Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/COQyCtqdQ939u_1rmWPr8AVMvXE.roa
File: COQyCtqdQ939u_1rmWPr8AVMvXE.roa (raw, json)
Hash identifier: +poIwBpyUgp7oQjMDK1BHAy4mG0mh1u7gYDETvMj2GA=
Subject key identifier: 08:E4:32:0A:DA:9D:43:DD:FD:BB:FD:6B:99:63:EB:F0:05:4C:BD:71
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1D656AA8
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/COQyCtqdQ939u_1rmWPr8AVMvXE.roa
Signing time: Wed 30 Mar 2022 16:19:06 +0000
ROA not before: Wed 30 Mar 2022 16:19:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3319
IP address blocks: 195.178.144.0/21 maxlen: 21
195.178.152.0/22 maxlen: 22
212.111.220.0/24 maxlen: 24
212.111.222.0/24 maxlen: 24
212.111.221.0/24 maxlen: 24
212.111.223.0/24 maxlen: 24
77.47.244.0/22 maxlen: 22
77.47.252.0/22 maxlen: 24
77.47.152.0/24 maxlen: 24
77.47.154.0/24 maxlen: 24
77.47.153.0/24 maxlen: 24
77.47.155.0/24 maxlen: 24
77.47.182.0/24 maxlen: 24
77.47.181.0/24 maxlen: 24
77.47.183.0/24 maxlen: 24
77.47.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 493185704 (0x1d656aa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Mar 30 16:19:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08e4320ada9d43ddfdbbfd6b9963ebf0054cbd71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bd:be:47:26:27:b3:21:d9:30:68:82:95:bb:
31:fd:f2:ca:bc:3b:ec:03:88:a1:25:9f:97:a6:da:
72:b0:6d:4b:64:0d:a6:58:d4:55:6a:43:16:be:52:
e2:5a:16:c1:02:96:51:59:fe:9e:69:8e:34:e8:c7:
de:ad:18:0d:42:71:ff:fc:6c:9b:03:4c:1a:7b:82:
0c:25:51:1f:08:dd:34:99:88:13:de:08:b0:1d:03:
db:91:ba:f7:76:22:70:cc:2c:ee:8e:31:cc:d6:48:
b7:49:e4:0b:ac:9d:20:5a:7e:ab:e4:35:0d:bc:c8:
7f:a6:e1:7b:24:07:71:d7:77:0a:68:ed:b1:16:2e:
0f:01:e2:f1:6d:6c:9a:9a:35:06:4c:2e:49:86:7b:
a4:75:22:4e:78:1a:7b:34:20:8a:1f:ad:e3:16:84:
e7:64:ef:63:5c:81:f2:29:9e:a6:61:a3:11:a8:8f:
a9:ee:1e:17:b1:69:1b:aa:4a:98:9b:87:00:d5:34:
50:5b:6b:db:bf:12:1d:ea:71:4c:2b:3b:70:bd:21:
c1:9a:86:8c:67:53:16:55:a3:08:b9:d2:63:e7:d2:
1e:13:b5:a5:33:fe:ad:90:a8:0a:00:bf:a0:11:0c:
db:5f:b7:09:cc:80:42:44:05:52:0f:aa:4c:5d:b6:
4c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:E4:32:0A:DA:9D:43:DD:FD:BB:FD:6B:99:63:EB:F0:05:4C:BD:71
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/COQyCtqdQ939u_1rmWPr8AVMvXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.152.0/22
77.47.180.0/22
77.47.244.0/22
77.47.252.0/22
195.178.144.0-195.178.155.255
212.111.220.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:15:d9:a1:5b:dd:1e:f5:3c:75:fb:e9:6a:89:7f:9e:45:78:
32:5a:ee:56:d4:17:f9:0d:a0:39:94:c7:fc:81:32:52:c1:7f:
03:af:a1:34:70:fe:31:ba:b3:8b:34:e9:88:3d:3e:da:5e:e3:
86:b3:8c:9a:56:0d:4d:3e:99:28:6d:69:b8:76:af:f5:7b:7e:
71:a2:0c:ba:01:cd:9d:57:8d:67:89:42:6b:00:33:24:a8:6c:
36:b5:00:60:36:ed:41:b1:9b:d0:e5:83:1a:56:68:45:94:42:
53:75:87:03:2a:b4:51:41:47:29:c2:89:c3:f6:1e:92:0d:7c:
3e:43:67:b3:9b:a8:57:bc:89:53:cd:a6:4e:98:91:11:63:65:
2c:25:e9:f3:1f:12:62:00:07:3f:1f:ca:fd:e5:40:31:bb:55:
fd:23:f8:45:f7:9d:4e:79:3b:32:ef:8f:38:bd:66:79:6d:09:
3a:f0:a4:e7:7d:1c:5d:fd:61:00:36:40:29:71:92:07:2b:1e:
19:54:6b:c8:78:f9:2a:da:27:ef:de:42:74:d9:b6:83:1d:e2:
a1:7b:78:1e:0b:97:52:47:fa:a7:82:eb:1f:25:28:86:08:2a:
43:c6:7d:cc:b3:4a:8a:e6:3e:f4:ea:70:4a:0b:50:6e:ea:9f:
59:4f:74:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org