Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/QllfqaXt_2Qmo5x8AI_GrCOSbzc.roa
File: QllfqaXt_2Qmo5x8AI_GrCOSbzc.roa (raw, json)
Hash identifier: jVhmYQoNbcJU+QFZDso8dF60nLZxmAK4LMRYDh3D9rI=
Subject key identifier: 42:59:5F:A9:A5:ED:FF:64:26:A3:9C:7C:00:8F:C6:AC:23:92:6F:37
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 01821BBB1B43E98C097AC190AE57789D2703
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/QllfqaXt_2Qmo5x8AI_GrCOSbzc.roa
Signing time: Wed 20 Jul 2022 13:10:23 +0000
ROA not before: Wed 20 Jul 2022 13:10:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25500
IP address blocks: 77.47.128.0/17 maxlen: 17
77.47.130.0/24 maxlen: 24
77.47.128.0/24 maxlen: 24
77.47.137.0/24 maxlen: 24
77.47.135.0/24 maxlen: 24
77.47.202.0/23 maxlen: 23
77.47.201.0/24 maxlen: 24
77.47.206.0/24 maxlen: 24
77.47.204.0/23 maxlen: 23
77.47.200.0/24 maxlen: 24
77.47.209.0/24 maxlen: 24
77.47.207.0/24 maxlen: 24
77.47.208.0/24 maxlen: 24
77.47.216.0/24 maxlen: 24
77.47.217.0/24 maxlen: 24
77.47.214.0/24 maxlen: 24
77.47.215.0/24 maxlen: 24
77.47.218.0/24 maxlen: 24
77.47.223.0/24 maxlen: 24
77.47.224.0/24 maxlen: 24
77.47.222.0/24 maxlen: 24
77.47.225.0/24 maxlen: 24
77.47.226.0/24 maxlen: 24
77.47.227.0/24 maxlen: 24
77.47.235.0/24 maxlen: 24
77.47.236.0/24 maxlen: 24
77.47.234.0/24 maxlen: 24
77.47.161.0/24 maxlen: 24
77.47.160.0/24 maxlen: 24
77.47.164.0/24 maxlen: 24
77.47.165.0/24 maxlen: 24
77.47.162.0/24 maxlen: 24
77.47.163.0/24 maxlen: 24
77.47.166.0/24 maxlen: 24
77.47.168.0/24 maxlen: 24
77.47.171.0/24 maxlen: 24
77.47.172.0/24 maxlen: 24
77.47.169.0/24 maxlen: 24
77.47.170.0/24 maxlen: 24
77.47.174.0/24 maxlen: 24
77.47.175.0/24 maxlen: 24
77.47.173.0/24 maxlen: 24
77.47.186.0/23 maxlen: 23
77.47.184.0/23 maxlen: 23
77.47.190.0/24 maxlen: 24
77.47.196.0/23 maxlen: 23
77.47.194.0/24 maxlen: 24
77.47.199.0/24 maxlen: 24
77.47.198.0/24 maxlen: 24
2a02:db0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1b:bb:1b:43:e9:8c:09:7a:c1:90:ae:57:78:9d:27:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jul 20 13:10:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42595fa9a5edff6426a39c7c008fc6ac23926f37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a6:e1:04:ee:ac:e5:70:26:58:de:ca:6c:eb:
ba:48:ab:01:0e:c4:13:4a:73:12:df:20:32:d5:b4:
1d:d8:a1:4f:e9:70:94:e8:82:e2:65:58:63:96:c9:
b0:17:0f:a9:fe:f2:2d:69:93:e0:e0:a5:3f:23:c0:
34:b6:98:6f:f6:40:23:d9:25:f4:2b:db:98:6d:46:
df:d7:d9:13:8f:65:39:73:24:bb:f9:5b:71:14:c3:
70:31:da:2a:86:49:89:fc:3c:a9:7f:29:49:7c:90:
4b:a6:43:e4:b4:68:aa:fb:11:a1:67:04:1a:66:94:
09:cc:e7:1b:e7:2f:60:ab:e2:ba:47:21:8f:77:32:
d3:b1:9b:8e:81:72:96:be:d0:b0:6c:2d:e9:b9:31:
70:50:d9:0a:fb:9c:cf:54:6d:24:a3:14:45:61:cd:
81:d3:76:fa:1d:b4:d1:9b:67:e4:e9:7e:eb:f1:60:
24:84:bb:c1:92:c2:9b:bf:7e:30:a9:61:b6:c7:4f:
ce:70:46:cb:78:80:04:97:aa:0f:bf:40:0b:93:06:
c4:09:64:ac:e0:86:8c:75:c0:25:42:43:a7:94:c8:
be:1a:6c:cb:69:7d:1b:af:00:15:f2:0c:99:0e:df:
95:13:6e:f9:b3:9f:86:2c:7f:70:cf:71:c1:b8:3c:
50:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:59:5F:A9:A5:ED:FF:64:26:A3:9C:7C:00:8F:C6:AC:23:92:6F:37
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/QllfqaXt_2Qmo5x8AI_GrCOSbzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.128.0/17
IPv6:
2a02:db0::/32
Signature Algorithm: sha256WithRSAEncryption
8a:a8:46:f7:3d:8f:4b:02:b7:7e:87:73:37:02:fe:d5:94:e4:
aa:08:ba:c5:93:01:85:06:8e:ef:b4:42:a2:d0:18:57:8a:4d:
91:93:b7:16:7b:13:30:4a:1a:c8:c1:28:6f:a7:f7:8c:9a:43:
10:02:0a:06:96:08:7f:93:26:dd:a6:2f:21:fd:96:3f:87:c4:
ca:db:40:27:8b:36:14:c0:cd:40:35:c9:ee:07:fd:8c:78:71:
18:33:f4:4b:1d:f4:6f:7c:20:d5:ce:fc:be:8c:02:a1:98:82:
0d:f2:99:df:e3:f3:fa:f9:d6:4e:7f:e2:d9:46:b9:2a:e5:e9:
36:22:1a:92:e3:36:ca:67:c0:91:aa:c8:34:16:d5:98:c5:9d:
66:25:b6:67:a1:e9:73:70:a3:32:ee:ac:2d:7e:b4:87:d3:57:
fd:c9:6d:0c:a4:51:a2:7b:c9:f2:ca:aa:17:6a:ea:38:4e:c9:
ba:98:b4:7e:b2:00:03:26:11:c6:bf:fb:03:33:bc:df:c9:25:
b8:c6:f1:7d:6f:a5:55:19:52:de:c9:cd:ae:d1:9e:8a:f2:dd:
ff:ca:e7:8b:a7:80:c2:fe:53:b1:68:f9:39:67:1e:dc:70:b7:
45:5c:62:69:58:8e:fa:a1:50:6e:4e:0e:6f:b9:67:e4:ba:15:
f8:11:b3:2d
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYIbuxtD6YwJesGQrld4nScDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5NDI2MzI1YWNiOGNlNjA5YTY4NmZhNjU1YjA1ODk2ODgw
OWIzNDYwHhcNMjIwNzIwMTMxMDIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MjU5NWZhOWE1ZWRmZjY0MjZhMzljN2MwMDhmYzZhYzIzOTI2ZjM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqbhBO6s5XAmWN7KbOu6SKsBDsQT
SnMS3yAy1bQd2KFP6XCU6ILiZVhjlsmwFw+p/vItaZPg4KU/I8A0tphv9kAj2SX0
K9uYbUbf19kTj2U5cyS7+VtxFMNwMdoqhkmJ/DypfylJfJBLpkPktGiq+xGhZwQa
ZpQJzOcb5y9gq+K6RyGPdzLTsZuOgXKWvtCwbC3puTFwUNkK+5zPVG0koxRFYc2B
03b6HbTRm2fk6X7r8WAkhLvBksKbv34wqWG2x0/OcEbLeIAEl6oPv0ALkwbECWSs
4IaMdcAlQkOnlMi+GmzLaX0brwAV8gyZDt+VE275s5+GLH9wz3HBuDxQYwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFEJZX6ml7f9kJqOcfACPxqwjkm83MB8GA1UdIwQY
MBaAFBlCYyWsuM5gmmhvplWwWJaICbNGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQt
MDNmNGM3MTEzYzM0LzEvUWxsZnFhWHRfMlFtbzV4OEFJX0dyQ09TYnpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQtMDNmNGM3MTEzYzM0
LzEvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQHTS+AMA0E
AgACMAcDBQAqAg2wMA0GCSqGSIb3DQEBCwUAA4IBAQCKqEb3PY9LArd+h3M3Av7V
lOSqCLrFkwGFBo7vtEKi0BhXik2Rk7cWexMwShrIwShvp/eMmkMQAgoGlgh/kybd
pi8h/ZY/h8TK20AnizYUwM1ANcnuB/2MeHEYM/RLHfRvfCDVzvy+jAKhmIIN8pnf
4/P6+dZOf+LZRrkq5ek2IhqS4zbKZ8CRqsg0FtWYxZ1mJbZnoelzcKMy7qwtfrSH
01f9yW0MpFGie8nyyqoXauo4Tsm6mLR+sgADJhHGv/sDM7zfySW4xvF9b6VVGVLe
yc2u0Z6K8t3/yueLp4DC/lOxaPk5Zx7ccLdFXGJpWI76oVBuTg5vuWfkuhX4EbMt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org