Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/onMy-drkoqb5irRqsDG1ZTimAyY.roa
File: onMy-drkoqb5irRqsDG1ZTimAyY.roa (raw, json)
Hash identifier: 1PwYVjQQYWQObL/lZzfR/jmYXcl7w1IHU4Bhg5uOHRQ=
Subject key identifier: A2:73:32:F9:DA:E4:A2:A6:F9:8A:B4:6A:B0:31:B5:65:38:A6:03:26
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 01830C599D4B53B8DF8477BCCE30FF62E553
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/onMy-drkoqb5irRqsDG1ZTimAyY.roa
Signing time: Mon 05 Sep 2022 06:32:22 +0000
ROA not before: Mon 05 Sep 2022 06:32:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204197
IP address blocks: 77.47.210.0/23 maxlen: 24
77.47.178.0/24 maxlen: 24
77.47.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0c:59:9d:4b:53:b8:df:84:77:bc:ce:30:ff:62:e5:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Sep 5 06:32:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a27332f9dae4a2a6f98ab46ab031b56538a60326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d2:69:18:74:4d:a9:79:99:ae:5a:40:a3:bd:
78:3e:c4:1d:b9:42:28:5b:c9:d6:34:bb:76:44:1c:
d8:7a:df:fb:e9:f7:25:0e:20:50:af:c4:e4:df:88:
b5:ec:79:03:52:14:a5:f1:b6:76:d7:00:e7:98:8c:
ba:39:95:b8:01:89:0c:c7:df:1a:5e:4c:8b:f9:d5:
0f:a1:f6:d5:6d:9a:cb:f3:ac:67:23:28:2b:ae:98:
d8:ad:3e:ef:74:8f:c3:80:76:28:c8:32:12:57:d2:
9e:9f:64:6b:ac:43:94:9c:fc:62:13:f6:53:9d:56:
ef:77:00:c9:91:f8:bd:2a:cc:40:d4:c3:59:51:89:
d4:44:ed:70:08:5a:53:be:d4:da:54:ff:f2:db:38:
85:a5:c3:e9:7e:18:88:54:f2:3b:53:57:20:e3:4c:
80:a8:c4:5b:ff:d7:6e:9b:52:aa:20:ad:21:a3:bc:
54:ad:82:09:12:91:99:39:36:f0:9d:59:bf:b0:12:
d9:bb:c4:33:ff:9b:11:fb:e6:04:37:99:80:95:ed:
c2:a6:64:7e:06:48:d0:a6:fc:57:cc:8d:0a:4c:9c:
e1:fb:2f:b8:64:6b:b5:41:95:f7:52:e1:83:92:25:
bd:db:10:7e:df:d1:b1:e7:c3:89:b2:d3:58:9b:db:
3d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:73:32:F9:DA:E4:A2:A6:F9:8A:B4:6A:B0:31:B5:65:38:A6:03:26
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/onMy-drkoqb5irRqsDG1ZTimAyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.178.0/23
77.47.210.0/23
Signature Algorithm: sha256WithRSAEncryption
71:e8:c4:c3:96:99:db:2b:62:d1:1d:80:c5:fb:0d:6f:d2:96:
f7:cc:56:ce:6d:00:5f:d8:39:ee:3b:08:5d:16:9c:8f:73:4d:
0f:a1:85:9f:d3:04:af:74:06:cb:5b:18:82:40:3a:ca:87:93:
61:1e:6f:4b:15:5f:82:86:64:e3:f8:05:3f:5c:fe:1a:9c:09:
d7:78:8d:45:c3:c4:fd:ed:23:7f:5e:75:13:aa:bc:35:48:38:
c7:e3:4c:b5:3b:f2:36:39:90:34:15:76:30:4d:5b:0c:36:84:
96:e4:70:1a:e2:0c:04:a6:db:e0:ef:3d:9a:67:a1:eb:2a:79:
3f:a7:93:ff:87:e7:e0:93:77:79:35:ce:3c:1e:a7:be:06:52:
ea:e2:6f:52:f9:a8:07:c4:17:53:d0:86:97:2b:b3:3d:c0:77:
42:f9:5b:6c:31:db:24:b8:87:bc:24:5c:2b:9c:d6:b7:0b:95:
01:db:f7:b5:c6:2c:83:71:8f:bc:04:50:78:b8:90:b6:de:7b:
30:f9:66:e3:73:75:c4:04:dd:8e:7e:17:70:9f:3a:cc:95:23:
9b:64:57:38:96:59:8a:e5:c3:55:c1:e4:41:e0:95:80:0f:b6:
a7:1a:a5:50:b0:79:5d:6b:e9:b3:8e:dc:aa:0c:ca:75:db:f1:
ce:eb:ad:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:43 2024 by rpki-client on console-fra.rpki-client.org