Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/91uc6e-kOB9Fx8zWl-jwSS2gB1k.roa
File: 91uc6e-kOB9Fx8zWl-jwSS2gB1k.roa (raw, json)
Hash identifier: G3VU9dK1fo8dNKws3frzUSS5zXTMQID8r5FDBQLa+eE=
Subject key identifier: F7:5B:9C:E9:EF:A4:38:1F:45:C7:CC:D6:97:E8:F0:49:2D:A0:07:59
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 0182915F7316998BE4DDA5FC86D9F34F081B
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/91uc6e-kOB9Fx8zWl-jwSS2gB1k.roa
Signing time: Fri 12 Aug 2022 09:25:27 +0000
ROA not before: Fri 12 Aug 2022 09:25:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 77.47.252.0/22 maxlen: 24
195.178.128.0/22 maxlen: 24
77.47.248.0/22 maxlen: 24
185.143.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:91:5f:73:16:99:8b:e4:dd:a5:fc:86:d9:f3:4f:08:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Aug 12 09:25:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f75b9ce9efa4381f45c7ccd697e8f0492da00759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:dd:cb:3d:ad:83:df:99:00:d5:27:04:08:74:
6f:5c:eb:d5:70:f4:be:5b:89:c7:01:19:77:13:66:
1f:9f:71:e1:b4:0d:24:5f:6c:19:52:e8:43:91:c8:
be:21:be:dc:34:a5:0f:bf:00:7a:b3:18:58:c8:a3:
5f:c1:90:7f:e1:27:9d:61:bf:a8:26:b9:75:47:fc:
17:66:72:7f:c4:57:50:6a:42:5a:d5:65:97:6e:b9:
c2:a2:d5:3a:af:c3:73:11:62:67:1a:fd:1b:8c:86:
f3:24:49:00:cf:74:6f:5e:79:28:9c:4d:33:97:96:
8e:e6:c3:62:0a:cd:80:dd:82:50:5e:6f:92:fe:69:
95:56:9e:8e:55:7e:63:1f:fc:ac:8a:66:8e:7c:ee:
c6:68:9f:00:54:fb:e0:53:1f:a6:0b:cf:76:91:02:
f0:f5:84:cc:9e:a7:15:2a:cc:cd:e7:5a:56:44:dc:
1e:ba:36:64:2f:46:e3:fc:43:6d:b1:db:24:91:95:
f4:9c:d0:4b:00:b1:ca:63:ea:c3:9f:34:d7:ea:80:
ec:ba:09:1b:48:38:29:94:1c:b1:15:af:13:3d:76:
9d:86:bb:86:25:8d:74:a4:ac:9c:21:28:f3:dd:08:
73:e7:02:08:81:f3:3b:e4:bd:1e:23:d8:c5:87:d0:
e9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:5B:9C:E9:EF:A4:38:1F:45:C7:CC:D6:97:E8:F0:49:2D:A0:07:59
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/91uc6e-kOB9Fx8zWl-jwSS2gB1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.248.0/21
185.143.56.0/22
195.178.128.0/22
Signature Algorithm: sha256WithRSAEncryption
05:67:1d:1f:6c:cc:73:d7:52:cd:02:dc:7d:2e:52:d1:de:13:
b2:a2:51:b9:41:d3:b1:2a:04:85:f0:e6:d2:b4:a1:89:1f:5d:
c5:4c:b5:54:30:17:48:e0:8f:49:9c:3c:89:2c:8a:27:fe:9c:
98:14:7f:ec:8d:e2:2f:d1:fa:2e:6b:34:20:97:64:85:0e:47:
6c:57:06:4f:92:17:38:45:cd:f0:b8:4d:83:e0:59:eb:61:82:
a2:ff:49:d8:f3:c9:c1:a8:bc:b7:ba:8c:5e:e2:6e:a7:a2:a4:
2c:28:71:6f:4f:96:84:2f:de:67:ff:e6:19:09:62:9d:eb:40:
99:b3:c5:ff:3f:16:80:cc:57:2b:20:9b:00:67:e0:2c:b2:6f:
f0:5d:b2:50:8b:fe:30:da:16:47:f3:d8:7c:59:47:94:05:be:
80:7b:9d:c1:80:0f:ee:67:4e:81:8d:9e:36:a0:4b:08:1e:9f:
cd:9f:7c:24:60:7b:7f:3e:3e:d0:b5:cb:ef:ea:83:0c:ed:5c:
fe:56:8b:a1:f0:08:bd:f5:fb:dc:d7:d1:9f:5d:99:72:4d:7e:
36:6b:79:ef:f2:8b:8e:cf:bd:fe:53:f7:5c:ba:39:35:23:ed:
e8:fb:f1:51:9f:fa:cf:6f:cb:d8:e1:02:9e:0e:a2:e7:42:20:
bd:d3:41:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org