Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/dj4Jqhnrix2zxLvGD-QqGDR7GrI.roa
File: dj4Jqhnrix2zxLvGD-QqGDR7GrI.roa (raw, json)
Hash identifier: fBp9pGIZfz5kp2gDuHrbSdeoVF3xp5iLmHawvXwp2jg=
Subject key identifier: 76:3E:09:AA:19:EB:8B:1D:B3:C4:BB:C6:0F:E4:2A:18:34:7B:1A:B2
Certificate issuer: /CN=2400b20606314858a7b3f2a975e8e9d919ec753a
Certificate serial: 151B07F1
Authority key identifier: 24:00:B2:06:06:31:48:58:A7:B3:F2:A9:75:E8:E9:D9:19:EC:75:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JACyBgYxSFins_Kpdejp2RnsdTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/dj4Jqhnrix2zxLvGD-QqGDR7GrI.roa
Signing time: Sat 01 Jan 2022 06:03:29 +0000
ROA not before: Sat 01 Jan 2022 06:03:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43578
IP address blocks: 185.74.81.0/24 maxlen: 24
185.74.80.0/24 maxlen: 24
77.246.186.96/27 maxlen: 27
77.246.190.160/27 maxlen: 27
77.246.187.0/24 maxlen: 24
77.246.188.0/24 maxlen: 24
77.246.190.0/24 maxlen: 24
77.246.191.0/24 maxlen: 24
77.246.182.128/29 maxlen: 29
77.246.178.0/24 maxlen: 24
77.246.179.0/24 maxlen: 24
77.246.176.0/24 maxlen: 24
77.246.177.0/24 maxlen: 24
77.246.182.0/24 maxlen: 24
77.246.180.0/24 maxlen: 24
77.246.181.0/24 maxlen: 24
77.246.185.0/24 maxlen: 24
77.246.186.0/24 maxlen: 24
77.246.183.0/24 maxlen: 24
2a05:4700:101::/48 maxlen: 48
2a05:4700:100::/48 maxlen: 48
2a05:4700:200::/48 maxlen: 48
2a05:4700:50::/48 maxlen: 48
2a05:4700:b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354093041 (0x151b07f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2400b20606314858a7b3f2a975e8e9d919ec753a
Validity
Not Before: Jan 1 06:03:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=763e09aa19eb8b1db3c4bbc60fe42a18347b1ab2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8d:28:b1:ef:d3:03:ee:ac:01:a0:09:3d:84:
7c:20:36:ab:7b:1c:a3:11:65:64:c6:26:36:39:05:
39:cb:0d:a2:ed:af:28:e3:9e:0a:29:80:24:16:c3:
d3:01:84:9c:94:25:89:09:2b:79:87:6b:f1:52:c0:
3a:1c:16:4b:0a:eb:59:4b:d2:e1:f9:d6:7c:95:44:
44:0a:60:52:05:26:b5:cc:b9:ba:7b:3e:2f:37:c9:
c7:aa:d5:91:e4:e7:ed:ed:ac:47:fa:4d:3e:43:2f:
80:bc:86:f1:f1:de:a1:99:d5:18:99:3a:9f:37:85:
29:4a:01:87:45:8f:44:2c:04:f6:d9:94:38:2e:54:
2f:fc:7b:34:82:6d:31:05:64:fc:7e:a3:60:05:01:
ab:6c:57:5b:fb:8a:23:4e:11:9a:a5:0b:2f:34:36:
8e:df:05:35:45:75:14:08:02:c0:4e:d6:ef:63:06:
86:48:8c:86:69:73:5d:3c:70:10:88:b2:48:33:2c:
6b:89:68:46:19:0f:20:b1:3c:13:b7:10:8d:b9:b9:
77:c9:b2:41:aa:50:c0:3c:4a:33:7f:a3:2c:f3:08:
f1:2e:f5:67:8e:5a:00:dd:95:58:fc:c7:f5:45:3a:
cc:dd:09:30:32:8e:c8:0c:74:a7:b1:84:bc:86:8c:
b1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:3E:09:AA:19:EB:8B:1D:B3:C4:BB:C6:0F:E4:2A:18:34:7B:1A:B2
X509v3 Authority Key Identifier:
keyid:24:00:B2:06:06:31:48:58:A7:B3:F2:A9:75:E8:E9:D9:19:EC:75:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JACyBgYxSFins_Kpdejp2RnsdTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/dj4Jqhnrix2zxLvGD-QqGDR7GrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/JACyBgYxSFins_Kpdejp2RnsdTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.176.0/21
77.246.185.0-77.246.188.255
77.246.190.0/23
185.74.80.0/23
IPv6:
2a05:4700:b::/48
2a05:4700:50::/48
2a05:4700:100::/47
2a05:4700:200::/48
Signature Algorithm: sha256WithRSAEncryption
98:42:ce:07:ea:fb:8b:86:82:af:b0:b0:08:de:fa:72:bd:25:
3e:d0:af:42:ee:ad:62:a6:bb:ed:b5:4a:1d:da:72:a8:88:44:
2e:27:15:61:fb:da:5f:70:a5:af:b6:ae:87:8d:38:1a:da:e5:
38:b5:cc:79:8d:60:c9:27:7e:d0:ba:73:24:ef:f0:b7:9f:40:
bb:79:06:cd:fe:df:93:94:23:d7:91:b9:f6:ff:cd:e1:60:9f:
b4:25:68:6e:d9:7c:c9:3c:30:04:fb:67:33:b7:d1:2d:91:60:
0f:69:94:92:a1:de:2b:ec:bd:ed:0e:bb:15:3a:71:79:2d:1a:
14:09:ba:7b:02:4d:27:bb:ce:86:94:bb:7c:fb:ae:08:39:0e:
5b:69:e6:b5:e4:60:33:8b:ca:46:58:bb:47:ab:45:51:83:7e:
88:b0:11:19:7c:27:68:1f:89:62:c0:36:a2:14:92:2f:e6:80:
19:3c:3b:0d:e3:05:51:7f:e6:10:5d:d0:75:3b:68:69:1b:a1:
cb:ba:22:d9:33:08:22:98:ff:e1:0b:59:26:14:1b:0c:cf:b6:
35:4c:e0:86:70:c6:bd:b1:26:ce:2e:e3:72:d9:50:99:db:01:
5b:b3:62:f1:ea:06:51:d1:6b:20:4d:11:a1:6d:49:4b:a9:57:
80:1e:a5:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:13 2023 by rpki-client on console-fra.rpki-client.org