Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/YbwBODlHaWFBz-DmyR1P9uQHS84.roa
File: YbwBODlHaWFBz-DmyR1P9uQHS84.roa (raw, json)
Hash identifier: /nQ1mGnr5s6QqZ6BQrd69/zK3B708Hqvf/ZFYwwxuKE=
Subject key identifier: 61:BC:01:38:39:47:69:61:41:CF:E0:E6:C9:1D:4F:F6:E4:07:4B:CE
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B185856
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/YbwBODlHaWFBz-DmyR1P9uQHS84.roa
Signing time: Sat 01 Jan 2022 13:58:12 +0000
ROA not before: Sat 01 Jan 2022 13:58:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207329
IP address blocks: 77.65.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 723015766 (0x2b185856)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61bc01383947696141cfe0e6c91d4ff6e4074bce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7f:40:f8:3f:8a:b9:33:cc:6c:81:e5:18:ab:
06:df:61:04:22:d5:f9:cf:d0:ac:9e:b3:8d:69:6e:
82:13:17:8e:18:61:da:b9:af:97:f2:0f:a3:fa:cd:
c8:6f:ec:0e:eb:74:ee:93:96:e3:42:08:01:5a:04:
55:d3:1b:d5:8f:dd:4e:16:c8:be:2e:a2:2e:7e:e1:
bf:f0:96:15:6a:98:77:93:01:ba:7c:8c:85:ea:fa:
a1:b1:74:71:cf:59:04:ea:ad:52:67:1b:70:b2:48:
35:d2:b0:5f:cb:81:20:6d:85:c7:7c:33:d5:25:06:
64:6e:b5:e6:96:28:7b:78:ca:da:68:66:99:50:bc:
38:76:6d:7a:e7:60:8b:5d:b7:c5:4b:46:bf:92:06:
ec:d5:ab:ff:82:2b:55:98:bf:fd:a7:5f:9b:ab:7d:
8b:0a:12:50:86:6c:12:99:52:3c:9e:a4:de:cd:9a:
d3:11:52:dd:83:34:6d:36:39:46:c6:17:ba:4b:ee:
d9:18:f6:22:d1:98:65:be:bc:46:3c:2b:6e:7b:53:
35:1b:66:0c:d0:02:6b:78:c2:04:2b:a5:e4:14:71:
3d:67:62:cb:3b:e8:2c:ef:84:d1:ad:67:bd:42:e2:
7c:23:1a:e9:17:9a:c1:60:4a:b1:4c:f1:16:7e:0b:
34:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:BC:01:38:39:47:69:61:41:CF:E0:E6:C9:1D:4F:F6:E4:07:4B:CE
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/YbwBODlHaWFBz-DmyR1P9uQHS84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.149.0/24
Signature Algorithm: sha256WithRSAEncryption
49:97:35:48:14:bb:b8:92:82:ff:11:bd:21:eb:41:cc:f5:e7:
24:2e:1c:ca:9b:80:20:f9:81:60:dc:fc:ea:82:bf:a3:7a:93:
6a:cd:ce:c4:ea:32:f0:04:19:f5:95:ff:ee:16:17:40:ec:19:
25:aa:92:7e:be:92:28:4d:8a:00:c8:9f:e2:3c:0e:b0:1e:e1:
0f:8d:f2:a4:4e:8c:5a:b2:c2:e7:f0:85:c4:ea:c7:ef:b2:15:
13:40:6a:72:a0:1c:c4:75:bb:e7:3a:eb:f7:7c:f9:b6:f8:a0:
4c:a4:1d:42:43:c7:ba:53:64:f0:16:7c:17:a7:70:aa:a1:7f:
74:4d:1e:a7:3c:48:32:31:43:90:64:34:86:b0:f2:06:18:3b:
50:7e:e6:8f:70:38:6b:00:df:ce:d6:7d:51:60:96:a4:57:59:
a6:29:4c:15:a7:68:f7:76:2a:ba:56:1d:0b:ee:b7:3f:fb:93:
cd:0b:77:ac:6d:a4:02:0a:d7:cd:03:77:01:e9:ba:a3:94:4c:
98:42:09:ce:98:9d:27:62:2c:c9:13:50:a5:a9:b5:0c:10:60:
7b:bd:bb:59:39:90:ce:50:f1:1d:6d:8b:17:a4:08:bc:7d:50:
29:17:b8:ae:78:1e:ce:8e:ce:9b:7b:9c:98:bc:10:51:00:b9:
94:ae:d6:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org