Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/YFlYENXuZJWa_ooLaph055D5c6c.roa
File: YFlYENXuZJWa_ooLaph055D5c6c.roa (raw, json)
Hash identifier: e0nAcBFUADpKVzOI9j4WWS4Vd6Q6wYU+jEDV+sFji9E=
Subject key identifier: 60:59:58:10:D5:EE:64:95:9A:FE:8A:0B:6A:98:74:E7:90:F9:73:A7
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018243C6459ED9935F5632804458B5A554FE
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/YFlYENXuZJWa_ooLaph055D5c6c.roa
Signing time: Thu 28 Jul 2022 07:47:23 +0000
ROA not before: Thu 28 Jul 2022 07:47:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60672
IP address blocks: 77.105.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:43:c6:45:9e:d9:93:5f:56:32:80:44:58:b5:a5:54:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jul 28 07:47:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60595810d5ee64959afe8a0b6a9874e790f973a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:1d:97:6b:64:9f:00:6a:e0:6e:7a:f6:3e:19:
9a:2d:7e:f7:11:e0:92:f4:09:4a:aa:64:54:73:40:
35:0c:75:a1:22:04:6f:60:e8:0c:e5:ae:1f:06:a6:
05:52:e1:4a:7c:ef:62:2a:84:6d:7b:95:1e:c8:b1:
20:dc:7a:b0:50:17:13:21:10:9d:e0:d3:46:19:a7:
a2:6e:30:6f:e6:4b:81:13:74:b0:cd:97:c8:44:3a:
42:0f:d3:ea:01:c5:7c:a0:eb:c3:cf:de:4a:e0:d0:
66:21:7a:b9:fa:45:94:ba:42:ce:94:c7:cc:16:0e:
25:cf:50:5f:72:3d:fe:d1:c4:37:27:c1:ec:64:c9:
6f:6f:47:52:30:da:b1:af:fb:f5:b8:04:5a:63:56:
46:58:82:ba:a6:dc:38:ed:3b:f0:91:0d:b3:f0:0b:
ee:3c:a3:0e:1e:75:2e:d8:27:fd:e4:6b:3d:6e:03:
ea:fa:85:da:e3:f9:14:12:ea:ba:36:08:05:0e:18:
e6:f8:8b:46:c9:7a:c0:37:eb:95:a4:45:52:09:9a:
03:0b:4b:c9:17:9b:de:96:72:82:ea:29:88:30:39:
ef:b5:03:86:b3:22:18:66:0c:22:44:ca:c1:2e:10:
9c:5c:56:40:56:82:c8:b9:b2:18:f0:9e:eb:f5:3b:
f2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:59:58:10:D5:EE:64:95:9A:FE:8A:0B:6A:98:74:E7:90:F9:73:A7
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/YFlYENXuZJWa_ooLaph055D5c6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.16.0/24
Signature Algorithm: sha256WithRSAEncryption
54:d4:1a:a8:fd:66:ff:b6:af:56:0c:82:06:18:fb:0b:43:04:
1c:7a:02:1f:57:e2:8b:84:70:29:12:f8:00:a5:a4:67:24:33:
27:21:55:59:f8:b2:e4:3c:42:77:af:c3:9e:e6:6f:95:ba:67:
92:54:ce:07:b5:3c:26:63:d8:27:c5:c5:75:5e:23:e6:a9:51:
c6:ef:ab:0e:44:73:91:89:e2:28:ea:3f:a2:1f:a0:ff:76:12:
00:0b:18:4e:fd:52:f5:ac:17:dd:bc:76:0f:81:12:ce:15:63:
2a:88:d3:eb:11:e7:e3:66:3c:da:86:b4:bb:d0:ac:c9:d2:b9:
9e:bd:6b:88:69:e8:98:e2:52:fa:1e:f5:c2:dd:78:fb:bf:0a:
f9:9b:51:2b:6f:1f:08:b4:04:6f:86:4f:e1:c3:af:1b:6f:c4:
e0:f3:b2:2a:24:b5:75:52:89:de:eb:9d:2f:67:0e:a7:6c:9c:
14:7a:32:06:ab:e2:ba:aa:1b:d4:dc:83:48:99:9c:88:78:a6:
06:14:4d:27:41:61:39:ca:a3:fb:22:ef:67:e3:1b:bb:87:fd:
07:a3:b1:2a:93:40:dd:24:7c:0a:00:9e:55:53:93:68:59:c5:
41:80:45:36:60:ec:f0:47:68:45:fb:7f:1c:85:71:f2:da:36:
8b:96:0a:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-fra.rpki-client.org