Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/YSCBQzuQ3bNX-wtrX_LEY_seL1c.roa
File: YSCBQzuQ3bNX-wtrX_LEY_seL1c.roa (raw, json)
Hash identifier: y3ojBYna2wnQKYK/scSv/tVJ5HyW91Mesc7NxuOgmZo=
Subject key identifier: 61:20:81:43:3B:90:DD:B3:57:FB:0B:6B:5F:F2:C4:63:FB:1E:2F:57
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 08A138C2
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/YSCBQzuQ3bNX-wtrX_LEY_seL1c.roa
Signing time: Wed 30 Mar 2022 11:01:04 +0000
ROA not before: Wed 30 Mar 2022 11:01:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 109.121.32.0/24 maxlen: 24
109.121.44.0/24 maxlen: 24
77.105.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144783554 (0x8a138c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Mar 30 11:01:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=612081433b90ddb357fb0b6b5ff2c463fb1e2f57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:38:f8:2c:88:a6:12:80:a8:72:56:72:40:32:
0b:1f:4b:7b:15:07:da:be:d2:2f:a7:a4:18:0c:5e:
bf:06:e3:b1:c1:75:d0:f4:75:1e:4b:4d:0e:e7:3e:
6a:e4:93:b5:04:8c:c8:f9:44:8a:ab:8d:28:2a:1a:
e2:e6:a6:a5:06:70:bb:69:21:c0:4a:67:b2:53:58:
99:fe:41:7d:00:ec:a4:51:1d:31:48:fd:37:34:dd:
86:a5:2b:1b:de:7a:b6:7f:e1:4d:90:a1:3c:95:e8:
0c:d7:2d:23:e7:96:d9:63:9c:f5:53:96:54:5f:85:
b6:4b:21:10:aa:7f:47:75:66:1b:43:28:c4:de:18:
59:c0:16:25:bc:0d:95:28:41:de:6a:5b:77:25:b9:
6a:58:a4:47:27:b4:5f:21:bb:b3:81:a3:00:20:89:
8a:c2:c8:9a:e3:c0:ad:7e:2d:14:09:66:52:e5:64:
d5:f9:12:bc:76:4e:04:81:c7:3f:21:2b:0b:4d:c3:
d2:97:13:52:d9:1b:ee:e4:fc:2b:8a:d4:7b:4c:fa:
ef:1c:49:de:23:91:a6:2a:7a:63:c5:69:64:c1:e4:
e0:ff:3e:19:85:73:c1:f2:27:a2:f7:a5:b2:95:7e:
09:57:d0:43:62:3a:9d:ce:66:74:06:2b:3c:63:4b:
7d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:20:81:43:3B:90:DD:B3:57:FB:0B:6B:5F:F2:C4:63:FB:1E:2F:57
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/YSCBQzuQ3bNX-wtrX_LEY_seL1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.4.0/24
109.121.32.0/24
109.121.44.0/24
Signature Algorithm: sha256WithRSAEncryption
69:ac:84:2a:63:74:6a:04:06:ab:e5:ff:56:fd:f0:73:92:f7:
8e:b5:18:23:13:b9:c9:88:f4:c9:c1:07:fa:c8:72:e1:4f:2a:
5c:cc:4e:68:51:1d:c4:f3:15:4a:e0:cb:b1:b7:af:88:ba:3a:
3f:d2:3a:ce:f6:4b:41:e5:3d:93:54:31:50:38:eb:a5:2b:a9:
34:3f:24:a3:7e:fb:10:fb:34:5f:76:37:3a:c0:c6:57:72:a8:
2b:d7:94:9d:c5:0b:68:e1:95:5e:3c:9a:6d:31:40:ba:a3:e9:
5e:94:c2:f8:f7:4f:8c:87:5b:f4:80:f8:de:fe:00:b5:c1:7f:
b4:df:ad:07:53:33:22:7e:ee:9b:7d:db:19:50:8f:5b:c6:04:
f1:8f:8c:6a:45:ef:40:d0:d2:f8:7b:c4:a3:d1:6b:8e:e1:f8:
09:15:7f:34:81:fa:fa:32:bc:2b:d6:55:b7:61:11:fa:0d:b7:
ca:29:63:3f:6a:40:97:04:53:06:f2:83:15:bb:dd:00:50:59:
7f:01:73:d4:93:38:b5:02:3a:cf:06:c2:d6:11:38:bf:5c:9e:
59:05:7a:60:2d:2f:58:4c:4e:f9:54:3b:21:fc:30:4e:d7:e7:
4a:3c:d8:3f:ca:a2:53:ae:c6:37:d0:8c:cc:60:d4:98:7e:f3:
b5:72:87:0e
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIECKE4wjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
Zjg0ZTQ3MzhhNzBlYTM5YzA4Y2VmMjEwNDMyYWUzOTllYzdlOTE1MB4XDTIyMDMz
MDExMDEwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjEyMDgxNDMzYjkw
ZGRiMzU3ZmIwYjZiNWZmMmM0NjNmYjFlMmY1NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMQ4+CyIphKAqHJWckAyCx9LexUH2r7SL6ekGAxevwbjscF1
0PR1HktNDuc+auSTtQSMyPlEiquNKCoa4uampQZwu2khwEpnslNYmf5BfQDspFEd
MUj9NzTdhqUrG956tn/hTZChPJXoDNctI+eW2WOc9VOWVF+FtkshEKp/R3VmG0Mo
xN4YWcAWJbwNlShB3mpbdyW5alikRye0XyG7s4GjACCJisLImuPArX4tFAlmUuVk
1fkSvHZOBIHHPyErC03D0pcTUtkb7uT8K4rUe0z67xxJ3iORpip6Y8VpZMHk4P8+
GYVzwfInovelspV+CVfQQ2I6nc5mdAYrPGNLfTUCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBRhIIFDO5Dds1f7C2tf8sRj+x4vVzAfBgNVHSMEGDAWgBRvhORzinDqOcCM
7yEEMq45nsfpFTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2I0VGtjNHB3NmpuQWpPOGhCREt1T1o3SDZSVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzYvZGRmOGIzLTFjMDgtNDk1Yy04ZGRmLWZhZTVkYmVkM2IxYi8x
L1lTQ0JRenVRM2JOWC13dHJYX0xFWV9zZUwxYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzYv
ZGRmOGIzLTFjMDgtNDk1Yy04ZGRmLWZhZTVkYmVkM2IxYi8xL2I0VGtjNHB3Nmpu
QWpPOGhCREt1T1o3SDZSVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAE1pBAMEAG15IAMEAG15LDANBgkq
hkiG9w0BAQsFAAOCAQEAaayEKmN0agQGq+X/Vv3wc5L3jrUYIxO5yYj0ycEH+shy
4U8qXMxOaFEdxPMVSuDLsbeviLo6P9I6zvZLQeU9k1QxUDjrpSupND8ko377EPs0
X3Y3OsDGV3KoK9eUncULaOGVXjyabTFAuqPpXpTC+PdPjIdb9ID43v4AtcF/tN+t
B1MzIn7um33bGVCPW8YE8Y+MakXvQNDS+HvEo9FrjuH4CRV/NIH6+jK8K9ZVt2ER
+g23yiljP2pAlwRTBvKDFbvdAFBZfwFz1JM4tQI6zwbC1hE4v1yeWQV6YC0vWExO
+VQ7IfwwTtfnSjzYP8qiU67GN9CMzGDUmH7ztXKHDg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:19 2023 by rpki-client on console-ams.rpki-client.org