Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/x2IzmMYrqm_ujhiI2i0jZyHctF0.roa
File: x2IzmMYrqm_ujhiI2i0jZyHctF0.roa (raw, json)
Hash identifier: 62RVsSS6GMsM9zgwHtsB+LeA9lmk8T8zvLQH4v/2k5I=
Subject key identifier: C7:62:33:98:C6:2B:AA:6F:EE:8E:18:88:DA:2D:23:67:21:DC:B4:5D
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1C3B0082
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/x2IzmMYrqm_ujhiI2i0jZyHctF0.roa
Signing time: Sat 01 Jan 2022 07:55:36 +0000
ROA not before: Sat 01 Jan 2022 07:55:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25500
IP address blocks: 77.47.128.0/17 maxlen: 17
77.47.130.0/24 maxlen: 24
77.47.128.0/24 maxlen: 24
77.47.137.0/24 maxlen: 24
77.47.135.0/24 maxlen: 24
77.47.202.0/23 maxlen: 23
77.47.201.0/24 maxlen: 24
77.47.206.0/24 maxlen: 24
77.47.204.0/23 maxlen: 23
77.47.200.0/24 maxlen: 24
77.47.209.0/24 maxlen: 24
77.47.207.0/24 maxlen: 24
77.47.208.0/24 maxlen: 24
77.47.216.0/24 maxlen: 24
77.47.217.0/24 maxlen: 24
77.47.214.0/24 maxlen: 24
77.47.215.0/24 maxlen: 24
77.47.218.0/24 maxlen: 24
77.47.223.0/24 maxlen: 24
77.47.224.0/24 maxlen: 24
77.47.222.0/24 maxlen: 24
77.47.225.0/24 maxlen: 24
77.47.226.0/24 maxlen: 24
77.47.227.0/24 maxlen: 24
77.47.235.0/24 maxlen: 24
77.47.236.0/24 maxlen: 24
77.47.234.0/24 maxlen: 24
77.47.161.0/24 maxlen: 24
77.47.160.0/24 maxlen: 24
77.47.164.0/24 maxlen: 24
77.47.165.0/24 maxlen: 24
77.47.162.0/24 maxlen: 24
77.47.163.0/24 maxlen: 24
77.47.166.0/24 maxlen: 24
77.47.168.0/24 maxlen: 24
77.47.171.0/24 maxlen: 24
77.47.172.0/24 maxlen: 24
77.47.169.0/24 maxlen: 24
77.47.170.0/24 maxlen: 24
77.47.174.0/24 maxlen: 24
77.47.175.0/24 maxlen: 24
77.47.173.0/24 maxlen: 24
77.47.186.0/23 maxlen: 23
77.47.184.0/23 maxlen: 23
77.47.190.0/24 maxlen: 24
77.47.196.0/23 maxlen: 23
77.47.194.0/24 maxlen: 24
77.47.199.0/24 maxlen: 24
77.47.198.0/24 maxlen: 24
2a02:db0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 473628802 (0x1c3b0082)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 1 07:55:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7623398c62baa6fee8e1888da2d236721dcb45d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1d:03:e9:5b:c9:d9:9d:db:cc:37:e2:30:6a:
3f:7d:51:4f:cc:cd:fb:7d:3b:5f:f7:ff:db:e3:06:
44:7c:42:98:dc:f0:26:81:2a:99:c6:c7:3e:50:dc:
86:d9:ce:0f:8c:bc:b2:82:e4:ab:c2:8d:74:93:ed:
7c:81:bf:ec:9b:15:cd:de:0e:1e:30:c2:be:d4:c9:
69:9b:c2:6a:fb:b8:c2:06:35:b7:7f:1c:ba:62:45:
ed:2c:14:d3:ba:35:d2:b7:2b:39:4e:8b:ab:ad:aa:
9e:a7:1e:83:f9:f6:43:a7:47:c8:e7:82:5c:f3:56:
d9:04:2b:d0:a7:f4:10:76:b9:fa:7a:20:a5:04:63:
4b:ef:e5:2a:e5:b2:0e:36:70:d4:9b:c3:6e:5b:59:
25:50:55:19:a8:9b:43:75:62:ef:fd:7f:c3:79:90:
28:14:e2:a5:27:ab:50:a3:98:3e:41:56:19:7e:dd:
0f:09:53:ca:95:a2:50:ba:ca:bb:a4:0d:92:58:05:
5b:06:d0:22:8e:47:cb:05:90:de:66:fc:12:6d:08:
82:25:72:7a:26:a2:d6:e1:e9:77:53:95:5f:17:72:
15:b1:bb:18:c4:c4:10:72:c9:fd:e2:a6:84:f4:7b:
0d:ec:82:16:4c:e3:65:b0:a2:a6:b5:c7:ea:16:31:
67:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:62:33:98:C6:2B:AA:6F:EE:8E:18:88:DA:2D:23:67:21:DC:B4:5D
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/x2IzmMYrqm_ujhiI2i0jZyHctF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.128.0/17
IPv6:
2a02:db0::/32
Signature Algorithm: sha256WithRSAEncryption
49:0c:25:e5:b9:23:85:f7:b8:0e:2c:12:d8:3d:52:8c:b9:60:
6e:99:47:c3:ee:0a:f8:9a:ab:20:98:3f:b3:53:6c:38:3f:40:
0e:08:6e:88:a1:ae:56:82:6e:27:77:f9:25:b4:42:9f:03:b2:
5b:34:76:5d:8f:58:07:3a:cb:8f:3e:ea:39:4b:1c:eb:00:66:
de:ec:d0:15:1d:65:ba:ab:eb:16:55:84:cc:54:d4:87:b8:ee:
0d:d8:82:2c:fd:74:3b:74:45:95:ab:ff:47:cb:26:2c:41:35:
7c:e0:ff:a7:4d:45:cc:ef:b3:20:de:6d:e6:30:38:e0:ad:92:
64:05:f9:7b:41:ae:22:17:49:fe:33:3d:a3:ec:9c:78:eb:54:
90:e1:8d:17:b8:43:ef:08:e5:a4:18:17:d2:c8:86:c8:8e:de:
2b:c4:12:2a:38:89:18:e5:f2:2a:39:96:3f:31:7b:6c:46:4d:
5e:ea:22:f2:dc:93:4d:4e:0f:8f:f3:68:61:65:98:b4:94:04:
8a:2d:2d:26:bd:55:51:f8:a8:77:06:84:8d:b1:ad:51:40:36:
85:1d:45:2e:1f:f7:c6:6d:1d:59:af:23:93:08:91:1c:58:35:
b5:7b:ff:7f:92:d4:2e:5e:d7:93:b8:59:e8:dc:0b:9f:6e:99:
56:23:bf:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:43 2024 by rpki-client on console-fra.rpki-client.org