Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/pA4NuuzgBQCjJjmELMC6akwZF5k.roa
File: pA4NuuzgBQCjJjmELMC6akwZF5k.roa (raw, json)
Hash identifier: GBej7xzdV/nzxx0g4vgEny5/5tAgzRQOplSj7dicj+s=
Subject key identifier: A4:0E:0D:BA:EC:E0:05:00:A3:26:39:84:2C:C0:BA:6A:4C:19:17:99
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1D34CDDC
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/pA4NuuzgBQCjJjmELMC6akwZF5k.roa
Signing time: Wed 23 Mar 2022 19:17:30 +0000
ROA not before: Wed 23 Mar 2022 19:17:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 77.47.212.0/24 maxlen: 24
77.47.210.0/24 maxlen: 24
77.47.211.0/24 maxlen: 24
77.47.240.0/24 maxlen: 24
77.47.241.0/24 maxlen: 24
195.178.140.0/24 maxlen: 24
195.178.141.0/24 maxlen: 24
195.178.146.0/24 maxlen: 24
195.178.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 489999836 (0x1d34cddc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Mar 23 19:17:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a40e0dbaece00500a32639842cc0ba6a4c191799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b4:46:07:f8:da:85:37:8c:ee:e8:69:ab:ca:
c3:69:19:4e:80:08:7e:bd:ce:65:f1:b7:6a:a5:d3:
03:af:d0:31:eb:3b:7b:e2:ee:2f:76:21:d4:fd:3c:
78:85:59:80:55:99:12:42:65:49:66:82:fd:b3:85:
bd:30:6b:18:6e:90:ee:8c:14:f5:65:8c:b7:aa:33:
4c:fc:56:15:65:e3:4a:3e:41:86:7a:0b:2f:b6:c9:
47:9a:70:f0:83:db:a5:63:4c:74:ea:2b:96:07:51:
d4:cb:40:59:ff:6a:5e:47:29:eb:fd:22:03:b4:ff:
1b:40:ca:3d:08:73:4a:85:eb:87:03:01:a7:4a:b4:
d0:28:74:20:cb:c7:f2:9e:87:27:0b:63:d8:71:8c:
a0:a1:fe:3e:e1:66:e3:7b:c6:9d:4b:e7:bf:da:3f:
75:33:f9:e2:b9:75:c4:92:d1:aa:42:30:e5:fa:67:
31:45:f8:b8:9d:ce:37:f2:59:72:4d:93:94:b2:8a:
9d:69:66:b9:48:b8:91:78:89:53:2d:40:bb:7d:8a:
e0:aa:5e:43:c7:36:ff:0c:9d:ea:62:3e:9a:d1:9e:
c9:f5:33:46:53:8e:84:8e:28:7d:0e:8a:af:09:47:
29:ad:c2:f9:25:c8:90:ce:59:51:a7:33:d6:34:ee:
fd:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:0E:0D:BA:EC:E0:05:00:A3:26:39:84:2C:C0:BA:6A:4C:19:17:99
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/pA4NuuzgBQCjJjmELMC6akwZF5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.210.0-77.47.212.255
77.47.240.0/23
195.178.140.0/23
195.178.146.0/23
Signature Algorithm: sha256WithRSAEncryption
44:f8:3a:4b:ce:4b:59:bd:21:a8:f0:f2:df:e8:e9:15:d3:84:
94:fa:60:de:0f:26:fe:94:02:e3:64:5b:7e:f0:70:13:be:5e:
96:44:0f:82:fe:d9:61:8f:5a:f7:f9:2c:d2:81:12:54:cf:e6:
92:35:10:db:5c:6f:39:4b:b0:1b:d3:d1:66:d1:99:53:5e:99:
01:94:e7:80:39:be:72:03:ac:ed:76:67:fd:86:27:9d:9b:54:
22:8d:df:dd:98:a2:9b:f0:cd:a5:7a:56:1c:f4:20:1b:6f:4c:
9e:00:23:db:ae:0f:7f:a9:f8:c8:63:f1:0f:a8:b0:3b:8e:b4:
a8:30:09:dc:aa:c9:53:50:22:87:19:a7:98:48:78:54:cb:9c:
04:90:43:04:57:6a:dd:9b:df:d8:0f:66:e2:00:8c:9f:af:49:
65:f5:8b:b6:35:21:e6:d9:d3:12:1c:15:2e:7a:60:6c:5b:e4:
51:a6:d9:f3:7a:98:34:94:18:17:19:0f:7b:94:80:06:99:aa:
1c:1c:76:f1:78:2e:a1:a1:4f:8d:7a:73:16:bf:30:f0:02:6f:
61:76:d8:4c:1f:af:55:9e:e6:3b:63:0e:63:66:5b:dd:87:25:
e0:57:6a:6f:d7:9d:9c:db:9a:cd:09:30:b4:43:f5:57:92:88:
38:84:d1:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org