Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/YmWsZVwNwBzHKqLNQ8TB_fdFpOE.roa
File: YmWsZVwNwBzHKqLNQ8TB_fdFpOE.roa (raw, json)
Hash identifier: c1SxnE3ID4N79GnkG/LwMSYh3nuk5hAZy3ygsjli1fY=
Subject key identifier: 62:65:AC:65:5C:0D:C0:1C:C7:2A:A2:CD:43:C4:C1:FD:F7:45:A4:E1
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B80B53B
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/YmWsZVwNwBzHKqLNQ8TB_fdFpOE.roa
Signing time: Wed 09 Feb 2022 07:18:28 +0000
ROA not before: Wed 09 Feb 2022 07:18:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210406
IP address blocks: 77.65.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 729855291 (0x2b80b53b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Feb 9 07:18:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6265ac655c0dc01cc72aa2cd43c4c1fdf745a4e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:aa:c8:1a:fb:c3:89:eb:e7:c9:d7:4a:57:bd:
56:7e:66:52:e4:60:9b:83:ab:6d:98:89:5d:39:ef:
42:af:c3:d1:df:a2:d4:db:89:28:cb:94:c1:28:75:
1a:28:89:41:b9:eb:47:07:8e:c9:b5:12:0d:d0:36:
94:ed:cf:65:07:57:c0:c5:52:21:cd:99:61:9d:40:
f2:af:41:f8:3b:d0:04:b2:25:8b:c7:c1:ca:f5:4b:
f7:fe:79:49:ac:c1:54:0a:e0:b8:09:5c:9c:93:13:
a1:5a:d6:32:89:78:8e:09:76:a2:b0:88:2b:a3:1f:
92:53:bc:d6:42:9a:e5:b2:2f:d1:f3:b5:a6:2b:00:
a6:77:51:e3:c9:1c:0d:e9:f0:b8:90:42:fb:9a:f7:
52:f6:06:16:68:ea:b5:7e:22:6d:95:3b:bf:6f:82:
fd:ea:5c:77:d3:82:3a:1c:12:c9:ef:90:3e:8e:07:
93:d5:20:93:dd:62:10:4c:c7:c1:2c:c2:93:aa:d6:
df:1d:3d:8a:6b:ed:ef:f6:19:b9:9b:0a:05:8f:99:
5c:33:31:4f:06:77:bd:d5:bf:9b:e4:53:4a:28:57:
33:4a:3b:c0:0a:7c:4e:e3:86:42:5a:13:49:59:60:
41:8e:8f:df:5c:5c:20:c5:fe:f3:a0:d4:2e:c5:2b:
08:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:65:AC:65:5C:0D:C0:1C:C7:2A:A2:CD:43:C4:C1:FD:F7:45:A4:E1
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/YmWsZVwNwBzHKqLNQ8TB_fdFpOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.216.0/24
Signature Algorithm: sha256WithRSAEncryption
06:5b:86:b3:6b:1e:19:61:45:cc:f9:94:7a:56:48:ab:be:9e:
b4:2b:28:e4:24:9f:86:79:64:ab:72:e0:e0:08:17:e2:e3:c2:
6f:7e:49:77:98:03:78:91:b9:6e:64:4e:4e:cc:dd:d3:0b:50:
29:24:07:2c:f9:a3:8e:2e:8e:06:83:00:1f:32:99:3f:cf:a4:
5b:8c:03:8d:0a:07:60:36:21:d7:92:d9:4a:f4:ec:be:11:ba:
60:85:6d:64:74:6a:9e:46:6b:55:16:d9:39:72:43:03:cd:42:
ca:55:d7:16:76:89:27:aa:9d:36:0d:ed:13:b3:19:5b:da:46:
69:0e:9d:38:64:f2:54:70:49:f6:d2:06:73:e9:79:f2:2b:39:
c5:bb:fc:53:72:22:15:d9:c1:a6:6a:41:6f:b3:c7:3a:14:ba:
49:cd:87:aa:27:50:39:2e:27:e0:99:6a:80:6e:68:56:ce:bc:
27:6d:82:86:51:85:be:74:0f:85:79:47:83:72:c5:b8:1b:b2:
4c:a8:18:b1:17:d1:21:96:76:d9:ac:83:ca:c7:6e:57:cd:a3:
74:d2:39:b8:52:c6:c5:00:ac:ec:2f:76:80:9c:cc:fb:87:f8:
f6:6a:c0:a6:c0:36:3c:2e:aa:d0:bc:26:30:70:5d:10:30:3c:
ea:8b:47:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org