Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/X9LEQ3j31Wq5GX4WaIGMZqJgQqk.roa
File: X9LEQ3j31Wq5GX4WaIGMZqJgQqk.roa (raw, json)
Hash identifier: yYXXzPT8zpMiPy8EO1ELzaWfRcG/3wV7XXRqGPD73eU=
Subject key identifier: 5F:D2:C4:43:78:F7:D5:6A:B9:19:7E:16:68:81:8C:66:A2:60:42:A9
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1C3912DF
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/X9LEQ3j31Wq5GX4WaIGMZqJgQqk.roa
Signing time: Sat 01 Jan 2022 07:55:35 +0000
ROA not before: Sat 01 Jan 2022 07:55:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17941
IP address blocks: 77.47.144.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 473502431 (0x1c3912df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 1 07:55:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5fd2c44378f7d56ab9197e1668818c66a26042a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9f:1e:31:5c:54:3d:fc:e4:14:89:ed:70:ee:
4e:87:6e:ef:3b:27:54:9f:75:ba:23:8f:e3:31:87:
94:67:02:fa:a2:3f:b3:82:9b:f7:d9:29:64:27:c3:
48:b5:49:3c:86:b1:66:ea:81:6b:88:c9:3f:eb:0e:
86:f3:97:80:ab:b0:06:54:3a:e7:e4:d2:fd:df:ac:
9e:df:78:3b:dd:b1:b8:24:c5:43:1e:9c:7d:80:d5:
ec:61:40:66:14:d2:06:ca:7f:c7:09:b0:9b:0b:92:
fa:da:a9:eb:82:93:42:21:a9:49:80:66:41:b7:c0:
e6:37:63:bb:e1:4f:5b:24:56:b4:52:2e:d6:b8:33:
4c:e0:6e:19:99:1b:cf:87:b0:7e:54:1d:aa:45:62:
c9:0c:f6:f6:61:13:71:ad:9c:78:44:23:05:70:a5:
af:73:f2:f3:ba:bf:6d:19:33:5f:e4:8f:27:f3:3b:
fe:c0:f0:e3:82:2b:82:22:85:43:5f:56:e5:0b:bf:
66:ef:94:27:ef:49:92:d3:8f:6d:54:d1:79:81:2a:
7c:59:cb:d9:d7:3f:be:e5:c0:57:db:4a:4a:58:51:
91:99:f1:35:ed:82:39:cd:5b:bd:0c:6e:96:24:2e:
99:81:42:93:27:ac:1f:9e:a5:98:f7:19:11:b7:b7:
3b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:D2:C4:43:78:F7:D5:6A:B9:19:7E:16:68:81:8C:66:A2:60:42:A9
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/X9LEQ3j31Wq5GX4WaIGMZqJgQqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.144.0/22
Signature Algorithm: sha256WithRSAEncryption
31:82:7f:25:08:d4:f3:e9:44:a3:ac:35:02:76:1f:7a:0b:4d:
bd:04:f1:6a:ef:ad:ba:57:69:81:03:53:21:dd:52:46:3c:5e:
64:a5:01:6e:a3:32:0b:2f:01:3d:dd:70:31:c8:3f:3d:b6:0a:
e8:6a:ce:ac:54:f2:bf:5c:00:ec:35:79:df:c5:7e:66:ce:87:
d1:a5:b8:dd:79:b3:e2:c6:66:a0:f4:e0:d0:ab:9b:9a:35:b1:
4d:e1:62:ec:68:31:2f:5a:7d:e9:11:78:15:89:35:7e:33:0f:
c3:94:a8:8e:e0:42:e0:ba:dd:2a:bf:92:e2:89:19:ab:b0:ec:
cc:9c:b0:06:04:dc:5f:26:f9:0b:5f:86:81:3a:6e:9f:49:67:
c5:61:24:5c:31:f9:a5:4f:e2:58:03:86:ef:70:61:1f:91:7a:
f6:8c:29:de:2e:7a:80:90:65:8d:bf:55:fe:c2:b7:86:0a:da:
27:cd:9c:ad:4a:60:94:0b:55:d7:81:39:84:c5:27:34:e8:28:
69:c6:1e:4b:2b:f7:8e:82:c1:74:34:05:15:cd:e5:a7:c7:20:
24:7d:81:c8:b0:9a:f8:2c:37:ea:c6:71:c1:51:66:ff:a0:78:
1c:0f:e9:9c:05:36:0a:f2:c3:f6:37:e4:8f:4c:58:d7:9e:b8:
7d:06:e6:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org