Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/YxciIH2ejB_M8UC_T1HOfbqznzU.roa
File: YxciIH2ejB_M8UC_T1HOfbqznzU.roa (raw, json)
Hash identifier: 9nMQRY3cI9WzTD8u3AhztLuvsXbBywK9LvvbKIRJreU=
Subject key identifier: 63:17:22:20:7D:9E:8C:1F:CC:F1:40:BF:4F:51:CE:7D:BA:B3:9F:35
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 0184EE8F5339729E1772F3B15EB44943DDA8
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/YxciIH2ejB_M8UC_T1HOfbqznzU.roa
Signing time: Wed 07 Dec 2022 21:48:01 +0000
ROA not before: Wed 07 Dec 2022 21:48:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399587
IP address blocks: 77.47.252.0/22 maxlen: 24
77.47.248.0/22 maxlen: 24
195.178.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ee:8f:53:39:72:9e:17:72:f3:b1:5e:b4:49:43:dd:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Dec 7 21:48:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=631722207d9e8c1fccf140bf4f51ce7dbab39f35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:56:de:16:71:40:c4:ef:f4:b1:70:75:57:e1:
dc:ae:b6:a1:7c:2d:fb:37:2d:c2:11:ba:01:62:d3:
24:6a:66:4a:1a:b8:d4:9f:b5:2a:40:31:99:f7:2a:
de:7a:03:22:87:61:70:5a:a0:0a:a7:c5:f5:c3:23:
10:bd:92:ab:c9:a1:55:8d:98:70:38:9e:15:af:fd:
ac:ab:7b:5e:e5:c6:d3:d1:db:45:28:9b:98:ab:0c:
1e:92:42:50:0d:2f:a1:be:32:55:07:72:26:e8:a1:
2e:cf:61:26:3a:94:b9:d5:97:93:53:91:2d:0d:01:
30:77:4e:df:63:cc:d9:67:9d:db:40:d7:cb:b8:e6:
79:d1:50:31:e2:0d:60:7e:5e:34:dd:36:45:36:42:
c2:fb:6b:b6:df:9f:8b:ab:75:a7:a5:ae:06:a7:bf:
20:11:85:5a:e3:67:f2:f0:cb:38:a0:43:31:18:8a:
89:00:dd:95:a4:d1:d9:bb:78:b9:49:c1:2e:b8:83:
7c:00:8e:91:b9:f5:54:01:8e:f9:26:e7:4f:d3:85:
3c:50:79:72:79:5b:14:92:0e:e0:83:90:07:d0:55:
de:ab:b0:17:18:c4:ec:15:70:64:4d:0a:5d:80:91:
82:8c:5f:9c:bb:ad:03:c2:97:55:6e:1b:d0:e9:e3:
d4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:17:22:20:7D:9E:8C:1F:CC:F1:40:BF:4F:51:CE:7D:BA:B3:9F:35
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/YxciIH2ejB_M8UC_T1HOfbqznzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.248.0/21
195.178.128.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:9b:cd:c6:04:be:09:b8:6b:7b:36:e6:e1:ac:71:33:62:a2:
75:12:c7:a3:f5:fb:0c:41:5c:65:50:79:8c:45:c8:df:09:3d:
5c:88:7d:c4:57:41:ae:53:71:e9:fd:8f:ae:b7:e3:a0:a9:ad:
7a:c6:1e:c2:08:39:49:5a:60:99:69:55:eb:6c:fe:d3:1a:2d:
bc:7f:c3:2b:71:13:de:68:e3:4d:8a:4b:55:9a:bc:ec:93:e3:
09:8c:04:a2:64:42:95:5e:78:f1:d1:30:e8:d6:2f:ad:42:df:
f7:c4:08:67:9b:e1:6b:6e:46:53:0a:ca:bc:1a:5e:3f:ff:9c:
2d:69:1b:a4:3a:8b:e0:9b:ac:7c:84:8f:6a:5f:3d:19:4f:d3:
c3:a7:8f:9f:f5:1c:ed:b2:2b:0c:8f:dc:ec:a2:88:8b:16:4e:
12:06:04:84:fd:e3:21:10:9a:7c:48:86:54:94:35:e8:73:6b:
fb:9a:72:46:1b:ae:f8:ab:6a:fd:1c:97:65:49:72:53:23:12:
72:bf:75:84:75:54:87:45:e1:10:81:2b:93:b3:f6:94:d4:c7:
89:19:5a:0f:da:3c:72:81:04:b0:c5:1c:33:b1:7e:8a:b4:29:
b3:83:26:9d:89:3e:f7:40:02:26:8f:18:66:f6:eb:d8:03:76:
ad:23:d7:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org