Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/Ejy5GQcVgx-dVyBBrbpm37y_mnQ.roa
File: Ejy5GQcVgx-dVyBBrbpm37y_mnQ.roa (raw, json)
Hash identifier: mFmES6SstrMzRrgu+2yzcPOa7EQPBKwcMEUIJBmT65Q=
Subject key identifier: 12:3C:B9:19:07:15:83:1F:9D:57:20:41:AD:BA:66:DF:BC:BF:9A:74
Certificate issuer: /CN=535825ce8bf544170282f720a2484141568b0e7d
Certificate serial: 33E9CE05
Authority key identifier: 53:58:25:CE:8B:F5:44:17:02:82:F7:20:A2:48:41:41:56:8B:0E:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1glzov1RBcCgvcgokhBQVaLDn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/Ejy5GQcVgx-dVyBBrbpm37y_mnQ.roa
Signing time: Sat 01 Jan 2022 06:56:52 +0000
ROA not before: Sat 01 Jan 2022 06:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199224
IP address blocks: 77.74.104.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870960645 (0x33e9ce05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535825ce8bf544170282f720a2484141568b0e7d
Validity
Not Before: Jan 1 06:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=123cb9190715831f9d572041adba66dfbcbf9a74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:fd:17:1f:e2:e9:e0:8d:b6:c2:b5:f4:9e:2b:
d9:00:2f:c9:bf:cb:e2:a0:bd:e1:91:f8:cc:76:ea:
be:92:45:03:c2:1d:59:e4:41:13:91:91:e6:af:93:
2a:85:e1:e7:4d:b6:89:a0:62:92:31:e2:9c:9f:2a:
4d:98:02:56:7c:52:91:eb:50:12:99:9b:14:b4:3a:
1b:ab:2d:04:66:c7:08:2a:2b:e6:67:3b:6d:81:50:
15:4d:6f:c7:99:53:a7:db:29:59:fa:8a:7f:50:46:
98:58:ed:25:4f:ac:f1:b0:12:3c:7d:20:4d:1e:97:
b9:c6:43:89:a5:db:2f:ea:25:a5:84:87:67:3a:88:
e6:8c:3c:39:6e:90:50:b9:59:f7:d9:23:f2:c5:11:
fd:e8:a0:cc:1c:52:5e:4c:54:e2:d0:a8:26:39:38:
63:1c:f0:28:8e:72:e2:d6:02:84:bc:f8:54:fc:34:
a0:87:e2:55:79:80:e2:dc:e1:10:db:a4:95:2c:03:
50:3c:41:20:e4:54:41:cb:94:cb:9d:0a:de:17:1e:
1f:21:2c:be:eb:63:11:59:48:a6:1d:5c:5a:d2:88:
8f:78:ae:b7:b5:cf:6d:65:bf:b7:c9:f9:09:1c:ab:
97:f3:70:a1:73:29:16:6d:98:9e:9c:fa:b5:6d:09:
e4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:3C:B9:19:07:15:83:1F:9D:57:20:41:AD:BA:66:DF:BC:BF:9A:74
X509v3 Authority Key Identifier:
keyid:53:58:25:CE:8B:F5:44:17:02:82:F7:20:A2:48:41:41:56:8B:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1glzov1RBcCgvcgokhBQVaLDn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/Ejy5GQcVgx-dVyBBrbpm37y_mnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.104.0/23
Signature Algorithm: sha256WithRSAEncryption
77:3a:bf:02:07:48:ac:a5:cb:59:54:18:f2:18:f0:5f:bb:c7:
ad:21:b6:55:1d:3e:d0:0f:b7:54:fa:43:29:ac:90:3c:57:41:
98:43:c3:7e:1e:f4:ee:95:42:ba:a7:42:4c:44:42:c8:23:c1:
1e:b1:b7:89:fd:19:48:19:da:bf:4f:c7:d3:9f:20:a4:d9:ed:
91:7f:ae:ca:59:3e:87:3d:26:27:cf:1c:e9:1b:d0:44:8c:d8:
ff:70:91:ff:38:98:d3:6c:ac:e2:20:8e:8a:f0:da:95:36:32:
d3:73:c8:97:94:40:95:42:81:d9:ef:b6:a3:88:b1:03:3d:cf:
b5:a0:4f:8d:62:90:2a:67:85:88:df:56:60:52:a9:df:72:b0:
4d:87:d4:ab:f1:92:35:f8:9d:43:f6:f9:48:2b:05:48:cf:d2:
37:ae:ed:ae:f6:17:ee:db:72:23:aa:a5:38:04:a8:29:0c:56:
38:8a:f3:d8:5b:72:9b:bd:99:bd:a6:3b:44:7b:25:81:16:81:
be:81:20:54:75:3e:d4:39:c8:78:0c:ea:13:7e:83:51:d4:8f:
1d:c2:36:43:43:e1:be:db:c8:e1:44:d3:a7:60:5c:e6:84:17:
e0:ec:3f:44:fa:e0:dd:7f:5e:75:a7:2b:2d:52:b3:8f:bb:ad:
d9:df:30:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:01 2024 by rpki-client on console-ams.rpki-client.org