Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/vcqCkx0QXTFdHXizkJYUHRzZeLc.roa
File: vcqCkx0QXTFdHXizkJYUHRzZeLc.roa (raw, json)
Hash identifier: /JNcLuReS1mUw4d/kk/cwgGXh2sdZthlrakeac4VC38=
Subject key identifier: BD:CA:82:93:1D:10:5D:31:5D:1D:78:B3:90:96:14:1D:1C:D9:78:B7
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 060ACA45
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/vcqCkx0QXTFdHXizkJYUHRzZeLc.roa
Signing time: Fri 01 Apr 2022 17:19:28 +0000
ROA not before: Fri 01 Apr 2022 17:19:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 77.81.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101370437 (0x60aca45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Apr 1 17:19:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bdca82931d105d315d1d78b39096141d1cd978b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0f:1a:5b:28:62:3e:d6:ec:b7:31:5f:f0:3d:
72:24:cb:0a:15:b1:0d:b5:2d:ac:22:05:41:1a:ee:
49:20:bf:a6:77:95:3b:1f:9e:43:f2:42:05:08:29:
47:02:5b:23:17:1e:dd:26:59:5c:3c:fe:19:2f:be:
35:bd:45:a2:45:05:38:bc:ec:fe:4b:7f:30:aa:4e:
76:22:4c:b6:a2:bb:1c:ab:7f:0d:b8:03:2e:6b:6c:
da:bc:ac:c6:aa:17:0b:79:7e:59:bd:ec:24:fb:dd:
62:42:9c:7c:80:f3:28:3a:60:ed:a2:ee:a8:39:1e:
be:8d:92:b3:e0:be:83:a7:c9:1f:43:d0:3f:be:63:
cd:5f:2f:63:b9:74:d4:c1:f2:1e:19:5a:59:5a:20:
86:68:f4:0b:ca:38:01:bb:ce:08:fc:f0:00:6f:ed:
fa:42:4c:dd:2b:ed:8d:4b:e0:8a:d1:26:be:5c:9f:
c1:07:0e:e9:d3:8b:ca:b3:af:f5:e0:87:76:cb:27:
4e:1d:f9:56:13:f7:d6:11:fe:79:f8:1f:f5:35:5e:
e0:36:d0:c5:77:b9:33:e4:40:dc:6a:d9:cb:ac:c8:
6d:5e:df:08:7f:87:b4:61:15:d9:e9:4e:c1:59:4f:
53:e2:45:d4:57:03:c4:94:d5:0d:fc:3e:1f:eb:ab:
e6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:CA:82:93:1D:10:5D:31:5D:1D:78:B3:90:96:14:1D:1C:D9:78:B7
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/vcqCkx0QXTFdHXizkJYUHRzZeLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.79.0/24
Signature Algorithm: sha256WithRSAEncryption
31:bf:12:0e:4d:8f:82:cb:03:00:c9:01:cd:50:c3:9c:d8:0f:
22:69:db:1a:9f:5b:ad:6d:54:5f:a0:c4:31:6b:48:61:02:ed:
bb:a9:8b:1d:87:4c:60:d2:d0:40:e0:91:f0:1a:42:e0:ab:45:
eb:ef:13:3e:28:e7:5e:d4:5a:a5:b2:a1:99:92:58:70:27:b5:
51:ce:df:c8:1a:bc:22:a7:7a:a1:3c:19:eb:7b:4b:10:5d:15:
e2:11:21:75:e9:2e:c4:56:43:e4:45:e8:99:7a:bc:be:19:63:
08:45:a0:04:00:f1:7b:e7:dd:64:ec:df:83:b5:ec:7e:7c:8e:
b8:f4:da:0d:6a:63:e7:02:db:25:ab:6c:f4:4e:1d:60:2f:9d:
cf:c7:e9:37:f5:81:3b:a9:de:f3:ad:6e:70:2a:a2:fe:c4:67:
7b:8a:e9:d9:76:d7:05:2b:60:ec:b4:ac:b9:11:6c:89:47:d2:
ad:55:39:92:c3:fa:22:6e:ec:44:17:e4:ed:7e:ce:ea:6b:cf:
37:cc:e3:f8:b9:07:75:87:96:9f:4d:29:c7:d8:41:07:d6:b4:
23:3c:c9:b1:4d:48:83:a4:1e:b6:07:b9:78:21:2e:8d:a5:f1:
bd:7f:48:85:43:c3:fb:1b:03:8c:6c:8d:0d:13:9b:b5:cb:9c:
0d:28:1d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org