Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/bB279eTrUpytvRFiDXGIm8QJuys.roa
File: bB279eTrUpytvRFiDXGIm8QJuys.roa (raw, json)
Hash identifier: 27mb1j0cv/ZcjBTAHeqHHrhV9ogLIxezss5E96xR8+o=
Subject key identifier: 6C:1D:BB:F5:E4:EB:52:9C:AD:BD:11:62:0D:71:88:9B:C4:09:BB:2B
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1DA2DB0B
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/bB279eTrUpytvRFiDXGIm8QJuys.roa
Signing time: Thu 14 Apr 2022 12:11:28 +0000
ROA not before: Thu 14 Apr 2022 12:11:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 212.111.200.0/24 maxlen: 24
77.47.142.0/24 maxlen: 24
77.47.159.0/24 maxlen: 24
77.47.157.0/24 maxlen: 24
77.47.158.0/24 maxlen: 24
77.47.156.0/24 maxlen: 24
195.178.146.0/24 maxlen: 24
195.178.147.0/24 maxlen: 24
77.47.178.0/24 maxlen: 24
77.47.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 497212171 (0x1da2db0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Apr 14 12:11:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c1dbbf5e4eb529cadbd11620d71889bc409bb2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:cc:66:47:52:64:36:64:8d:c5:fa:ae:70:fe:
aa:5c:72:a6:84:07:ac:3f:b8:24:94:5e:3f:30:af:
b9:ea:49:e1:d8:73:eb:fd:e5:b0:55:5e:ec:84:5d:
e0:0f:90:6a:16:e2:d3:57:45:50:9c:56:ba:f7:56:
7d:2a:cd:6e:ee:24:02:64:4b:c3:02:04:48:f9:fd:
aa:51:ec:6b:12:27:74:42:51:14:76:77:c7:8f:ea:
e9:6f:dd:ec:90:dd:35:38:ef:47:80:b3:e4:d4:a4:
f2:7e:a1:23:de:2d:e8:bd:f6:bb:48:87:15:ce:18:
ab:6b:26:2e:16:8c:36:96:36:8d:d0:cd:10:97:af:
5d:1f:12:8d:2a:1c:4e:b8:b5:33:7f:bb:d2:91:ec:
73:ef:3e:39:4c:86:15:3d:76:bf:e2:7f:be:91:9e:
cc:9b:26:45:b3:65:5e:c8:44:77:55:05:57:85:3e:
b4:28:21:a2:a1:fd:8b:67:e3:5a:d7:ed:c8:d3:44:
87:49:dd:ef:f7:ba:d7:fb:15:69:27:b0:28:2a:14:
02:91:30:c2:81:c3:f0:34:3f:05:54:35:ac:1d:0f:
1a:04:42:60:81:7c:71:e2:ea:ae:b5:c2:06:ba:4d:
4a:90:7c:46:fb:79:a7:d6:bf:01:02:2b:4d:83:7a:
1d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:1D:BB:F5:E4:EB:52:9C:AD:BD:11:62:0D:71:88:9B:C4:09:BB:2B
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/bB279eTrUpytvRFiDXGIm8QJuys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.142.0/24
77.47.156.0/22
77.47.178.0/23
195.178.146.0/23
212.111.200.0/24
Signature Algorithm: sha256WithRSAEncryption
92:b2:f9:3a:69:c5:28:b8:29:54:55:03:db:ca:20:de:a3:f3:
6b:ab:38:a0:97:64:35:39:f2:32:1b:48:58:96:8a:ea:49:b4:
d6:de:ac:18:7d:1e:a8:25:13:6f:94:4f:14:55:93:62:74:29:
be:b7:31:c6:51:96:1c:22:4d:c1:fc:83:fb:a0:0e:da:a7:dc:
d8:b6:f5:51:c8:61:28:33:c3:b9:c3:a8:0c:4e:65:c7:48:6e:
68:07:e2:11:42:a5:f9:9d:85:75:36:3e:e2:5e:ac:1b:89:65:
22:95:74:23:dd:a4:36:d3:11:fc:a2:8e:e5:7e:b3:f8:b8:81:
b0:06:84:c0:af:d0:8d:82:33:d0:92:1e:6b:de:87:8a:d4:6c:
ee:88:f2:a2:44:b1:7d:90:82:e9:fb:cf:9b:10:c6:4c:1e:cb:
04:c2:e5:f4:78:aa:8b:6d:f6:f2:71:41:ff:1b:66:47:d4:17:
ca:fd:b6:5e:c4:2d:ad:74:08:ed:c3:e2:74:1c:16:2f:ee:d0:
6b:72:c3:3d:66:cc:9b:55:e7:3d:61:2f:49:a8:06:b3:df:e9:
b4:d7:0c:da:fa:dd:46:c6:47:bf:b1:66:30:4e:01:15:7f:74:
a1:ee:b0:2b:90:3b:01:d2:13:08:c4:13:a1:dc:34:a2:93:23:
f7:0e:ea:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org