Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/CURSQ_UAB0xgX3ePkMH7yz1pOTg.roa
File: CURSQ_UAB0xgX3ePkMH7yz1pOTg.roa (raw, json)
Hash identifier: etgZGtUohe5Udasov3//X/6TG2WlzKsA5RI6DWUTe/o=
Subject key identifier: 09:44:52:43:F5:00:07:4C:60:5F:77:8F:90:C1:FB:CB:3D:69:39:38
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1DB2BDB9
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/CURSQ_UAB0xgX3ePkMH7yz1pOTg.roa
Signing time: Wed 20 Apr 2022 13:47:26 +0000
ROA not before: Wed 20 Apr 2022 13:47:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204197
IP address blocks: 212.111.220.0/22 maxlen: 24
195.178.132.0/22 maxlen: 24
77.47.180.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 498253241 (0x1db2bdb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Apr 20 13:47:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09445243f500074c605f778f90c1fbcb3d693938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9e:34:07:c2:3e:b0:93:bc:b9:8e:e0:f0:97:
a2:3b:bb:fa:9f:d4:35:6e:ca:21:d9:8a:e3:1e:c6:
2c:8a:dd:b7:e1:7c:dc:a2:63:4e:36:1c:d1:25:ae:
d7:6a:ca:4b:f0:36:bc:96:91:ea:83:fb:07:b5:de:
dd:e9:c0:8d:4f:60:c9:92:2e:e2:f1:0c:a0:29:de:
62:f0:79:34:d7:13:4c:22:7b:16:46:27:12:ce:28:
90:10:06:13:83:03:27:98:89:36:9b:9a:f5:a2:15:
78:b1:7a:48:b1:49:3a:da:f1:93:1f:de:d3:08:37:
11:7a:1c:f1:af:92:84:1b:43:3b:8a:61:b4:ef:4a:
8c:bd:ff:af:4a:82:a4:47:7a:84:bf:71:a2:4f:c5:
bf:0a:ae:94:d7:15:2d:24:a9:09:1e:fd:59:b7:44:
b3:8e:c9:52:00:ac:85:0a:37:dc:13:cc:36:56:66:
aa:1c:67:13:68:ba:9e:04:58:1d:85:af:ef:7c:e7:
46:07:a7:f9:21:ee:d0:f6:7d:ce:7a:eb:9f:71:a0:
15:28:df:18:f6:f0:69:95:13:e6:7b:6c:e8:76:83:
64:ff:4a:28:4e:fd:52:d0:76:1b:48:3b:40:2a:bd:
1d:1e:65:4e:93:49:96:1c:74:bc:47:e3:fe:af:78:
fb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:44:52:43:F5:00:07:4C:60:5F:77:8F:90:C1:FB:CB:3D:69:39:38
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/CURSQ_UAB0xgX3ePkMH7yz1pOTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.180.0/22
195.178.132.0/22
212.111.220.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:76:06:ae:bf:6a:59:94:4a:dc:74:e2:57:3d:2e:83:21:b6:
b3:87:4f:60:16:18:9f:9c:5d:3c:4e:4c:16:d4:73:dd:3a:7b:
7b:3f:a9:7d:20:2e:6a:e4:7a:21:2c:a7:5d:36:93:d2:fb:72:
58:4f:29:21:a1:cc:15:6f:fb:7c:b5:c5:4e:e9:ad:0d:35:64:
0d:7f:ab:45:35:d3:22:a3:93:c7:86:74:7a:cb:0b:91:15:57:
ca:2d:c8:d7:b3:ca:4e:a6:9c:c5:51:dd:fe:e5:0a:c4:29:17:
ae:d4:a3:e2:2c:27:70:5f:c5:dd:27:f1:a0:e8:c4:3e:b9:04:
a5:28:2b:fb:21:32:56:1b:ec:8c:e0:8b:be:4e:21:e9:01:ec:
31:21:7f:45:4e:74:a0:6a:93:94:e2:31:ef:56:5f:3f:de:87:
71:a3:f3:82:d5:ed:be:c9:69:fb:83:46:3c:67:24:98:ad:a1:
83:f5:2d:35:2f:5f:ad:cb:22:15:dd:cb:6d:94:c2:4c:0d:cc:
11:c1:15:82:0c:64:89:8c:17:0c:98:c1:f4:17:b2:0b:cc:74:
44:3e:0b:e2:c8:2e:c4:56:9b:fb:a5:47:fc:77:ae:c1:5e:94:
92:f2:50:b6:01:52:bd:4e:b9:09:e2:8c:7f:5e:6b:52:f7:ba:
04:f9:6f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org