Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/rYlUpjkie8fsnW56LPmScxqunGY.roa
File: rYlUpjkie8fsnW56LPmScxqunGY.roa (raw, json)
Hash identifier: YOf/Oubi6BAJTXfbp9BTs6OZyYszeGCEdnYTlRWRYF4=
Subject key identifier: AD:89:54:A6:39:22:7B:C7:EC:9D:6E:7A:2C:F9:92:73:1A:AE:9C:66
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1E59AA0C
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/rYlUpjkie8fsnW56LPmScxqunGY.roa
Signing time: Wed 22 Jun 2022 16:35:35 +0000
ROA not before: Wed 22 Jun 2022 16:35:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204197
IP address blocks: 77.47.241.0/24 maxlen: 24
77.47.143.0/24 maxlen: 24
195.178.132.0/22 maxlen: 24
195.178.146.0/24 maxlen: 24
77.47.180.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 509192716 (0x1e59aa0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jun 22 16:35:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad8954a639227bc7ec9d6e7a2cf992731aae9c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4b:55:ec:1e:a2:df:53:b0:d7:60:29:c8:01:
ee:57:17:16:2f:cc:d0:83:29:7a:41:95:d0:bc:83:
3c:f0:e6:86:e6:9d:b3:90:c7:0e:0d:5a:35:91:3b:
c3:bf:54:21:da:b4:1a:40:2c:0a:2e:95:cb:62:19:
52:06:72:a5:21:22:cf:65:4d:4a:2b:f4:90:14:db:
f2:3b:3e:b4:71:17:9c:ab:44:ff:db:4b:60:65:9c:
2f:14:8d:05:5d:a9:44:be:91:58:c0:0e:30:9b:6b:
c3:2c:84:e0:2f:de:94:c1:09:cb:92:81:59:12:83:
9d:e7:8e:22:20:82:30:4c:eb:18:f1:ea:03:28:be:
00:81:4f:bf:d1:1a:f1:5f:47:93:27:cc:26:d7:1d:
99:89:58:1f:e0:a2:55:1b:9a:fd:85:d8:24:a5:20:
53:ff:e9:45:d8:c8:9b:92:12:36:d6:d9:a7:23:59:
27:bc:91:d5:d9:3b:3b:4e:f7:01:24:53:76:36:79:
e7:28:d6:b4:40:bd:00:2a:5d:e5:20:42:63:0a:6c:
29:b0:6b:4f:26:06:4d:87:04:16:a6:99:17:d2:cf:
75:2e:80:5e:5b:5b:fa:ef:a2:fc:91:cb:8d:4a:36:
70:5f:7e:f5:ec:36:66:c3:63:6a:26:d8:af:5c:a6:
11:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:89:54:A6:39:22:7B:C7:EC:9D:6E:7A:2C:F9:92:73:1A:AE:9C:66
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/rYlUpjkie8fsnW56LPmScxqunGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.143.0/24
77.47.180.0/22
77.47.241.0/24
195.178.132.0/22
195.178.146.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:09:cc:f2:d7:f1:5b:99:b1:ee:50:a5:f9:48:f2:2a:60:1b:
bf:88:16:3b:53:e0:81:bb:2b:09:3e:ff:6e:c7:a7:12:52:6f:
18:74:0e:a2:48:ca:23:19:1e:33:c9:15:6f:4a:f1:30:65:7c:
ca:92:a2:69:63:cd:18:43:31:3b:c1:88:53:df:10:76:a4:a1:
d2:18:21:0e:b1:95:2d:21:a3:3b:f1:f6:09:81:8f:c7:ef:c7:
6f:c3:e0:2d:1f:fa:4e:de:cb:09:05:de:f8:f6:fc:a5:94:03:
d9:39:55:11:46:fc:71:f7:78:45:f1:16:dd:f3:e9:da:e8:47:
53:59:30:1a:b5:be:cf:b5:ca:f4:62:56:fc:f0:e7:50:c1:5b:
01:6b:df:b0:43:c1:74:1d:7d:a9:d5:00:0e:7c:6e:ed:89:32:
58:13:4d:b8:f4:7d:8f:c7:6a:07:05:25:b9:29:56:a9:70:80:
29:e5:b1:9d:e9:13:98:d4:5e:6c:89:1c:1e:eb:2a:05:d2:2c:
2d:bf:00:75:83:66:0b:15:17:48:b3:c7:57:88:b8:73:45:29:
b8:c2:89:63:6e:e2:80:d4:b6:bb:1b:8c:4d:44:37:41:66:3b:
ca:45:af:66:06:17:0d:b3:dd:3b:37:54:f4:a0:33:7b:6f:99:
26:66:cc:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:43 2024 by rpki-client on console-fra.rpki-client.org