Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/3dc222-1206-4922-8890-455b19f766cc/1/b-YwajV0_HuxEA6sokJ8H_1gnls.roa
File: b-YwajV0_HuxEA6sokJ8H_1gnls.roa (raw, json)
Hash identifier: yx2ZrLhYh/XYC4CvAG014HjJHeGpnsOXoWrh9bcLsEU=
Subject key identifier: 6F:E6:30:6A:35:74:FC:7B:B1:10:0E:AC:A2:42:7C:1F:FD:60:9E:5B
Certificate issuer: /CN=4f0e77d9c6ff68dca68f05df8f4675ee7bdcb0bc
Certificate serial: 0183404A53380F2113B41CB8897BA6A4B36A
Authority key identifier: 4F:0E:77:D9:C6:FF:68:DC:A6:8F:05:DF:8F:46:75:EE:7B:DC:B0:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tw532cb_aNymjwXfj0Z17nvcsLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/3dc222-1206-4922-8890-455b19f766cc/1/b-YwajV0_HuxEA6sokJ8H_1gnls.roa
Signing time: Thu 15 Sep 2022 08:35:56 +0000
ROA not before: Thu 15 Sep 2022 08:35:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20912
IP address blocks: 212.66.96.0/19 maxlen: 24
77.39.216.0/22 maxlen: 24
185.109.188.0/22 maxlen: 24
176.62.48.0/20 maxlen: 21
85.119.176.0/21 maxlen: 24
77.39.192.0/20 maxlen: 24
2001:40d0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:40:4a:53:38:0f:21:13:b4:1c:b8:89:7b:a6:a4:b3:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f0e77d9c6ff68dca68f05df8f4675ee7bdcb0bc
Validity
Not Before: Sep 15 08:35:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fe6306a3574fc7bb1100eaca2427c1ffd609e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:04:64:81:5b:a6:8c:25:61:7e:b5:23:d1:a5:
71:f7:34:ba:5c:95:4d:60:c3:01:39:73:a8:49:14:
4f:ab:42:cf:db:b8:52:82:15:c9:92:06:97:d8:1f:
c4:8b:53:cc:bc:32:7c:32:85:92:78:28:21:f4:1c:
0e:1b:13:d7:49:7c:0c:e6:e8:13:6b:fb:6e:68:94:
35:8b:3c:b2:a7:59:f9:2b:ba:ef:22:ac:34:57:51:
57:bf:a5:f4:02:ae:b4:d4:0c:1d:5a:46:d0:40:ef:
05:52:db:73:62:5a:5c:35:4d:30:da:6a:81:53:93:
b7:6a:31:5c:d5:88:ae:72:91:03:ca:9b:b5:29:93:
7e:31:95:94:49:89:7d:da:3e:7e:8f:17:df:9a:1d:
c3:5f:13:5b:08:b1:72:35:18:6d:c2:32:19:b9:aa:
d9:9e:0d:7d:51:a1:88:33:a2:3c:ce:cb:52:3e:5c:
6b:d1:bc:54:f6:25:1c:2d:28:14:f1:d2:0b:4f:63:
f4:93:83:4d:ef:9e:e8:97:73:53:43:c1:91:8e:2a:
6d:91:95:f9:07:81:5e:fb:fa:7e:ae:32:33:66:a1:
6c:1c:34:41:36:d7:66:17:93:f0:ac:bd:0e:4f:2d:
dc:67:37:f7:75:5e:16:f7:9c:0d:41:08:b3:3c:93:
6f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E6:30:6A:35:74:FC:7B:B1:10:0E:AC:A2:42:7C:1F:FD:60:9E:5B
X509v3 Authority Key Identifier:
keyid:4F:0E:77:D9:C6:FF:68:DC:A6:8F:05:DF:8F:46:75:EE:7B:DC:B0:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tw532cb_aNymjwXfj0Z17nvcsLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/3dc222-1206-4922-8890-455b19f766cc/1/b-YwajV0_HuxEA6sokJ8H_1gnls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/3dc222-1206-4922-8890-455b19f766cc/1/Tw532cb_aNymjwXfj0Z17nvcsLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.39.192.0/20
77.39.216.0/22
85.119.176.0/21
176.62.48.0/20
185.109.188.0/22
212.66.96.0/19
IPv6:
2001:40d0::/32
Signature Algorithm: sha256WithRSAEncryption
bb:6f:99:e2:ac:56:12:6b:df:10:88:95:9a:01:60:9f:16:33:
9a:18:06:c5:c2:7a:1a:6f:76:37:cb:3e:1f:23:e0:af:25:15:
0f:f3:cd:bd:f8:25:a7:d4:a6:bb:1a:b2:d4:eb:4a:3f:54:23:
92:b4:5c:8c:3a:e9:17:eb:7f:2f:d9:af:af:2b:49:79:55:da:
73:b8:81:61:e7:73:59:ed:b2:77:a9:88:58:24:ae:a5:99:53:
74:bd:cb:d6:24:fa:b9:f1:a5:c7:d4:aa:3a:25:de:ba:9e:4e:
c6:29:ae:fe:4f:44:f7:ca:82:05:e4:0e:ee:1c:c4:b5:6b:37:
f8:5e:02:29:6d:14:34:84:d1:b0:e2:c3:09:14:a3:06:87:3d:
a6:60:64:da:a6:f2:74:a6:7a:4e:aa:21:ea:b2:8b:4b:42:e2:
1b:6d:e4:a1:f5:1a:b6:ec:60:19:15:10:d3:96:ee:26:8f:b1:
2d:6f:36:8a:c9:55:ed:f4:43:08:70:ce:9e:f8:99:f3:15:7f:
21:bf:bd:c5:bc:df:b1:25:ec:46:d3:43:3f:6c:48:66:53:e9:
82:da:9e:6a:c1:93:19:fd:40:0e:2c:31:55:64:d9:de:17:f9:
59:dd:f0:7d:a5:49:95:cf:58:80:df:70:67:03:56:b7:c4:34:
c0:3e:28:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:47 2023 by rpki-client on console-fra.rpki-client.org