Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Yj-oKyD13qcWHuZbfBpOXSQDrW4.roa
File: Yj-oKyD13qcWHuZbfBpOXSQDrW4.roa (raw, json)
Hash identifier: p54y8ZqQ2oxqxGHb63EWZT7vEtzuRLkaVPAiWRo+3pQ=
Subject key identifier: 62:3F:A8:2B:20:F5:DE:A7:16:1E:E6:5B:7C:1A:4E:5D:24:03:AD:6E
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 37B0F3D4
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Yj-oKyD13qcWHuZbfBpOXSQDrW4.roa
Signing time: Sat 01 Jan 2022 08:55:53 +0000
ROA not before: Sat 01 Jan 2022 08:55:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205207
IP address blocks: 81.12.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 934343636 (0x37b0f3d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 08:55:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=623fa82b20f5dea7161ee65b7c1a4e5d2403ad6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:12:a4:fb:65:5f:9f:f5:ae:ec:00:fa:de:4d:
59:86:21:47:d1:42:1d:f9:80:7a:bb:e4:fb:cc:92:
df:2f:d6:be:62:ba:06:ec:30:b8:52:86:9d:f1:7f:
a3:a1:a5:0b:6f:6f:ca:dd:a2:e2:67:f4:9c:3b:3a:
56:b3:b1:64:3f:b4:f1:c6:af:5b:21:0b:80:d9:a0:
db:cc:3e:3c:a0:bb:1e:06:67:26:4b:34:f2:09:e7:
d3:82:3e:d9:21:0d:a3:67:b1:b3:de:69:b0:d8:6f:
84:5c:1c:ec:34:4a:91:06:d8:a3:bd:7e:28:97:f6:
4b:b4:fc:30:e0:e2:7e:79:43:6e:fb:4a:27:99:3e:
b9:4d:16:2b:ef:8a:18:b4:a8:c9:f8:92:c5:2a:2b:
8f:0d:ff:c2:3d:9f:3e:6b:31:a8:0d:90:53:8c:a6:
64:47:20:47:61:31:36:28:08:51:68:00:8c:6d:f9:
31:6c:9f:e1:d9:28:87:38:1d:28:4f:42:ec:1c:91:
9c:61:4d:7a:70:a7:1d:04:f9:29:a6:d7:29:a1:5c:
0e:1b:07:d7:01:65:27:08:6c:d5:f2:b5:5c:03:b2:
ba:e9:08:82:e9:8a:01:4b:bf:42:93:6b:66:30:40:
d2:8d:2a:28:0e:28:f6:39:df:a0:c8:6b:76:07:dc:
9e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:3F:A8:2B:20:F5:DE:A7:16:1E:E6:5B:7C:1A:4E:5D:24:03:AD:6E
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Yj-oKyD13qcWHuZbfBpOXSQDrW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.77.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:c8:ad:4a:2a:24:95:78:c7:42:d2:87:92:41:13:df:3d:3e:
f1:6c:7e:3b:11:04:9a:77:65:07:9c:02:9e:c1:52:54:e3:7e:
eb:40:de:c5:50:30:04:36:09:bf:2a:42:d4:23:65:f4:57:25:
e4:71:e4:2e:00:37:4e:17:a7:fa:6b:56:77:d3:01:39:0a:18:
9f:02:df:ff:9a:dc:4a:5e:1c:37:e0:6d:90:5b:64:7e:59:20:
02:3a:cd:fb:e4:2b:75:2e:ab:3c:49:73:6e:01:3c:93:c8:59:
fd:7a:d0:3e:33:59:76:df:bb:4f:d2:02:c8:88:29:76:c1:c7:
35:68:17:33:99:06:1d:e1:26:c1:31:0a:a4:9e:99:01:0a:1a:
1a:79:c2:20:9f:71:58:c0:d1:16:3d:5e:82:b5:04:ee:5f:bb:
20:67:21:f6:a1:b4:05:8c:47:c5:51:66:ba:e5:cf:a5:35:c1:
f5:2b:e3:6d:19:e0:12:a3:be:8a:24:69:b1:d0:e0:bf:a1:a9:
b7:c6:3a:8c:20:c7:81:03:02:8a:64:64:d4:1e:4d:44:ca:fe:
c5:b0:ca:77:60:f2:bf:a7:d3:19:8f:e8:8e:a7:15:93:e3:1a:
59:08:e8:37:c8:0f:c7:6e:b5:7b:56:c4:f3:68:f8:c3:a6:be:
cd:0d:a4:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:56 2024 by rpki-client on console-fra.rpki-client.org