Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/YuBoLLkXql5mPhLaPR9-U0zgWp0.roa
File: YuBoLLkXql5mPhLaPR9-U0zgWp0.roa (raw, json)
Hash identifier: /a2d6a8LZLiQWHX/f6A3sCfOwWQZA404sdfv1Arwb7I=
Subject key identifier: 62:E0:68:2C:B9:17:AA:5E:66:3E:12:DA:3D:1F:7E:53:4C:E0:5A:9D
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17F1CDB7
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/YuBoLLkXql5mPhLaPR9-U0zgWp0.roa
Signing time: Sat 01 Jan 2022 03:59:59 +0000
ROA not before: Sat 01 Jan 2022 03:59:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43202
IP address blocks: 77.85.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401722807 (0x17f1cdb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 03:59:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62e0682cb917aa5e663e12da3d1f7e534ce05a9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0c:61:68:5e:dd:86:b0:14:5c:86:53:c1:59:
43:39:ba:70:88:a0:97:e8:8b:cf:9a:22:96:02:d8:
89:a0:bc:86:ed:63:49:65:20:ac:0a:d3:07:09:1e:
fb:d4:25:5e:bc:bf:d4:5a:c8:e8:16:a2:62:53:1e:
1c:d5:f6:2c:7e:b7:dd:03:2d:64:66:e5:52:2f:08:
39:84:ef:bf:73:f5:4f:1a:ab:94:42:fd:d3:24:f0:
c6:64:d5:7d:b3:a7:12:34:b6:02:d1:55:8c:c6:50:
5d:d8:dd:90:22:db:c3:61:39:7e:7d:5c:bd:48:d5:
db:b5:2b:dd:4b:9b:01:f5:08:de:31:08:2f:f0:a2:
3a:dd:a5:65:79:92:18:45:2a:e4:8c:21:0d:45:07:
64:2e:96:5b:2f:67:e9:75:e9:c2:6e:1f:04:c0:4e:
1d:14:cc:32:7d:32:fa:81:2d:5e:9c:1b:56:14:53:
3d:eb:5d:25:a6:87:c2:69:20:75:f8:97:44:80:65:
48:9d:62:0a:10:23:a9:fd:ae:3f:09:63:85:31:59:
ca:9b:34:93:ce:b0:98:5d:b0:e1:0e:48:0b:34:3c:
e3:bc:f3:9f:38:32:56:64:fc:4b:39:c9:81:e9:ad:
52:5b:2b:b9:80:3e:28:65:21:8c:07:5a:aa:e4:f5:
11:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E0:68:2C:B9:17:AA:5E:66:3E:12:DA:3D:1F:7E:53:4C:E0:5A:9D
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/YuBoLLkXql5mPhLaPR9-U0zgWp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.85.174.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:75:8e:1d:fc:f4:36:02:91:e0:e4:7e:a2:2e:55:1e:bb:a7:
82:88:76:16:2e:65:2b:25:7b:4a:ea:1a:1f:e2:b9:d0:1f:da:
47:19:7c:72:f9:67:3f:b2:97:f0:09:f9:dc:d7:48:c8:1d:14:
97:22:a1:15:30:85:98:da:f4:ca:fe:86:13:3e:2a:ab:db:89:
09:f6:22:a4:d3:50:88:9e:1c:d8:91:17:c4:07:81:73:8a:5c:
5a:c5:c2:2b:77:35:af:de:49:a8:3b:09:69:9f:75:b7:fa:cc:
96:00:b3:86:82:2a:56:7e:c2:a6:8f:c5:fe:98:2b:25:11:24:
c9:ee:5a:94:b5:08:53:33:a4:16:6f:91:f5:7f:60:fe:50:ac:
8a:96:89:d9:11:b9:36:bd:84:68:43:ba:9e:60:6a:c5:ab:e3:
56:4c:71:44:34:07:c8:95:9f:19:c7:01:db:5c:e6:63:47:d1:
29:d1:94:3f:a4:7e:b7:6a:6a:78:4a:0e:c1:3f:99:aa:75:7e:
0d:fc:6b:84:8c:31:85:98:29:0e:f5:8e:79:01:d0:a8:0d:33:
5b:32:79:ae:19:82:46:a0:52:bc:d0:fd:14:90:1d:f9:07:27:
10:d6:d4:01:ad:99:e7:21:0e:dc:b0:3f:65:75:a1:92:c2:c4:
2c:5e:98:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org