Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/ULHad-QCt-iRVk_x76DWSLaGl0Y.roa
File: ULHad-QCt-iRVk_x76DWSLaGl0Y.roa (raw, json)
Hash identifier: xd+ogiQ9MtO94cKiomdPdJeuCcyzT4JBBtxCZ5mF6Xk=
Subject key identifier: 50:B1:DA:77:E4:02:B7:E8:91:56:4F:F1:EF:A0:D6:48:B6:86:97:46
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1DDB7F19
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/ULHad-QCt-iRVk_x76DWSLaGl0Y.roa
Signing time: Sat 07 May 2022 17:22:09 +0000
ROA not before: Sat 07 May 2022 17:22:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 212.111.200.0/24 maxlen: 24
77.47.159.0/24 maxlen: 24
77.47.157.0/24 maxlen: 24
77.47.158.0/24 maxlen: 24
77.47.156.0/24 maxlen: 24
195.178.146.0/24 maxlen: 24
195.178.147.0/24 maxlen: 24
77.47.178.0/24 maxlen: 24
77.47.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 500924185 (0x1ddb7f19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: May 7 17:22:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50b1da77e402b7e891564ff1efa0d648b6869746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:93:54:b8:76:6d:32:b3:33:00:01:b2:d4:5d:
4e:63:f4:58:b7:17:ee:97:f0:18:d9:21:f6:c0:10:
be:be:4f:4d:ff:36:50:2b:63:f0:a9:b8:44:77:49:
ce:9b:bd:cb:31:98:af:d0:df:7c:48:05:c7:34:80:
22:c9:ad:6f:1f:c7:c6:a7:24:d1:b4:64:88:8d:dc:
ff:c1:ca:b5:41:38:06:25:5d:83:d5:67:ac:75:ab:
dc:7d:d1:32:79:4f:fe:b4:5f:c4:13:78:2d:93:63:
2e:64:af:ba:0c:42:b3:e7:08:22:c7:f4:0f:45:86:
1b:da:68:d5:8f:aa:43:8c:fa:e2:9d:01:05:a3:1c:
d7:26:e5:ce:19:30:28:16:7f:88:75:3b:40:f2:7f:
4c:e4:db:ff:43:6a:05:42:2c:b5:24:73:f3:ff:a4:
df:58:10:76:87:d4:92:2a:81:22:26:ce:5d:4d:e9:
34:03:50:dd:ad:66:2e:48:a5:c1:02:09:73:99:30:
27:e2:a5:0c:8d:87:4d:e0:9b:09:77:80:2c:58:c3:
0c:c7:0a:be:18:08:ee:de:42:02:c1:7b:aa:33:f9:
21:d7:5d:f5:4f:06:a3:b7:b7:e2:2b:be:12:5f:57:
23:2f:61:80:b0:b7:be:b7:2d:be:1d:ed:07:96:ba:
7d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:B1:DA:77:E4:02:B7:E8:91:56:4F:F1:EF:A0:D6:48:B6:86:97:46
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/ULHad-QCt-iRVk_x76DWSLaGl0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.156.0/22
77.47.178.0/23
195.178.146.0/23
212.111.200.0/24
Signature Algorithm: sha256WithRSAEncryption
22:ca:3a:15:58:37:d4:a8:6b:ca:44:ae:55:11:ae:c3:fc:c7:
80:84:d1:78:9d:08:0c:ca:13:ab:46:22:06:95:81:9a:95:34:
48:6c:1b:cf:4e:1d:5c:2d:14:d1:c2:d1:82:1c:e7:64:44:d0:
62:3c:b6:88:fc:55:80:e9:58:73:45:e2:5d:0c:e1:4a:93:4b:
ee:98:38:c7:c1:8b:de:f6:13:aa:09:51:11:c7:3c:13:79:70:
6a:67:cf:c0:af:d6:d6:c7:0b:1f:07:fb:36:01:4c:72:96:af:
5f:15:71:e0:47:50:bb:1f:6e:4d:94:8a:62:b0:4c:2a:b9:05:
ab:c7:ed:57:af:02:4d:a5:25:38:40:3f:a0:96:65:68:b2:aa:
7e:4e:29:81:8b:a6:69:9b:69:7f:df:9d:4a:e6:26:ea:a0:91:
c2:a9:ba:db:c4:28:90:cd:e9:c2:47:49:53:23:8a:ba:5b:e0:
5b:ae:29:c0:1c:0d:c6:16:13:17:ac:01:55:d8:ee:c9:c4:c6:
d6:34:bd:5d:68:65:1a:9c:d8:a6:d9:5e:93:62:18:27:4c:d9:
4d:53:5e:30:39:aa:13:fa:c4:6c:a8:72:a1:e5:61:52:25:f6:
c5:9c:61:46:c5:c7:c5:be:22:2a:67:ba:77:12:1d:2a:3f:5d:
2a:df:4d:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org