Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/wg4yYJCdCmKkJ5orfjdwsNJEXWM.roa
File: wg4yYJCdCmKkJ5orfjdwsNJEXWM.roa (raw, json)
Hash identifier: PvxRz0i/bFiW9lnANopxlRkF9E6755YyBFwryXYhyDY=
Subject key identifier: C2:0E:32:60:90:9D:0A:62:A4:27:9A:2B:7E:37:70:B0:D2:44:5D:63
Certificate issuer: /CN=b59909ed171b38c1fdc4362229e78d69851de11c
Certificate serial: 157386F6
Authority key identifier: B5:99:09:ED:17:1B:38:C1:FD:C4:36:22:29:E7:8D:69:85:1D:E1:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/wg4yYJCdCmKkJ5orfjdwsNJEXWM.roa
Signing time: Sat 01 Jan 2022 03:57:46 +0000
ROA not before: Sat 01 Jan 2022 03:57:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60447
IP address blocks: 77.246.219.0/24 maxlen: 24
77.246.218.0/24 maxlen: 24
77.246.217.0/24 maxlen: 24
77.246.216.0/22 maxlen: 22
77.246.216.0/24 maxlen: 24
185.97.73.0/24 maxlen: 24
185.97.72.0/24 maxlen: 24
185.97.72.0/22 maxlen: 22
185.97.75.0/24 maxlen: 24
185.97.74.0/24 maxlen: 24
95.214.104.0/22 maxlen: 22
95.214.104.0/23 maxlen: 23
95.214.106.0/23 maxlen: 23
2a06:4c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359892726 (0x157386f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b59909ed171b38c1fdc4362229e78d69851de11c
Validity
Not Before: Jan 1 03:57:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c20e3260909d0a62a4279a2b7e3770b0d2445d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6e:c8:b4:56:bc:a8:19:eb:c7:9d:59:38:0b:
dd:4f:35:84:b2:79:f6:22:23:75:85:92:8a:d9:c6:
5d:38:08:4a:41:d9:29:c9:38:0e:b0:4b:f6:3f:1e:
e6:ca:83:c9:4c:b7:f1:52:8e:68:c9:15:f1:38:eb:
35:13:41:c0:80:32:d4:7e:c3:13:0e:19:ec:77:80:
18:86:0a:4e:3b:13:83:ed:5a:9e:e2:54:58:27:55:
a5:82:a4:de:d6:a1:1b:ee:42:5a:6f:c0:ed:1a:e1:
27:a8:7c:f5:10:f1:cc:ae:23:e4:f2:90:99:78:7a:
00:b3:87:d3:19:42:fc:99:49:e7:b6:78:9b:bb:8f:
f3:ab:62:a0:b9:b1:ba:f0:ff:b5:27:99:d3:2e:d9:
2a:2b:ca:d1:98:34:93:ff:f9:32:c8:3d:36:73:d6:
c6:71:c6:b4:16:28:34:4b:20:24:52:2b:26:bf:7f:
23:05:3e:db:f0:c4:cc:d7:9f:e0:e5:0f:b8:28:05:
af:06:28:d8:b5:27:e9:94:22:f0:14:cd:be:cf:c9:
57:30:e5:ca:ba:92:74:96:1b:06:84:bf:ff:b4:68:
85:b0:58:b9:5e:a6:17:23:5d:27:29:d2:22:45:c6:
3a:cd:c7:dd:0f:01:f2:e4:84:02:72:3f:5f:f0:e7:
12:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:0E:32:60:90:9D:0A:62:A4:27:9A:2B:7E:37:70:B0:D2:44:5D:63
X509v3 Authority Key Identifier:
keyid:B5:99:09:ED:17:1B:38:C1:FD:C4:36:22:29:E7:8D:69:85:1D:E1:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/wg4yYJCdCmKkJ5orfjdwsNJEXWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.216.0/22
95.214.104.0/22
185.97.72.0/22
IPv6:
2a06:4c0::/32
Signature Algorithm: sha256WithRSAEncryption
9a:ab:9b:24:cc:80:e9:9f:3f:60:75:49:df:6a:7c:c8:e1:11:
c8:56:e0:de:e0:9b:ac:8e:7c:07:33:3c:d3:8c:23:1b:d0:1e:
b1:ca:7f:08:1c:33:95:14:df:3b:2f:52:c8:ed:0a:bc:6f:f2:
46:cc:e9:e4:07:c6:ea:21:45:b9:c1:a0:18:98:57:85:a8:0f:
e1:59:a8:2c:63:5f:19:f6:af:c9:03:59:59:47:a9:c2:9b:21:
73:a1:d2:cc:72:e6:07:ff:df:29:e1:a5:12:92:ba:00:31:45:
a9:40:f8:7f:b0:a0:50:c0:16:45:f3:ad:43:21:c9:8f:22:dd:
e6:5f:26:17:ff:ad:1c:ef:32:b4:20:51:80:e9:75:e1:d9:d2:
b7:ed:9d:d5:50:9d:fc:d0:2d:82:57:ad:20:bb:c7:16:84:bf:
a1:24:d5:5c:04:45:55:05:28:37:b6:a8:1f:74:2c:d6:96:12:
51:72:8c:77:61:75:99:69:28:c7:7c:95:21:8a:5e:24:7f:1d:
1c:30:77:5b:12:43:b2:7c:39:e7:b6:9b:64:71:8e:ad:b8:bc:
a9:e5:af:8d:bf:5a:5b:71:42:b8:22:d5:55:12:b6:94:2f:b4:
cd:d1:5f:77:4c:55:4b:5f:66:a3:86:e7:56:14:68:0a:52:24:
6f:aa:5a:84
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:51 2024 by rpki-client on console-ams.rpki-client.org