Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/jrJ-bht3nS5F-WRgqvUDMcdGEiw.roa
File: jrJ-bht3nS5F-WRgqvUDMcdGEiw.roa (raw, json)
Hash identifier: V3PMnojYb+HitJc27MixwTmewcoQM7xdbnoB1WvW5lc=
Subject key identifier: 8E:B2:7E:6E:1B:77:9D:2E:45:F9:64:60:AA:F5:03:31:C7:46:12:2C
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1D3FE4BC
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/jrJ-bht3nS5F-WRgqvUDMcdGEiw.roa
Signing time: Fri 25 Mar 2022 11:15:51 +0000
ROA not before: Fri 25 Mar 2022 11:15:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18046
IP address blocks: 77.47.148.0/22 maxlen: 24
77.47.156.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 490726588 (0x1d3fe4bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Mar 25 11:15:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8eb27e6e1b779d2e45f96460aaf50331c746122c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:96:02:86:0a:42:3b:ce:fc:52:17:5c:02:5c:
ae:16:77:19:4e:34:9d:4a:09:2f:79:8b:c3:a5:5c:
2a:07:f1:a5:18:fb:88:6d:be:74:98:7d:de:eb:b9:
76:7a:47:f8:86:f9:2f:67:97:a2:af:6e:1c:fe:d1:
9c:4e:04:03:17:28:09:43:af:43:be:5b:7a:b7:48:
27:a8:be:99:7d:3a:7a:40:53:75:56:f2:ad:e5:56:
3d:fb:c7:ca:0a:11:b9:e6:23:5a:3b:92:23:49:0a:
11:bc:08:49:c7:c4:67:15:8f:09:66:7d:77:3f:13:
d6:2e:68:f7:74:34:94:87:cd:2b:94:be:68:78:2c:
67:bc:8f:22:9d:4c:6d:6a:ed:5b:54:d9:79:e2:0b:
ff:56:91:92:e8:9e:37:ef:b7:bc:e8:c7:cb:3d:ca:
c1:1a:08:05:e1:be:6d:d0:de:0e:0e:3a:a7:7c:47:
1b:05:c1:94:4f:7c:9e:0d:7e:3f:09:4d:b7:92:ae:
ee:86:b2:83:e7:72:c7:7a:21:b3:d4:61:d6:8a:5a:
21:e3:b9:bd:e1:4c:9e:5e:ae:31:11:a7:00:3e:ef:
cb:01:2a:d0:4b:99:eb:85:55:e2:b9:b4:3a:55:59:
94:8c:58:ee:0d:43:72:f2:7a:9b:fd:3f:24:ae:4f:
e7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B2:7E:6E:1B:77:9D:2E:45:F9:64:60:AA:F5:03:31:C7:46:12:2C
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/jrJ-bht3nS5F-WRgqvUDMcdGEiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.148.0/22
77.47.156.0/22
Signature Algorithm: sha256WithRSAEncryption
42:64:d8:62:5f:b7:8b:00:92:5d:2b:8f:68:f5:d6:e6:ef:8b:
2f:7d:08:42:ff:63:d9:40:ad:b6:7f:a5:47:b1:c9:5e:19:24:
0b:94:de:f4:17:7d:b3:92:25:5a:b1:12:86:d2:94:04:a5:08:
0c:16:c1:db:c5:f9:d5:9d:58:c7:9a:5e:d0:e4:71:3f:02:85:
b1:81:b1:8c:7a:37:6f:eb:af:00:5c:93:eb:40:6d:8b:18:4c:
01:16:7a:e9:50:5e:f1:7b:ca:23:d4:cb:b7:bf:c3:3b:33:2f:
f6:0f:62:09:81:13:d2:8c:c6:16:33:44:ee:3d:22:15:36:07:
8f:fa:3d:24:30:06:da:cf:4c:ef:ea:13:86:8d:ef:e9:17:0e:
df:1d:3c:4d:3f:ba:b7:a9:bb:60:ff:23:b0:bc:18:ec:bd:88:
d2:39:99:f5:f9:d5:5c:43:57:cb:e8:ca:67:81:0b:72:ad:04:
b5:e7:f9:ac:66:f2:db:30:66:66:26:c6:96:bd:fb:ec:5f:08:
46:80:42:f9:b9:50:a7:0a:f9:00:86:dc:f8:48:b0:03:0b:cc:
24:a7:30:a0:02:ae:e4:78:3a:f8:6f:42:2c:e8:94:c3:e6:68:
ef:72:81:14:84:0b:96:13:f0:1b:a1:6f:8e:e0:eb:48:8d:2c:
2b:8b:6b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org