Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/vDlhaD_p1mCgjbFLXqcEPOFcCGk.roa
File: vDlhaD_p1mCgjbFLXqcEPOFcCGk.roa (raw, json)
Hash identifier: r0ZGHZb8mGesF6wbbpsL7AXzO/PpREsHwR45xpBgsNA=
Subject key identifier: BC:39:61:68:3F:E9:D6:60:A0:8D:B1:4B:5E:A7:04:3C:E1:5C:08:69
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 01849F2735BAEE73F00E92FD8D127B1B88D5
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/vDlhaD_p1mCgjbFLXqcEPOFcCGk.roa
Signing time: Tue 22 Nov 2022 11:44:17 +0000
ROA not before: Tue 22 Nov 2022 11:44:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12660
IP address blocks: 77.237.77.0/24 maxlen: 24
46.209.40.0/22 maxlen: 22
46.209.40.0/23 maxlen: 23
46.209.42.0/23 maxlen: 23
46.209.80.0/22 maxlen: 22
46.209.80.0/21 maxlen: 21
46.209.84.0/22 maxlen: 22
46.209.0.0/24 maxlen: 24
46.209.1.0/24 maxlen: 24
46.209.0.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9f:27:35:ba:ee:73:f0:0e:92:fd:8d:12:7b:1b:88:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Nov 22 11:44:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc3961683fe9d660a08db14b5ea7043ce15c0869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e6:92:60:97:e8:84:c2:46:dd:4a:4c:4d:1b:
b7:86:22:bc:12:4b:6e:db:51:f1:98:46:20:78:d9:
09:d0:13:75:f6:cb:07:76:32:41:6e:2c:b6:99:81:
24:8b:af:52:82:a9:84:a6:30:8b:49:39:8c:33:af:
e2:e0:7c:90:4b:b3:42:a0:59:fe:0c:ed:b5:25:34:
d6:4f:5f:d2:9a:f1:0d:29:61:fa:16:9f:1a:35:b1:
c6:83:c1:db:a8:e8:12:06:67:52:24:b5:04:9c:09:
53:f7:74:91:7f:be:a9:2a:56:72:27:4b:7c:65:d9:
b4:89:c5:f5:53:04:7b:2f:1d:cf:37:ca:ad:d9:d3:
05:9c:42:44:9d:24:fa:93:5e:60:64:9e:33:f2:89:
7d:5c:10:8e:3e:09:b7:86:a5:2a:9c:df:90:ac:a7:
13:3b:e1:e7:5f:0e:26:06:d9:09:ea:03:8c:3b:4a:
fc:18:12:5a:55:cc:42:4d:1c:28:b0:60:44:65:c1:
34:ac:11:69:93:9e:1c:bd:09:c9:d2:22:1b:0a:11:
4b:b7:61:44:f9:1a:86:fc:ef:05:5a:3e:4d:c5:80:
d7:64:05:53:57:e5:7b:06:1b:1e:e4:0c:de:40:55:
02:59:e4:e4:1f:a2:91:82:7e:69:97:ff:76:4e:77:
a8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:39:61:68:3F:E9:D6:60:A0:8D:B1:4B:5E:A7:04:3C:E1:5C:08:69
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/vDlhaD_p1mCgjbFLXqcEPOFcCGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.209.0.0/23
46.209.40.0/22
46.209.80.0/21
77.237.77.0/24
Signature Algorithm: sha256WithRSAEncryption
44:f1:0d:7d:6e:be:41:4d:77:59:2a:b6:d6:23:f9:4d:ac:4c:
ff:33:e0:75:ed:6c:1a:91:0d:ae:81:ef:c1:ed:49:f8:d3:c6:
17:d9:b9:c1:58:35:4e:1e:a8:a7:5b:71:2f:95:08:61:63:d7:
a5:7b:9c:fa:c1:76:aa:f5:b5:57:df:ac:a3:4d:1a:70:04:0d:
f6:60:6e:45:21:37:ad:9a:f2:11:d3:9a:13:d1:1f:5d:61:50:
b4:fd:72:5b:c4:84:59:e1:d9:0a:f6:57:7e:28:32:ea:c2:f0:
a4:63:72:76:a6:7b:fe:a0:8c:85:92:e3:50:d2:d2:64:a0:22:
8e:77:df:46:90:9b:36:f1:d7:ca:f7:5e:20:bf:8d:73:0d:b4:
9d:4f:1e:8f:af:9a:78:15:ca:40:80:b0:5f:2d:ca:30:40:2c:
93:c3:40:be:85:d5:7e:39:f5:39:fe:c9:10:2a:47:56:7f:82:
7c:e3:96:bf:8c:ce:6f:06:36:83:98:b9:ed:15:8e:19:f7:6c:
78:34:ab:2d:2d:2e:86:21:78:82:fe:db:31:44:aa:51:d9:c5:
a1:c1:90:fd:0e:6a:ce:06:2c:9a:d2:4f:4d:db:bc:51:22:dc:
00:2b:e0:cf:49:f2:b3:58:c0:53:bb:16:2e:01:4d:f5:aa:65:
a4:d3:bf:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:19 2023 by rpki-client on console-fra.rpki-client.org