Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/71173b-1938-4835-af00-a699bcb08ae3/1/UN2TXA9TIbb3wOo5NX3n79Jb3Uc.roa
File: UN2TXA9TIbb3wOo5NX3n79Jb3Uc.roa (raw, json)
Hash identifier: NvLAfq52XGdGAJfx7UUkico+90oSVuhKIY8CjYfRVGo=
Subject key identifier: 50:DD:93:5C:0F:53:21:B6:F7:C0:EA:39:35:7D:E7:EF:D2:5B:DD:47
Certificate issuer: /CN=1a99c75fe5777e136573e1e51efba6781f3a5b16
Certificate serial: 0A406781
Authority key identifier: 1A:99:C7:5F:E5:77:7E:13:65:73:E1:E5:1E:FB:A6:78:1F:3A:5B:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GpnHX-V3fhNlc-HlHvumeB86WxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/71173b-1938-4835-af00-a699bcb08ae3/1/UN2TXA9TIbb3wOo5NX3n79Jb3Uc.roa
Signing time: Mon 10 Jan 2022 13:59:45 +0000
ROA not before: Mon 10 Jan 2022 13:59:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42306
IP address blocks: 77.236.192.0/19 maxlen: 19
37.44.208.0/22 maxlen: 22
2a03:f280::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171992961 (0xa406781)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a99c75fe5777e136573e1e51efba6781f3a5b16
Validity
Not Before: Jan 10 13:59:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50dd935c0f5321b6f7c0ea39357de7efd25bdd47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:37:1c:78:42:a6:1c:8a:a0:2e:87:eb:3a:5e:
8b:54:85:f3:4b:63:0e:12:fe:dc:d7:a6:ac:27:a2:
75:4c:73:75:a8:22:b0:ef:1d:d6:9d:ff:a9:8f:36:
53:76:f1:9a:02:4f:16:c7:e8:56:61:63:ba:3f:f8:
00:0a:44:01:0d:15:60:c8:f8:d4:c8:da:31:79:f9:
e2:f8:7a:26:4b:6b:04:3c:bd:af:3c:b3:ef:46:7d:
9f:1a:1e:00:c6:9b:01:dd:74:4e:00:07:17:89:39:
c1:e6:47:ff:f8:1e:3f:17:5f:31:49:a5:97:47:84:
41:99:28:67:3a:b0:c7:0e:77:19:67:e1:51:eb:f7:
1b:ab:1f:e9:10:41:87:c2:8b:12:f2:13:08:17:af:
3c:2a:f8:a2:7e:27:fe:c2:20:3b:b4:07:20:80:b4:
50:4a:c9:8a:00:86:d1:c0:02:1e:d7:2c:9a:9c:69:
3f:b7:a6:dd:ed:3e:ff:84:ce:56:1b:16:7d:99:bf:
5f:99:29:0a:95:e2:a2:3a:e6:96:b4:05:f0:18:6c:
f4:d6:f0:4a:c1:52:68:aa:50:c8:67:7b:96:f7:6f:
97:a0:de:4d:f2:88:96:ed:34:bc:0f:f1:95:0c:1e:
8f:fa:89:63:70:88:6f:b5:ef:7d:da:ad:36:84:45:
9d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:DD:93:5C:0F:53:21:B6:F7:C0:EA:39:35:7D:E7:EF:D2:5B:DD:47
X509v3 Authority Key Identifier:
keyid:1A:99:C7:5F:E5:77:7E:13:65:73:E1:E5:1E:FB:A6:78:1F:3A:5B:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GpnHX-V3fhNlc-HlHvumeB86WxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/71173b-1938-4835-af00-a699bcb08ae3/1/UN2TXA9TIbb3wOo5NX3n79Jb3Uc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/71173b-1938-4835-af00-a699bcb08ae3/1/GpnHX-V3fhNlc-HlHvumeB86WxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.44.208.0/22
77.236.192.0/19
IPv6:
2a03:f280::/29
Signature Algorithm: sha256WithRSAEncryption
39:d6:0f:32:fa:6c:47:c3:ec:5a:04:01:68:b8:c3:ee:7e:a2:
57:49:5e:7a:30:52:81:ed:7b:98:97:c7:35:30:8b:a1:7d:21:
b8:5f:11:83:5c:10:6c:16:86:20:2e:45:5e:3d:79:88:09:b1:
e8:5c:ac:28:dc:3f:0a:9e:a5:e0:37:88:5f:bd:71:d4:d4:49:
e1:df:7e:9a:68:11:6b:6a:af:c7:4d:d3:39:94:39:96:9f:5e:
a8:13:be:a4:e8:a1:ca:99:04:e0:5a:08:e8:84:d2:00:7d:02:
27:b6:78:80:12:69:88:79:9e:63:be:2c:8d:df:45:05:14:8a:
2f:b1:6c:a5:24:d1:a0:cb:28:47:b8:ba:85:cb:b4:e6:7a:52:
f2:40:0a:b7:60:c6:34:65:35:cf:59:ca:6a:c7:fe:ca:0a:60:
79:aa:96:c5:f5:ec:45:4b:8d:da:f5:0e:92:c6:b8:cf:3b:fd:
20:61:ed:bf:38:69:66:5a:6c:52:64:16:e0:aa:6f:7d:7d:81:
2c:e0:c5:2f:83:3a:b7:86:2d:5b:55:8a:20:08:26:0c:4d:a3:
8b:d0:a0:a2:da:e9:04:7c:d5:52:5a:e7:b9:75:5c:2a:50:76:
04:54:9f:20:62:b8:55:1d:9a:03:ad:f5:cb:03:62:fd:86:c0:
f4:1f:a0:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:17 2023 by rpki-client on console-fra.rpki-client.org