:90:
7f:45:f3:c4:ff:fa:1b:7b:4b:d3:96:62:e1:f5:b0:8d:0e:c6:
87:c0:af:70:21:c5:11:cb:10:ed:82:87:5a:cb:4a:7e:04:22:
62:6b:96:bb:87:0d:50:49:f9:4f:0f:80:7e:94:f5:b7:73:3f:
45:82:9f:96:36:87:26:4b:29:f4:d5:fd:46:d3:c6:2d:90:7a:
b3:3e:1a:33:73:cd:99:f8:0a:97:6a:d1:7a:8f:53:e6:68:4e:
0a:ef:f2:9f:57:e9:d9:ae:70:5c:20:c3:ab:54:1c:b6:fa:7f:
8c:4e:db:e0:d7:7f:bd:4d:e4:8b:2a:a9:38:61:16:2b:df:38:
3e:98:50:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org