Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/XZ5eV4Hb_RJXBMLReyNVAl2TW84.roa
File: XZ5eV4Hb_RJXBMLReyNVAl2TW84.roa (raw, json)
Hash identifier: FfqWnZrCG58SpOhOpK2C3BT13VYlIhQHHO2xzeAuY4A=
Subject key identifier: 5D:9E:5E:57:81:DB:FD:12:57:04:C2:D1:7B:23:55:02:5D:93:5B:CE
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1DF53646
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/XZ5eV4Hb_RJXBMLReyNVAl2TW84.roa
Signing time: Mon 16 May 2022 15:56:29 +0000
ROA not before: Mon 16 May 2022 15:56:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 212.111.200.0/24 maxlen: 24
77.47.157.0/24 maxlen: 24
77.47.156.0/24 maxlen: 24
195.178.146.0/24 maxlen: 24
195.178.147.0/24 maxlen: 24
77.47.178.0/24 maxlen: 24
77.47.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 502609478 (0x1df53646)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: May 16 15:56:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d9e5e5781dbfd125704c2d17b2355025d935bce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5b:25:23:63:cf:ea:d0:fc:9e:66:a2:f7:43:
aa:cd:98:3e:1b:ce:4a:97:b3:4f:c5:ef:52:da:9e:
e7:a2:40:b2:bb:a6:ef:21:4f:b0:f9:ad:c5:60:2b:
86:f9:63:66:99:7b:30:86:1d:2b:92:66:ae:13:29:
d5:b1:39:38:db:41:10:1a:44:de:7d:49:b2:58:e6:
fa:85:78:ca:c5:27:3f:0e:99:56:6d:bb:03:7b:96:
ae:2f:dc:56:74:16:8c:df:94:ca:c9:df:a9:7c:bf:
9e:dd:49:7c:e9:e6:05:dd:71:5a:dd:45:c2:63:bf:
58:18:a2:7d:22:5d:13:b5:10:d1:aa:2d:f4:03:b4:
4b:1d:26:01:33:d3:f5:2d:b0:22:c7:82:f5:52:75:
0b:a5:64:6e:17:6b:37:16:2b:64:c9:4c:fe:92:36:
ff:be:7c:b4:92:4e:03:7c:0a:14:fb:74:f9:ca:70:
11:10:c5:48:87:f2:d2:fd:7f:72:a4:bf:a7:51:56:
16:09:58:53:a3:9a:66:1b:54:30:8b:73:c5:e4:7e:
08:10:71:43:38:df:3f:73:f7:20:4a:88:7a:90:37:
fa:6f:eb:02:9e:c6:b0:8b:da:ac:3b:00:ac:42:5d:
f8:c3:0e:2b:c5:aa:76:c0:f2:e5:55:99:40:1c:3e:
e8:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:9E:5E:57:81:DB:FD:12:57:04:C2:D1:7B:23:55:02:5D:93:5B:CE
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/XZ5eV4Hb_RJXBMLReyNVAl2TW84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.156.0/23
77.47.178.0/23
195.178.146.0/23
212.111.200.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:7a:23:e8:01:ad:43:1f:65:9a:e0:f3:1c:2f:dc:9a:f3:b8:
3f:ad:ee:d4:2e:e8:7a:45:8b:88:f6:2a:19:6a:65:dc:b5:48:
c0:07:89:ce:0f:e0:47:97:7c:a3:70:e3:c5:81:ce:b2:c3:24:
b8:24:8f:ba:9e:89:c0:6d:43:d0:e6:9b:c1:45:20:c5:53:a5:
3e:9b:9e:62:0a:f5:8f:2e:68:ce:92:2a:e6:00:b1:ae:74:d0:
10:e2:db:a8:55:99:56:85:56:cd:c7:39:2c:6b:6c:1d:62:0c:
30:a5:c3:5b:42:9e:82:a1:bf:25:3c:3b:81:ff:b5:f8:f9:07:
87:bf:d8:f0:82:c7:c4:5e:33:38:ad:a4:8d:88:03:f4:49:59:
f8:78:3b:4f:dd:d2:b4:31:66:41:17:58:f4:92:06:11:5d:bf:
2a:b2:b2:a1:b2:01:5c:9e:51:40:3d:49:2c:a0:5f:dc:84:62:
6f:02:04:94:7e:c5:49:dc:57:c6:12:67:05:7d:ac:64:88:40:
ff:c2:b4:4a:b7:40:8c:f7:ef:cb:e0:29:68:3e:9d:50:e0:ae:
e9:08:ac:1d:29:e9:7f:39:f9:78:78:c8:1b:e5:3e:d4:9b:95:
83:14:90:00:ae:1e:45:39:e3:dc:75:2e:b2:74:70:5b:13:fb:
ec:2d:65:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org