Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/188d75-2bf2-48f1-91f7-c48ca27a9c01/1/1oWyz7Qq4l07y1unhyKRVoj5KG8.roa
File: 1oWyz7Qq4l07y1unhyKRVoj5KG8.roa (raw, json)
Hash identifier: g0OejpjLDS3WJk73jGgz8bXzuW/h56d4DzE7BN8oyiI=
Subject key identifier: D6:85:B2:CF:B4:2A:E2:5D:3B:CB:5B:A7:87:22:91:56:88:F9:28:6F
Certificate issuer: /CN=98f9e0c20acdc8faa7441a0843ff8a01f3d9dbc5
Certificate serial: 0AB38268
Authority key identifier: 98:F9:E0:C2:0A:CD:C8:FA:A7:44:1A:08:43:FF:8A:01:F3:D9:DB:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mPngwgrNyPqnRBoIQ_-KAfPZ28U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/188d75-2bf2-48f1-91f7-c48ca27a9c01/1/1oWyz7Qq4l07y1unhyKRVoj5KG8.roa
Signing time: Sat 01 Jan 2022 05:52:26 +0000
ROA not before: Sat 01 Jan 2022 05:52:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43037
IP address blocks: 185.66.188.0/22 maxlen: 22
77.75.72.0/21 maxlen: 21
77.75.72.0/23 maxlen: 23
77.75.78.0/23 maxlen: 23
77.75.75.0/24 maxlen: 24
77.75.76.0/23 maxlen: 23
77.75.74.0/24 maxlen: 24
2a02:598:a::/48 maxlen: 48
2a02:598::/32 maxlen: 32
2a02:598:b::/48 maxlen: 48
2a02:598:4444::/48 maxlen: 48
2a02:598:2::/48 maxlen: 48
2a02:598:3333::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179536488 (0xab38268)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98f9e0c20acdc8faa7441a0843ff8a01f3d9dbc5
Validity
Not Before: Jan 1 05:52:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d685b2cfb42ae25d3bcb5ba78722915688f9286f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:ae:61:c4:18:38:68:6e:1c:7f:81:5e:10:48:
b0:c1:58:a6:6c:a5:42:3d:26:8a:42:f0:dc:38:ae:
45:a3:6f:02:e9:8e:d3:2f:fb:57:59:a9:40:40:26:
b6:fa:79:fd:a2:7b:ae:d4:0d:41:fc:e8:77:0a:5f:
ba:14:8d:d1:95:b8:ed:5e:31:55:af:da:54:fd:e1:
55:3b:68:89:e4:ed:15:5a:7a:41:a7:18:93:be:63:
31:9d:d7:94:2e:ac:a3:03:fe:f9:82:95:f7:43:83:
b8:f3:43:d3:7b:98:4f:5f:9a:57:b6:15:41:25:00:
d9:3f:ce:65:7e:29:7f:bc:a3:c0:f1:7e:93:0b:2f:
d1:96:7c:9d:1f:e8:36:50:da:13:75:09:f1:d0:28:
2c:3b:3d:be:3f:e4:50:4e:26:7c:b2:4d:72:f3:60:
48:34:bc:52:1f:9b:e7:d3:af:39:ad:dd:9a:ae:15:
96:29:3b:77:f9:a8:3f:b0:bd:ac:86:e2:67:96:fc:
76:72:23:a9:fc:92:75:a2:bc:31:08:f5:3f:36:ef:
58:9b:f7:6e:63:b6:fe:9a:55:55:7b:7e:ca:b4:9a:
e6:85:3d:01:95:d2:b8:61:02:95:77:a6:77:e1:da:
dc:6d:a8:cc:93:21:e1:eb:82:50:0a:6d:50:9c:df:
43:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:85:B2:CF:B4:2A:E2:5D:3B:CB:5B:A7:87:22:91:56:88:F9:28:6F
X509v3 Authority Key Identifier:
keyid:98:F9:E0:C2:0A:CD:C8:FA:A7:44:1A:08:43:FF:8A:01:F3:D9:DB:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mPngwgrNyPqnRBoIQ_-KAfPZ28U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/188d75-2bf2-48f1-91f7-c48ca27a9c01/1/1oWyz7Qq4l07y1unhyKRVoj5KG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/188d75-2bf2-48f1-91f7-c48ca27a9c01/1/mPngwgrNyPqnRBoIQ_-KAfPZ28U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.72.0/21
185.66.188.0/22
IPv6:
2a02:598::/32
Signature Algorithm: sha256WithRSAEncryption
76:a9:ef:1d:02:d9:e8:b6:38:47:73:98:01:d8:b4:f5:91:30:
c5:93:d2:65:e9:1b:90:65:01:bc:c8:5f:48:ab:be:79:f3:e4:
fd:28:bb:b3:60:88:2a:ee:67:29:58:50:81:9e:48:10:2a:55:
a1:d2:c0:ea:33:b2:10:b5:70:56:cc:1c:5d:9b:80:41:e8:61:
d0:91:41:09:e8:47:54:c7:e1:3d:83:09:a3:d5:b0:77:5d:34:
6c:f4:89:cf:79:f4:0a:4e:78:1c:b2:07:70:24:85:92:91:2c:
d4:7f:39:11:b1:eb:17:a4:17:3d:a6:8e:96:81:79:16:2d:ef:
08:b0:86:30:fe:a0:2f:24:cf:26:fb:b6:35:82:33:ac:28:e0:
c9:a4:95:76:cc:41:c4:cb:2c:68:fb:19:b5:ec:81:a8:0b:f4:
82:d7:9c:c2:b1:5a:11:b7:a4:45:38:9f:78:4a:84:43:96:12:
1a:8b:f9:61:bd:76:00:a4:6e:96:ea:c2:5b:6c:31:2f:0a:28:
e0:0a:4c:0c:3c:53:6f:ef:c1:67:63:7b:6b:3f:68:d4:51:b4:
e1:4f:62:7d:50:16:6a:c6:55:80:6f:a3:b4:31:57:f5:b4:c9:
41:87:1a:44:cd:c8:ad:f3:db:49:46:87:2c:f1:f5:e6:64:16:
ea:23:90:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:06 2023 by rpki-client on console-ams.rpki-client.org