Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/DR1TyyKWmMw9qE9_PqcuSssTYWE.roa
File: DR1TyyKWmMw9qE9_PqcuSssTYWE.roa (raw, json)
Hash identifier: xOKFtg6CGY5Jwka3WtQUTF0GsCuPELG3MYSAb1psjA8=
Subject key identifier: 0D:1D:53:CB:22:96:98:CC:3D:A8:4F:7F:3E:A7:2E:4A:CB:13:61:61
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 0184EE8F5133E7212F321DA7619375D39024
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/DR1TyyKWmMw9qE9_PqcuSssTYWE.roa
Signing time: Wed 07 Dec 2022 21:48:00 +0000
ROA not before: Wed 07 Dec 2022 21:48:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 77.47.252.0/22 maxlen: 24
195.178.128.0/22 maxlen: 24
77.47.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ee:8f:51:33:e7:21:2f:32:1d:a7:61:93:75:d3:90:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Dec 7 21:48:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d1d53cb229698cc3da84f7f3ea72e4acb136161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:ff:26:12:ea:e3:3a:0a:3a:52:6d:eb:a9:92:
87:c9:61:3d:be:a2:4f:15:98:4c:cd:5b:6c:9f:ac:
42:26:7b:a3:37:61:97:5d:56:4b:2a:f1:aa:04:b5:
92:d2:34:e1:13:ba:65:00:0e:af:b1:18:9a:cc:da:
3c:ad:c3:db:46:07:cf:50:1b:f0:da:3a:65:02:c0:
ef:b5:3d:4f:3e:b6:ca:80:68:88:c7:5c:f9:50:24:
d4:8f:9f:c9:f8:2a:dc:53:70:4c:06:7d:5a:d7:fb:
b7:36:a7:57:c4:42:98:46:6a:37:be:15:ae:7e:e4:
7d:ea:c3:4c:26:6e:cb:db:4a:e2:f3:75:7b:c7:08:
05:3a:dc:25:d7:d7:59:46:1e:2c:e4:ff:74:dd:23:
fc:a3:46:e5:af:9a:e2:d3:39:73:8d:77:1a:41:4c:
1c:a9:0e:2d:df:3a:0d:d0:d7:df:38:9c:8b:1d:1d:
ac:bd:49:20:0d:25:36:8a:5f:04:7c:fb:77:6e:58:
5b:67:ea:31:19:fb:c7:4d:76:f6:57:42:3d:5f:5c:
1f:8f:64:53:a1:cd:03:f2:a7:dd:34:b5:c5:19:af:
b7:7c:f8:c6:0c:11:ba:cd:16:59:52:7d:eb:22:7e:
c4:19:99:9c:6e:e6:85:a0:91:5c:3a:34:76:d8:63:
3a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:1D:53:CB:22:96:98:CC:3D:A8:4F:7F:3E:A7:2E:4A:CB:13:61:61
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/DR1TyyKWmMw9qE9_PqcuSssTYWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.248.0/21
195.178.128.0/22
Signature Algorithm: sha256WithRSAEncryption
94:6e:65:52:cd:91:27:b4:ae:63:29:1d:3c:5f:20:61:2c:4d:
5b:9f:11:0d:f2:af:ad:c0:c6:cb:b9:d2:09:01:3c:de:32:91:
6c:39:59:7a:57:1f:8a:fe:5c:60:c1:fe:e2:bb:c9:49:93:03:
b6:80:7b:18:a3:66:ae:ab:1a:0c:14:65:7b:1b:13:6a:5f:c6:
7d:94:00:c8:62:55:c6:f2:24:bc:32:cd:2c:ca:72:a2:4c:2d:
1f:67:7a:44:fc:a1:a8:e8:cc:77:ea:25:53:aa:f1:b1:ce:28:
72:6d:d1:53:a4:42:75:04:ec:32:c5:49:29:df:f8:dc:23:dd:
3d:a2:5b:57:c9:93:1c:53:35:b1:e3:8b:03:7e:a2:f4:c7:1d:
d2:34:09:ad:4f:40:1f:cb:c0:5f:6b:f6:2c:ca:1e:a5:f2:6d:
d8:80:65:b0:fb:59:b6:72:5a:20:c3:56:ea:c9:d9:9a:97:ca:
bb:4c:ad:77:6a:e7:ca:39:ef:d9:b3:77:0b:2b:1f:94:0c:02:
56:c4:99:c4:7c:64:b7:68:02:6b:9e:0f:c6:19:98:29:5e:05:
ca:d4:7a:89:b8:07:47:09:38:63:3b:db:77:c6:6b:14:7b:73:
6f:c7:c3:c8:fc:a2:0a:ce:87:6a:c6:19:c4:ea:da:ea:66:ce:
ca:0e:be:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org