Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/8p7Dm8zbV5wm3ZXF9gZpCqwQW7U.roa
File: 8p7Dm8zbV5wm3ZXF9gZpCqwQW7U.roa (raw, json)
Hash identifier: +1xuH9XeiBccGjEfNLFo7JIy0cg/oAx8FKBkmCcg0Qc=
Subject key identifier: F2:9E:C3:9B:CC:DB:57:9C:26:DD:95:C5:F6:06:69:0A:AC:10:5B:B5
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 078A5AAF
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/8p7Dm8zbV5wm3ZXF9gZpCqwQW7U.roa
Signing time: Tue 01 Mar 2022 07:57:31 +0000
ROA not before: Tue 01 Mar 2022 07:57:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 212.11.64.0/24 maxlen: 24
192.35.206.0/24 maxlen: 24
31.25.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126507695 (0x78a5aaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Mar 1 07:57:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f29ec39bccdb579c26dd95c5f606690aac105bb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6c:b0:92:c9:3f:23:8f:32:93:e5:c4:0b:97:
00:83:2e:d8:cc:d1:c4:7f:a5:18:34:18:a3:b8:38:
d1:78:5f:18:d6:c2:a1:58:3b:0e:14:25:56:d2:16:
a4:9d:0f:20:57:47:b4:cc:92:f8:f4:9a:7a:32:f7:
3c:8d:ac:85:01:8c:dc:d5:6c:00:24:aa:d6:0e:54:
2d:3e:c4:61:2c:f3:e0:f6:63:c5:59:67:a9:54:27:
5a:82:98:8f:71:f2:15:7d:e6:15:93:a9:a8:a1:32:
31:cf:01:b8:97:94:6b:e5:05:0a:cd:08:81:30:3d:
aa:ec:6c:0b:e7:b0:e1:ca:3d:29:2e:1f:08:54:16:
6e:f8:b1:9f:a4:09:ed:9b:cf:d5:f0:83:4f:89:4b:
ba:54:7c:76:1d:43:53:7f:03:ba:f1:7f:44:33:33:
47:9c:82:d1:25:fe:f1:1d:fd:2b:c4:25:90:8c:9c:
ce:1e:53:1e:8b:9a:43:74:ec:cd:9c:cb:cb:2c:ff:
66:3f:2f:75:0d:64:8a:d3:49:c1:ac:43:74:97:6a:
d8:ce:2e:66:88:17:ae:df:94:6f:b1:31:28:71:55:
49:2f:4f:e6:96:a9:6b:fe:21:a9:9e:f4:ac:a3:90:
37:bb:58:e6:ed:81:07:2a:3b:16:63:99:70:e0:ed:
ca:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:9E:C3:9B:CC:DB:57:9C:26:DD:95:C5:F6:06:69:0A:AC:10:5B:B5
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/8p7Dm8zbV5wm3ZXF9gZpCqwQW7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.11.0/24
192.35.206.0/24
212.11.64.0/24
Signature Algorithm: sha256WithRSAEncryption
79:4f:e9:44:0f:db:41:be:1c:3e:57:4b:44:c1:20:9b:e2:c8:
1f:d3:9a:82:91:31:15:cf:02:de:6c:be:c1:57:ae:66:2c:cf:
bd:db:2a:3d:fb:76:24:6d:c5:38:44:a3:2b:c3:83:06:bd:8c:
04:21:e7:e3:c6:e7:a9:91:15:13:bb:96:44:21:22:ff:f2:32:
dc:7f:d5:f9:7d:98:aa:f2:ae:e2:9a:2e:8b:ed:52:49:5c:f0:
f3:32:90:b4:ba:0e:d3:0e:79:5c:16:89:62:17:17:ee:48:99:
e4:12:20:06:79:02:ed:c6:07:fa:49:4c:3e:47:2d:c7:d7:0e:
7d:5a:fa:af:80:3f:da:54:19:16:83:7a:c1:35:87:77:d4:3d:
cd:cf:14:e3:f6:dd:ee:1f:d7:31:0e:e6:64:bf:7a:f7:24:69:
d1:fc:cb:44:1a:bf:6d:30:d5:ae:c1:89:22:4c:04:ce:32:bb:
e6:cd:fd:11:82:a5:21:e7:78:e2:ba:dd:ef:c5:7b:b0:b6:0b:
10:6a:65:74:08:28:d7:76:42:a8:2c:31:eb:be:2e:42:18:1a:
ef:ab:ee:9f:f0:85:e3:ba:0e:53:25:72:ca:57:0d:0f:c8:4c:
60:5f:5f:35:0d:bb:ce:c1:fa:dc:fb:8e:bd:37:df:bc:a5:ea:
e4:63:ad:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org