Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/7c97cf-195c-4fc1-95a3-637fa14656de/1/YRrM5s_IlIWJjozpPgwXMK2JQqM.roa
File: YRrM5s_IlIWJjozpPgwXMK2JQqM.roa (raw, json)
Hash identifier: Fmt3V6xL3xqERpgCvrmdtKIEWn2VqxdpTmZtgY747TE=
Subject key identifier: 61:1A:CC:E6:CF:C8:94:85:89:8E:8C:E9:3E:0C:17:30:AD:89:42:A3
Certificate issuer: /CN=968a17e16196bb7a86718e6b2bd6a07e37b40c65
Certificate serial: 373E46A6
Authority key identifier: 96:8A:17:E1:61:96:BB:7A:86:71:8E:6B:2B:D6:A0:7E:37:B4:0C:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/looX4WGWu3qGcY5rK9agfje0DGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/7c97cf-195c-4fc1-95a3-637fa14656de/1/YRrM5s_IlIWJjozpPgwXMK2JQqM.roa
Signing time: Sat 01 Jan 2022 05:04:33 +0000
ROA not before: Sat 01 Jan 2022 05:04:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8978
IP address blocks: 212.77.0.0/19 maxlen: 19
2a01:b8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 926828198 (0x373e46a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=968a17e16196bb7a86718e6b2bd6a07e37b40c65
Validity
Not Before: Jan 1 05:04:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=611acce6cfc89485898e8ce93e0c1730ad8942a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3d:c8:a9:ef:b8:a5:14:d2:f9:2b:b3:48:83:
ba:28:16:8e:0c:0d:3e:bd:8f:de:75:96:ea:6e:02:
c9:d6:00:6c:94:fe:b2:91:7a:1c:40:09:0c:03:78:
73:f3:4b:66:46:c4:87:46:04:47:79:e1:74:31:35:
5e:58:37:e8:ac:76:40:2f:91:f1:ee:65:d2:2c:da:
38:4b:6f:1d:2b:8e:b3:82:a2:b0:b0:ab:45:79:be:
33:96:d5:dd:46:df:d4:63:05:1b:2f:94:bb:61:f4:
b8:d5:0e:56:9c:55:7d:9f:7c:9d:da:f5:12:91:96:
d5:f9:c1:e4:b8:2d:31:e9:64:85:83:bc:36:12:18:
3f:fa:10:5c:77:5f:b0:e0:40:0b:78:b0:e3:51:19:
64:a8:33:75:97:eb:83:99:a9:22:42:c8:a5:ae:d1:
c4:6d:4a:0d:4b:be:7f:77:e3:01:cd:00:06:c4:ad:
35:80:4e:e2:f4:30:35:59:e3:16:3a:db:6d:87:9d:
6e:a1:73:9b:3f:ff:3e:17:00:fa:f4:0a:5e:cf:42:
18:79:05:3c:d6:a5:0b:48:7b:ae:86:a2:4a:f2:50:
1f:e0:a8:f0:c8:75:10:74:af:cd:23:1a:d5:58:ad:
29:4d:ed:e6:c6:90:fe:39:fe:1e:76:34:23:4e:d4:
8c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:1A:CC:E6:CF:C8:94:85:89:8E:8C:E9:3E:0C:17:30:AD:89:42:A3
X509v3 Authority Key Identifier:
keyid:96:8A:17:E1:61:96:BB:7A:86:71:8E:6B:2B:D6:A0:7E:37:B4:0C:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/looX4WGWu3qGcY5rK9agfje0DGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/7c97cf-195c-4fc1-95a3-637fa14656de/1/YRrM5s_IlIWJjozpPgwXMK2JQqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/7c97cf-195c-4fc1-95a3-637fa14656de/1/looX4WGWu3qGcY5rK9agfje0DGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.77.0.0/19
IPv6:
2a01:b8::/32
Signature Algorithm: sha256WithRSAEncryption
04:56:91:53:67:0d:4a:6e:e6:c4:52:50:cd:49:e3:1f:c1:9e:
af:19:40:6e:a3:47:c1:86:17:c9:39:55:44:5a:ab:73:3b:12:
da:e7:72:13:be:d1:7c:00:2f:c0:52:9e:37:eb:f6:8e:95:4e:
16:62:95:82:c7:b3:1f:bd:78:8f:50:fd:b3:14:42:96:ed:86:
1d:0d:7c:e5:2f:2b:b2:c5:b6:7e:6a:cb:8b:91:f3:a4:10:24:
d6:63:e5:19:97:13:4b:ac:95:98:97:d2:ea:e9:1d:fe:9b:08:
6f:1f:ec:30:fa:05:2a:dc:e8:06:85:27:34:59:a6:b3:a1:27:
32:4a:bb:09:bf:0e:a5:0f:b4:5c:a8:3b:f3:e4:93:93:2e:62:
30:a1:4d:9e:fe:96:bb:14:7f:c2:fe:4d:d2:94:69:04:0b:88:
e8:a5:71:57:95:2c:c7:3a:6a:9b:65:25:4b:da:60:03:47:76:
20:f9:aa:42:3c:15:d0:75:be:a5:ad:2d:fa:a3:90:8d:38:35:
4b:8f:cc:68:54:8d:72:ce:b3:70:2d:cf:c5:58:bd:d3:68:f2:
2d:1c:32:11:d2:59:9a:2f:e2:7f:e8:c6:81:d8:30:76:87:c3:
fa:fe:f4:fc:5b:0d:cf:ae:fc:29:90:11:11:5a:e2:d6:37:c4:
bc:a9:ff:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:18 2024 by rpki-client on console-ams.rpki-client.org