Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/ycqsRb3WpzVOtIlRmSDYaZAGueU.roa
File: ycqsRb3WpzVOtIlRmSDYaZAGueU.roa (raw, json)
Hash identifier: KrorGwbpb0Nhah0LHgKSQ7e/Ykge+Fc/Jnu7K4dw2aw=
Subject key identifier: C9:CA:AC:45:BD:D6:A7:35:4E:B4:89:51:99:20:D8:69:90:06:B9:E5
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 0254E177
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/ycqsRb3WpzVOtIlRmSDYaZAGueU.roa
Signing time: Sat 09 Apr 2022 15:51:44 +0000
ROA not before: Sat 09 Apr 2022 15:51:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 77.74.225.0/24 maxlen: 24
77.74.230.0/24 maxlen: 24
109.105.196.0/24 maxlen: 24
109.105.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39117175 (0x254e177)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Apr 9 15:51:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9caac45bdd6a7354eb489519920d8699006b9e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:08:82:76:82:ce:fc:57:56:21:52:9a:cf:ed:
b8:d3:40:8e:59:61:3e:4f:8a:a8:ab:3f:5c:a6:b9:
90:8a:f8:90:de:f4:d7:4e:bd:8e:86:94:4b:63:0f:
cc:6f:8f:0e:b7:51:b4:78:2b:1c:a2:b7:d6:da:fb:
6f:68:42:4b:cb:d7:b6:1c:41:36:2e:af:cd:2a:d5:
ba:d5:42:54:cb:38:ce:ce:0d:a6:9f:b1:32:95:92:
1b:56:5b:5e:29:03:8f:36:9f:19:cf:b1:a0:64:86:
08:a6:78:48:a1:2a:66:f9:61:ee:c8:b4:02:d0:d5:
60:4a:38:fd:4c:cd:73:2c:6b:cf:c0:5f:18:5f:e6:
2d:47:5d:c6:49:14:61:36:02:5f:c3:77:9b:5a:b4:
23:60:82:55:18:00:60:26:37:89:89:93:af:3b:29:
b4:d6:58:eb:08:81:c8:1d:f5:af:58:fb:77:91:a9:
a0:92:11:52:53:ab:d7:10:7f:12:bc:81:51:d6:22:
a1:20:c1:63:1b:3a:38:fb:e3:55:ae:17:61:94:93:
aa:59:72:85:f7:cd:36:ea:7c:41:2d:d5:99:46:36:
b9:b8:80:79:df:31:6b:0d:41:73:87:2d:0c:09:a3:
42:e7:f1:2d:9c:84:7d:15:c0:e7:8a:6e:8d:c7:24:
7f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:CA:AC:45:BD:D6:A7:35:4E:B4:89:51:99:20:D8:69:90:06:B9:E5
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/ycqsRb3WpzVOtIlRmSDYaZAGueU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.225.0/24
77.74.230.0/24
109.105.196.0/24
109.105.198.0/24
Signature Algorithm: sha256WithRSAEncryption
19:20:01:d0:f1:04:98:5f:7f:01:1e:b6:1c:71:51:df:61:97:
61:66:6b:d3:34:b8:83:df:ae:9e:02:9d:b0:6c:80:bd:f4:39:
56:a8:7b:18:82:55:9f:03:76:05:2b:d8:34:a3:c0:60:36:2c:
84:10:e7:c3:27:75:c5:2d:ea:be:59:f4:6e:18:60:fb:54:2f:
66:64:a6:7a:a1:31:fc:06:41:8d:0a:c1:60:77:be:22:40:44:
c7:29:34:d5:12:40:e8:6f:59:df:06:dd:86:6c:1e:a7:dd:6a:
00:eb:55:35:28:0b:66:42:92:6d:cb:91:2a:0b:5a:57:5f:39:
e1:e7:9f:a2:98:f9:6c:3b:7c:32:a1:dd:54:43:f9:af:28:c2:
6e:de:18:f3:45:fb:f7:26:16:9e:96:d3:ef:9f:26:6e:21:05:
92:d9:39:3e:34:bc:c0:ae:6e:12:13:fe:41:ee:65:50:15:87:
6f:02:0e:13:32:0a:27:32:85:76:7d:f2:57:31:59:12:bc:0d:
42:a4:25:21:02:e1:95:3d:0c:15:b0:26:30:fd:3a:50:db:a4:
13:95:2f:63:43:c8:b8:77:a0:1a:0a:fb:ee:d9:ce:f6:62:7f:
fc:94:75:a1:0a:dc:8c:eb:2b:e2:ac:a3:11:6e:e4:d9:31:aa:
e3:8b:e1:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:22 2023 by rpki-client on console-fra.rpki-client.org