Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/dZNgi_5qwfs9eztnGxsDKmQS3HM.roa
File: dZNgi_5qwfs9eztnGxsDKmQS3HM.roa (raw, json)
Hash identifier: e4206ky4j6bvd0E9JKwYlPpLO0GsGbWRTFB7aak/eAw=
Subject key identifier: 75:93:60:8B:FE:6A:C1:FB:3D:7B:3B:67:1B:1B:03:2A:64:12:DC:73
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 042E34AB
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/dZNgi_5qwfs9eztnGxsDKmQS3HM.roa
Signing time: Tue 05 Apr 2022 12:56:16 +0000
ROA not before: Tue 05 Apr 2022 12:56:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44620
IP address blocks: 77.92.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70137003 (0x42e34ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Apr 5 12:56:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7593608bfe6ac1fb3d7b3b671b1b032a6412dc73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ed:70:63:0e:a0:1d:7a:4f:8c:1e:da:1d:68:
f9:47:11:9f:97:f4:36:f6:5a:6f:63:3c:c0:56:d2:
96:8c:40:87:a1:b3:1d:35:bd:0e:dc:a3:89:38:09:
e6:c4:e5:d0:80:8c:4e:73:3c:1e:67:8a:24:cb:42:
e0:d2:6b:0d:4d:78:16:c6:aa:48:c1:68:b7:7e:2b:
ae:0d:62:72:cd:7a:4e:da:4c:90:91:36:a4:cd:26:
7d:61:b2:a0:2d:b4:65:fb:3a:f8:95:f7:87:e0:44:
b4:10:b6:2a:cd:d3:37:e4:12:7c:df:fb:a8:6e:60:
85:99:ba:b5:ee:e1:50:1b:c2:2a:81:bd:72:c8:37:
a1:4c:d9:a6:28:6b:b5:ea:93:90:3a:d0:a4:7f:a0:
87:31:08:b7:1b:54:0d:76:64:33:e2:e3:60:0a:98:
d0:73:0d:ef:90:04:24:6a:67:3e:88:d1:0a:27:46:
ce:46:0a:e1:3e:91:52:f0:ff:e9:bf:06:97:0e:e9:
09:c3:1d:eb:38:ef:c1:28:5a:34:69:82:25:2c:c6:
79:a5:8a:06:a9:cb:1d:a0:91:9a:80:7a:11:5f:e0:
22:3e:74:dd:a9:06:60:7c:30:31:6c:8f:de:37:ed:
a4:53:93:e8:02:36:f8:97:9b:f1:2f:db:31:cb:14:
ad:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:93:60:8B:FE:6A:C1:FB:3D:7B:3B:67:1B:1B:03:2A:64:12:DC:73
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/dZNgi_5qwfs9eztnGxsDKmQS3HM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.151.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:cb:b4:c7:ca:9c:a5:7e:a2:12:0b:f7:c8:54:b9:1c:75:94:
30:b8:f4:b4:26:98:7a:c6:09:de:26:2e:fc:db:72:c8:29:9e:
68:34:c3:56:ec:43:a1:c3:bd:4f:88:c5:be:0c:22:34:31:5e:
12:6a:80:d9:d4:25:c8:59:76:89:6b:84:4f:45:0f:27:85:d6:
9c:45:84:1d:27:57:fd:ae:d8:90:aa:31:41:be:2a:49:08:ee:
7d:cc:ab:ff:74:e8:0e:95:6e:19:2d:9d:5b:e5:b5:b1:ee:1a:
6a:5c:41:32:71:9f:b3:67:79:9d:2d:27:a1:8e:f5:42:94:e7:
b3:81:55:1f:2e:e5:b7:3d:c3:d7:d0:07:19:c4:0e:db:ad:58:
08:df:6b:1a:f4:e9:b4:15:7f:00:35:e0:ac:75:1d:4b:5d:d2:
9b:7d:cc:80:2e:1e:bf:9f:74:6f:c8:29:6f:e9:bf:72:5a:c3:
38:c5:99:3c:fa:08:ca:b8:e8:1d:d3:c4:69:d0:a6:8c:a4:db:
86:d7:3c:98:6e:41:41:3b:99:83:13:05:14:15:68:d9:c9:9c:
5f:62:1e:6b:0a:c3:42:d9:ec:d1:dc:b2:1f:36:ec:44:a0:46:
24:aa:05:ce:ff:b6:dc:a3:b2:f4:e9:38:e6:89:4f:3b:26:87:
1c:15:f7:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org