Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/fb7a7d-0655-4587-8af9-7700e25ff769/1/WFthjXSWiZ3WXXcHwjcZYjTHamY.roa
File: WFthjXSWiZ3WXXcHwjcZYjTHamY.roa (raw, json)
Hash identifier: osYzf95mCgkvCYiLNa0oanNfdPNIuEggZtNeGveg4rY=
Subject key identifier: 58:5B:61:8D:74:96:89:9D:D6:5D:77:07:C2:37:19:62:34:C7:6A:66
Certificate issuer: /CN=aa44eb091b3a33a87beb8e004ab15ef178fbaa00
Certificate serial: 0184324937B5206827154235AC4B753440A7
Authority key identifier: AA:44:EB:09:1B:3A:33:A8:7B:EB:8E:00:4A:B1:5E:F1:78:FB:AA:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qkTrCRs6M6h7644ASrFe8Xj7qgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/fb7a7d-0655-4587-8af9-7700e25ff769/1/WFthjXSWiZ3WXXcHwjcZYjTHamY.roa
Signing time: Tue 01 Nov 2022 08:22:49 +0000
ROA not before: Tue 01 Nov 2022 08:22:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209974
IP address blocks: 77.105.148.0/22 maxlen: 22
77.105.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:32:49:37:b5:20:68:27:15:42:35:ac:4b:75:34:40:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa44eb091b3a33a87beb8e004ab15ef178fbaa00
Validity
Not Before: Nov 1 08:22:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=585b618d7496899dd65d7707c237196234c76a66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:66:5a:cb:72:e7:88:ab:1b:67:5b:b4:70:87:
7a:bf:ed:79:d3:f5:d2:de:20:c9:28:2e:15:75:e0:
9d:96:45:98:0e:4c:ab:ae:bc:21:4a:34:18:53:bb:
23:5b:cf:7f:df:5c:b6:ae:0a:7e:62:6f:7f:b8:be:
b2:95:db:a3:1f:38:dc:53:4c:43:2b:70:aa:9f:32:
03:ff:e7:b6:dc:17:3b:77:2e:f2:60:2f:41:7c:6c:
84:ed:3a:fe:37:89:05:8e:52:9e:68:38:35:5c:d3:
14:8d:f0:11:2a:bc:07:76:09:4c:05:0a:82:29:e3:
92:24:7d:2e:26:33:04:28:e1:35:bf:7f:7f:84:30:
ca:6e:e4:f4:e0:64:f3:93:33:6a:b7:dd:bb:42:e8:
9b:27:cc:4c:68:98:ec:28:07:e5:95:6c:c1:41:50:
17:3c:e3:1f:87:ac:f7:63:6e:53:93:db:a9:76:a7:
d4:81:3a:76:30:99:5e:7a:d8:dd:48:bd:78:fc:30:
a3:ad:ac:a3:d8:c0:92:1d:73:1d:d5:16:78:16:e1:
9b:7b:72:01:f2:55:ec:12:b9:80:5a:00:e8:c8:c1:
54:34:3a:e3:4f:6d:56:2f:db:d8:71:cb:b7:1e:d3:
41:27:78:cf:c2:47:51:9c:99:84:7a:1b:26:52:8c:
c5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:5B:61:8D:74:96:89:9D:D6:5D:77:07:C2:37:19:62:34:C7:6A:66
X509v3 Authority Key Identifier:
keyid:AA:44:EB:09:1B:3A:33:A8:7B:EB:8E:00:4A:B1:5E:F1:78:FB:AA:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qkTrCRs6M6h7644ASrFe8Xj7qgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/fb7a7d-0655-4587-8af9-7700e25ff769/1/WFthjXSWiZ3WXXcHwjcZYjTHamY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/fb7a7d-0655-4587-8af9-7700e25ff769/1/qkTrCRs6M6h7644ASrFe8Xj7qgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.148.0-77.105.155.255
Signature Algorithm: sha256WithRSAEncryption
a2:6d:1a:11:04:11:70:d3:39:84:28:f1:26:e2:81:32:88:d8:
8d:da:4d:5a:cb:c2:13:d5:3d:7a:b3:43:ba:33:53:22:22:31:
64:c9:2e:a5:02:6b:59:fd:0e:99:bc:3a:2a:f9:11:42:3f:fc:
c9:31:49:77:2a:2d:72:50:64:bf:9e:36:39:58:81:18:29:04:
22:f5:2c:ca:e0:a0:85:26:a8:86:60:8f:0b:2f:e6:f0:85:63:
a0:f4:35:91:52:0d:be:cd:cd:87:5c:88:49:4a:db:eb:41:b9:
b8:33:a5:45:14:f4:40:b4:2f:ee:6c:72:e3:be:1d:4d:09:74:
35:47:10:cf:c1:31:52:5f:18:a2:c9:2d:a5:4d:9a:59:d1:75:
ae:a6:25:2a:7a:aa:19:fa:a8:13:ee:04:86:88:53:43:61:d7:
bf:b3:0e:7a:db:19:2e:49:b1:5b:13:83:e6:98:d1:fd:c9:39:
f9:5e:d2:33:f7:bc:e1:50:55:01:2b:1a:64:57:27:a5:cb:cf:
5c:a6:44:e7:50:50:3b:a5:46:0b:a1:7e:be:84:cf:2e:1e:ab:
5e:4b:07:7d:37:c5:6c:e5:63:e9:8a:51:64:43:31:af:5c:d3:
f6:e9:5a:89:c5:00:ef:3e:42:05:69:11:5c:b0:26:14:f0:2c:
d8:0f:b9:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:42 2025 by rpki-client