Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/ST7LEsaUxI3F1vH2T0utyogSsRg.roa
File: ST7LEsaUxI3F1vH2T0utyogSsRg.roa (raw, json)
Hash identifier: +pfgSY/O2XjF6pI2GbJr5/Fbzt9lDABBC1xyqTvfpVU=
Subject key identifier: 49:3E:CB:12:C6:94:C4:8D:C5:D6:F1:F6:4F:4B:AD:CA:88:12:B1:18
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 0183831EAC6C9817F6700970DB391567C7DC
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/ST7LEsaUxI3F1vH2T0utyogSsRg.roa
Signing time: Wed 28 Sep 2022 08:02:48 +0000
ROA not before: Wed 28 Sep 2022 08:02:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212953
IP address blocks: 212.111.207.0/24 maxlen: 24
77.47.158.0/23 maxlen: 24
77.47.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:83:1e:ac:6c:98:17:f6:70:09:70:db:39:15:67:c7:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Sep 28 08:02:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=493ecb12c694c48dc5d6f1f64f4badca8812b118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:db:65:a3:4a:63:a0:61:95:fe:9a:a1:c1:18:
6a:c7:c2:9f:cf:6a:29:17:a1:25:ad:98:d6:3b:60:
02:e8:ee:d1:d9:f7:1b:e6:df:92:48:e6:e9:40:e2:
3e:57:b8:85:1c:c4:dc:b1:81:37:8c:02:bb:b5:6b:
e0:e4:6f:b9:82:04:bb:81:30:ad:41:0e:04:d2:e9:
27:82:6c:5e:97:41:87:ad:b8:58:3b:ca:30:8e:88:
13:54:ea:82:ae:c3:f0:36:56:64:cd:d5:1c:f8:03:
d5:91:06:37:e2:29:72:ce:51:a7:2e:d0:35:25:7b:
33:d2:a9:0c:68:2e:79:d3:5f:ac:b0:c0:cb:5e:62:
5e:a2:43:c3:2b:db:8e:97:bd:a8:5e:2f:0d:ea:5f:
0a:95:ba:ac:78:ad:e8:68:80:b5:b6:45:42:a9:53:
09:4a:5d:d8:e1:b0:c7:bc:fb:6c:22:f6:1a:69:53:
be:91:b3:bc:f7:bc:e4:50:c6:9e:29:3c:3b:5b:53:
65:64:26:31:bd:68:9d:11:e4:91:d7:f7:3f:db:9b:
dd:bb:fc:a2:f4:bb:de:f1:be:f8:7d:f8:83:e0:5b:
f9:eb:a7:1a:b1:ea:7e:b2:f3:02:43:3b:c8:23:db:
93:14:ed:f4:8e:da:a0:f3:d0:d4:08:60:f0:4a:80:
7e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3E:CB:12:C6:94:C4:8D:C5:D6:F1:F6:4F:4B:AD:CA:88:12:B1:18
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/ST7LEsaUxI3F1vH2T0utyogSsRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.157.0-77.47.159.255
212.111.207.0/24
Signature Algorithm: sha256WithRSAEncryption
64:59:92:73:fb:1d:20:15:fb:b9:3b:82:b1:73:15:ad:b7:62:
1e:a5:6f:54:fc:9f:91:f6:c2:55:b3:40:a7:d9:09:b6:05:dd:
f1:88:22:ee:8a:aa:eb:74:10:9d:e8:a9:eb:80:89:dd:30:75:
6d:35:66:f6:e8:8f:cc:2f:af:10:32:a3:26:71:1a:2a:4f:fd:
2f:59:41:5e:52:8f:f6:59:c7:b5:c4:5f:33:a0:96:62:3a:63:
d2:2f:06:5e:fd:7e:7a:47:f3:1c:da:96:0f:4e:73:2a:b2:9f:
8c:1e:da:81:69:5f:bf:a3:f3:f5:27:3e:2d:e1:5f:9b:90:60:
2e:41:0a:ac:d7:19:3f:86:c8:25:67:dc:6c:a4:0d:ab:50:b5:
76:95:fb:e9:67:34:26:a3:12:de:6a:3e:ea:80:72:9b:46:18:
5d:b4:77:a8:82:9b:0d:43:2a:b3:94:d1:03:bd:13:3a:27:87:
e0:1e:38:3a:29:17:8c:a2:73:96:32:fb:01:60:9a:17:1a:01:
f0:52:82:19:10:62:58:bd:4f:62:30:8e:43:2b:f3:ca:d6:ee:
a6:14:44:04:21:49:db:0c:8c:ac:38:31:f0:cd:6c:06:3f:41:
d8:68:41:d2:39:ca:f8:a5:8b:ad:3f:3a:b1:72:05:5c:03:49:
87:29:a7:fd
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org