Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/B0sgy-Qa22-KNYrwgvO1crJMl3c.roa
File: B0sgy-Qa22-KNYrwgvO1crJMl3c.roa (raw, json)
Hash identifier: w4qc/bZNUGm6PsfgP6y1MzPVxkNK8H9yu2j/MDBIwpE=
Subject key identifier: 07:4B:20:CB:E4:1A:DB:6F:8A:35:8A:F0:82:F3:B5:72:B2:4C:97:77
Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4
Certificate serial: 01851C176C7F44F812439F7C015F9EDEE35D
Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/B0sgy-Qa22-KNYrwgvO1crJMl3c.roa
Signing time: Fri 16 Dec 2022 17:59:35 +0000
ROA not before: Fri 16 Dec 2022 17:59:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42031
IP address blocks: 77.105.145.0/24 maxlen: 24
77.105.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1c:17:6c:7f:44:f8:12:43:9f:7c:01:5f:9e:de:e3:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4
Validity
Not Before: Dec 16 17:59:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=074b20cbe41adb6f8a358af082f3b572b24c9777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c2:30:1f:c0:f9:24:7c:08:5c:69:25:90:75:
54:f6:7b:49:e5:0a:19:25:59:9a:b2:82:30:6b:ee:
9a:49:25:62:fd:fb:e2:82:0c:ed:57:8c:8d:65:61:
05:85:f4:6c:a0:b2:ad:b0:93:86:5a:aa:0c:c8:9a:
05:f5:2f:48:49:e8:6a:e7:d2:b0:f3:06:b2:a8:bb:
b7:3b:08:28:b1:96:f5:0b:a8:e8:42:17:cb:fe:a4:
87:4c:48:20:fc:7c:70:2a:e3:4e:bc:fb:e4:61:ef:
f0:9c:04:25:3d:8d:76:cc:98:ae:c4:fa:d2:bf:48:
27:48:0b:63:6f:d5:92:57:d9:e1:47:e7:02:3c:52:
44:1f:cf:df:f0:12:2e:ee:dc:61:19:f5:c4:18:73:
88:78:7b:ae:14:23:c4:1c:29:17:a5:e3:2b:5a:31:
4e:af:b3:48:03:c2:40:74:23:dd:b3:ed:bb:60:5f:
62:b3:26:a4:10:ec:a4:6d:c9:fe:33:4e:9b:58:d5:
b3:98:10:0a:d2:4c:28:a7:c1:e3:4a:f6:d0:b9:a5:
74:aa:ff:99:53:e2:cc:d8:f8:ad:77:5a:45:6e:8b:
67:1c:42:85:f0:60:d2:f5:97:29:10:98:5d:87:61:
db:c7:26:04:56:8d:5e:5d:5c:f5:d4:e5:64:a2:85:
72:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4B:20:CB:E4:1A:DB:6F:8A:35:8A:F0:82:F3:B5:72:B2:4C:97:77
X509v3 Authority Key Identifier:
keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/B0sgy-Qa22-KNYrwgvO1crJMl3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.145.0/24
77.105.165.0/24
Signature Algorithm: sha256WithRSAEncryption
66:c9:5b:a1:a2:8c:e7:91:16:79:ec:6b:a6:e7:43:d2:92:b6:
e0:1c:f1:83:8d:87:81:7e:20:57:5d:64:ac:fa:d0:97:0a:a1:
8d:43:0c:da:3a:cc:76:5c:3e:77:bb:18:a0:46:15:1f:55:4b:
8c:79:9e:2e:9f:9c:bd:65:9e:a8:28:53:bc:f2:00:6f:54:16:
28:0e:05:52:90:02:1b:b2:2f:f9:10:9f:f1:8d:bf:07:d0:ac:
75:01:ab:e5:a3:7c:0f:bf:50:f8:c9:dd:8b:72:9c:b8:4e:54:
0a:b3:73:20:ea:3d:a4:3c:01:67:36:a9:36:61:d8:3f:8f:09:
c0:46:73:58:21:61:7a:22:e9:36:a8:98:e5:cf:de:bc:ed:e4:
e4:97:a0:e9:74:ee:24:59:35:66:1d:ae:1c:53:c8:0a:28:4e:
cb:bb:b3:46:35:c5:55:99:fa:7b:d5:63:dc:64:18:93:fe:5e:
22:ff:f9:0e:b8:da:59:31:64:38:30:f9:6c:74:4d:fe:91:25:
59:b2:6d:44:a2:95:66:a5:bc:29:f3:87:d0:9a:63:50:80:97:
6d:d6:71:8d:ee:af:9b:98:bd:77:77:e4:e7:1a:75:51:3b:4d:
1a:91:b2:9f:73:ef:2d:3e:fc:d8:15:5a:a6:ee:7b:cc:c2:0d:
6b:bf:35:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:41 2023 by rpki-client on console-ams.rpki-client.org