Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/QmuXHvA4pq2Q_ECKWv6IMrzb6BQ.roa
File: QmuXHvA4pq2Q_ECKWv6IMrzb6BQ.roa (raw, json)
Hash identifier: q6+TWKNlECIOMWgfEB5gjA1zb4uK7BCrbWRK3RUc/X8=
Subject key identifier: 42:6B:97:1E:F0:38:A6:AD:90:FC:40:8A:5A:FE:88:32:BC:DB:E8:14
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01840A59EFA41F027037AD0F5A74A0862225
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/QmuXHvA4pq2Q_ECKWv6IMrzb6BQ.roa
Signing time: Mon 24 Oct 2022 14:16:16 +0000
ROA not before: Mon 24 Oct 2022 14:16:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42910
IP address blocks: 77.92.152.0/24 maxlen: 24
188.132.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0a:59:ef:a4:1f:02:70:37:ad:0f:5a:74:a0:86:22:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Oct 24 14:16:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=426b971ef038a6ad90fc408a5afe8832bcdbe814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5a:44:04:68:39:58:d4:5a:5d:0a:4f:30:64:
6e:b7:14:4c:9e:7c:94:b3:a4:62:9f:ef:da:87:d8:
71:e8:29:77:79:17:71:50:1d:b3:de:da:d5:a8:f6:
f8:b1:c9:31:d7:12:f0:d1:73:ed:18:ca:44:be:5f:
c4:4a:fb:3a:06:7a:9f:cd:3b:e1:6e:69:ff:71:28:
87:98:1c:5e:80:99:3b:b3:b4:90:b8:f3:ad:87:4b:
60:46:b1:18:9e:66:e4:9e:ef:94:a9:7c:4f:2b:81:
0d:ed:ae:9d:a6:75:92:63:c1:98:ae:4e:5e:ad:73:
89:68:a8:e0:3e:cf:95:16:f5:75:a0:9c:8e:3d:b0:
6c:3d:e3:cd:c3:4e:33:ee:d6:64:05:65:30:4f:2d:
47:09:b2:9a:75:0f:9d:34:14:24:94:e4:b5:3b:a7:
9e:ea:ae:09:17:f6:a2:7c:e3:8b:37:d8:b5:b4:8f:
b3:c8:4e:8c:92:c3:ea:6b:59:7a:99:1f:ae:ef:c4:
83:6b:f9:f8:9c:f6:fa:d8:15:b4:e0:3b:44:61:83:
89:3b:29:8a:29:31:0f:3d:a7:95:77:6c:6b:98:4a:
b4:57:93:3d:2f:78:96:3a:fb:fd:ee:7f:cb:69:d2:
43:88:14:c2:07:c5:0a:07:f1:4f:c6:7c:ba:22:a2:
0b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:6B:97:1E:F0:38:A6:AD:90:FC:40:8A:5A:FE:88:32:BC:DB:E8:14
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/QmuXHvA4pq2Q_ECKWv6IMrzb6BQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.152.0/24
188.132.170.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:6b:17:52:71:c6:d8:03:70:7a:73:09:3c:a9:c8:76:1c:71:
39:76:09:18:af:e5:36:80:45:c1:04:69:c2:cd:5d:ad:ea:1c:
77:45:43:83:c1:a8:70:a3:ac:64:8a:c4:a5:1b:43:de:2e:66:
7c:a7:9b:73:3b:66:ad:11:4d:72:68:e0:00:9e:ab:fc:0d:b2:
36:cf:03:e6:4a:12:80:dc:89:66:f2:bf:fc:46:b3:2c:34:32:
96:5b:91:6e:a7:9a:62:d9:07:e4:d0:33:22:23:d8:e3:cd:c5:
6f:c9:bf:d2:af:bc:70:7f:61:3e:6d:1b:df:4a:37:da:2c:31:
ed:82:e8:2a:28:a4:10:ff:09:6b:27:51:9f:ab:5c:c4:d6:52:
e4:10:94:c3:12:9a:87:69:ab:b2:8d:b3:5e:09:a5:48:39:9a:
87:ec:05:67:4e:1e:4f:41:c6:d8:09:fb:c8:38:f9:d4:93:ed:
4a:71:54:4c:ee:a4:59:66:93:72:71:b4:ab:c7:a5:84:c0:25:
21:49:e7:57:56:64:43:2a:f9:6e:16:8a:fb:c9:a3:18:00:c9:
9e:8d:0f:8e:30:26:07:48:27:24:91:d2:b3:4b:17:cb:ae:d7:
54:17:94:43:7d:f1:a3:7c:4b:c4:dd:0b:94:9d:1b:82:e4:28:
6b:1e:b0:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org