Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/d9d9b6-c3be-4c5d-adea-4bc84c79fc58/1/yjf0E0AiKjsQjiJqtXrMaNRB-5o.roa
File: yjf0E0AiKjsQjiJqtXrMaNRB-5o.roa (raw, json)
Hash identifier: Uj70rlp9NcBEaVCrNEZ54NElK/Ydpe3lLwT2nzLHU9g=
Subject key identifier: CA:37:F4:13:40:22:2A:3B:10:8E:22:6A:B5:7A:CC:68:D4:41:FB:9A
Certificate issuer: /CN=d94f238c5c74eb9a75a46e2bc67411e8dc22d982
Certificate serial: 01849004ABA171B569CD2B04D2D2CC2AEC79
Authority key identifier: D9:4F:23:8C:5C:74:EB:9A:75:A4:6E:2B:C6:74:11:E8:DC:22:D9:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2U8jjFx065p1pG4rxnQR6Nwi2YI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/d9d9b6-c3be-4c5d-adea-4bc84c79fc58/1/yjf0E0AiKjsQjiJqtXrMaNRB-5o.roa
Signing time: Sat 19 Nov 2022 13:12:15 +0000
ROA not before: Sat 19 Nov 2022 13:12:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15566
IP address blocks: 62.77.131.0/24 maxlen: 24
62.77.128.0/24 maxlen: 24
62.77.128.0/22 maxlen: 22
62.77.130.0/24 maxlen: 24
62.77.129.0/24 maxlen: 24
2a02:2950::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:90:04:ab:a1:71:b5:69:cd:2b:04:d2:d2:cc:2a:ec:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d94f238c5c74eb9a75a46e2bc67411e8dc22d982
Validity
Not Before: Nov 19 13:12:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca37f41340222a3b108e226ab57acc68d441fb9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:24:e7:4b:37:18:4c:fd:da:75:7c:f2:dd:9c:
72:0c:20:3e:53:48:d4:d0:13:ce:a4:8e:7d:8c:5b:
c0:b4:7a:e7:ab:dc:6c:55:ab:f4:2f:ec:9a:be:e7:
b7:47:4d:64:2c:96:e4:d1:71:5a:2f:f1:0f:5c:8e:
49:3d:5d:72:60:00:fc:fd:04:e0:fd:67:5f:bd:49:
1f:7c:e7:7b:99:da:d6:37:49:e1:53:63:f2:4a:80:
8b:3e:ce:40:10:7b:9d:c2:59:d9:6f:c1:3c:4e:1f:
c8:a2:07:bf:bd:60:56:58:f5:df:50:cb:1d:c2:88:
23:a2:68:d7:55:94:b6:70:52:01:f5:05:99:f8:0d:
d8:5b:5d:d4:b7:39:03:dd:f5:b0:93:55:c3:08:15:
0a:e1:f0:c4:c7:a0:89:98:4e:d3:d7:94:cc:9b:28:
70:1b:d3:8b:b9:f3:ba:71:75:d9:5c:28:9b:d5:8a:
f0:f0:bf:13:79:fe:de:07:ea:4e:40:40:ae:2f:b6:
0b:59:6f:13:40:5f:13:5c:ad:85:f4:97:6d:5e:fc:
77:ad:06:65:22:1e:79:9f:2b:a8:0f:dd:32:18:4a:
68:1f:36:fa:b1:1f:c6:3f:38:85:6d:d3:93:46:db:
7c:82:5f:00:ba:34:95:49:12:fe:44:cc:8c:19:32:
3a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:37:F4:13:40:22:2A:3B:10:8E:22:6A:B5:7A:CC:68:D4:41:FB:9A
X509v3 Authority Key Identifier:
keyid:D9:4F:23:8C:5C:74:EB:9A:75:A4:6E:2B:C6:74:11:E8:DC:22:D9:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2U8jjFx065p1pG4rxnQR6Nwi2YI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d9d9b6-c3be-4c5d-adea-4bc84c79fc58/1/yjf0E0AiKjsQjiJqtXrMaNRB-5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d9d9b6-c3be-4c5d-adea-4bc84c79fc58/1/2U8jjFx065p1pG4rxnQR6Nwi2YI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.77.128.0/22
IPv6:
2a02:2950::/32
Signature Algorithm: sha256WithRSAEncryption
ac:fb:19:17:54:38:29:6b:e7:df:c1:46:e9:c6:1d:e7:9a:e2:
d5:83:67:df:a1:24:0f:4c:1f:e6:47:53:f2:7a:39:d4:46:76:
e8:3f:9a:52:57:c6:ca:f7:78:7b:c8:05:f5:cd:7f:04:71:c3:
00:30:9d:52:82:13:2a:51:8e:82:08:cf:9d:3d:78:ae:2d:36:
73:d9:b5:d2:6c:21:92:27:59:a1:d0:ad:77:fa:bc:f9:2e:fc:
50:16:10:6e:ea:36:e1:61:a6:38:d2:6a:9b:75:40:24:58:fe:
1a:58:1f:51:d8:61:9e:0b:11:ff:8b:74:6c:65:11:44:3d:ce:
27:00:16:83:4f:eb:7d:09:f3:56:35:ef:63:01:e0:81:47:88:
66:ca:7b:03:13:e4:71:2e:4a:d0:eb:57:b4:20:af:d5:ce:d6:
bc:40:89:07:4a:bf:2f:b7:43:79:7a:48:d9:d7:73:82:00:a7:
e2:b4:14:13:af:75:e7:67:31:46:33:c6:64:ab:4b:29:ca:54:
78:7e:e4:8d:37:4d:69:c8:66:69:54:a1:91:ac:dc:c7:68:9d:
5f:ed:42:87:4e:c0:81:cd:68:26:69:7c:11:88:31:ef:41:66:
9f:b1:bc:e7:8e:f2:2d:fa:db:d0:17:46:de:9e:6f:93:d7:71:
d0:f6:aa:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:18 2024 by rpki-client on console-ams.rpki-client.org