Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/XZ1Yt_AjlY6iSpqYsxPjKUrVa80.roa
File: XZ1Yt_AjlY6iSpqYsxPjKUrVa80.roa (raw, json)
Hash identifier: ZfEZGKh3VbTjMld+EB8k4MsCmlmzxilFOATaDKqTDU4=
Subject key identifier: 5D:9D:58:B7:F0:23:95:8E:A2:4A:9A:98:B3:13:E3:29:4A:D5:6B:CD
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 01849C3FC7311BDB9E0C0B1DA5F09A8BB2DD
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/XZ1Yt_AjlY6iSpqYsxPjKUrVa80.roa
Signing time: Mon 21 Nov 2022 22:12:16 +0000
ROA not before: Mon 21 Nov 2022 22:12:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 77.47.240.0/24 maxlen: 24
77.47.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9c:3f:c7:31:1b:db:9e:0c:0b:1d:a5:f0:9a:8b:b2:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Nov 21 22:12:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d9d58b7f023958ea24a9a98b313e3294ad56bcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8f:0d:6e:d5:00:71:16:26:75:46:fc:44:cb:
c8:9b:35:2f:e7:40:22:a7:e1:6c:8d:fa:60:d5:1e:
05:80:a7:c5:6e:ad:18:2a:9b:60:dc:e4:3e:a1:cb:
9d:64:51:ac:5a:7c:3c:51:32:5b:f2:c5:43:22:5d:
90:c1:94:fa:c8:cc:5c:b8:98:31:fb:72:6b:da:fd:
bc:f2:57:0f:5f:e5:18:7e:6b:1e:b8:14:cf:21:b1:
65:54:d6:0f:b2:36:ea:19:b9:73:04:50:2b:43:0a:
75:6c:b0:a5:4d:b9:ce:64:75:19:0c:bd:af:2f:e2:
fa:d2:2f:1f:a2:08:3b:67:1a:a6:ec:b9:6d:79:c3:
3a:c8:ce:09:a1:d7:a9:c7:57:1b:e9:3b:e1:7b:60:
8c:e2:7d:d8:ae:3a:f3:be:35:89:8c:6f:19:71:9c:
99:24:15:26:12:b6:c4:2d:8a:56:38:ce:9e:5b:a3:
6b:1e:27:03:c6:ed:85:d1:62:ad:d9:3d:bb:ee:7d:
c2:59:0e:a3:a4:ce:8b:37:b6:08:4d:d3:bd:6e:6e:
bf:fa:d8:54:0e:0e:29:3a:17:08:30:9b:5c:4a:17:
76:1b:27:6f:44:a2:86:14:ff:ef:bf:fd:81:d3:f4:
7c:06:43:fb:0d:35:40:8a:4d:31:cf:eb:02:27:57:
a6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:9D:58:B7:F0:23:95:8E:A2:4A:9A:98:B3:13:E3:29:4A:D5:6B:CD
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/XZ1Yt_AjlY6iSpqYsxPjKUrVa80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.142.0/24
77.47.240.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:c0:97:36:e5:c7:2d:f2:08:af:61:16:90:6f:1c:5b:ad:5d:
67:06:a1:17:af:60:68:ed:8f:bf:18:44:7d:31:ee:af:7a:3f:
95:94:d5:ca:4a:dc:1f:d2:d1:82:f8:f7:fa:6d:14:d4:c1:51:
92:46:20:87:97:05:e2:f2:28:d2:78:47:66:52:ba:60:8b:fb:
b3:2d:a3:b7:57:01:89:a7:a3:4c:5c:bf:7e:15:e6:c2:59:e6:
31:94:d2:fc:67:7c:a8:15:28:e2:24:77:e5:b1:84:f3:13:5f:
74:9e:cb:0c:4c:df:40:d7:93:c1:81:86:bb:a4:89:c1:70:79:
e5:01:0f:43:99:f6:b7:6d:4b:c7:66:da:f8:4a:bc:98:a4:55:
3f:17:17:9e:d0:d4:5e:f6:d8:3a:13:34:6f:6c:c6:c9:8f:25:
7f:cf:4b:96:f3:2b:90:e7:de:b3:d4:b7:c5:19:3c:8d:29:92:
bd:7c:ae:d1:3c:85:65:64:fe:28:b0:9c:31:53:65:60:df:5d:
b1:cd:8b:a9:45:31:04:10:d4:b1:8d:0f:3f:ea:c2:86:a7:cb:
e6:38:29:18:b6:6d:03:55:78:a2:ea:21:62:08:f1:af:e7:fe:
01:ba:34:c6:d0:82:cc:67:c0:c9:7d:2c:04:5b:e6:52:99:aa:
eb:5f:ff:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org