Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/IigoHVJcG-j4ZhpWSu2UckvJJKM.roa
File: IigoHVJcG-j4ZhpWSu2UckvJJKM.roa (raw, json)
Hash identifier: KDyAw5WMFE2q3eEB/XUjtv9NEdBsOjYt/8s4IFHm1PQ=
Subject key identifier: 22:28:28:1D:52:5C:1B:E8:F8:66:1A:56:4A:ED:94:72:4B:C9:24:A3
Certificate issuer: /CN=f4b769a53dd86352d3440f222bdf907cf09c2dba
Certificate serial: 16773A47
Authority key identifier: F4:B7:69:A5:3D:D8:63:52:D3:44:0F:22:2B:DF:90:7C:F0:9C:2D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdppT3YY1LTRA8iK9-QfPCcLbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/IigoHVJcG-j4ZhpWSu2UckvJJKM.roa
Signing time: Thu 21 Apr 2022 08:21:51 +0000
ROA not before: Thu 21 Apr 2022 08:21:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16202
IP address blocks: 92.206.160.0/19 maxlen: 19
89.186.128.0/19 maxlen: 19
89.186.128.0/21 maxlen: 21
89.186.128.0/20 maxlen: 20
77.64.224.0/20 maxlen: 20
77.64.240.0/20 maxlen: 20
77.64.252.0/23 maxlen: 23
77.64.254.0/23 maxlen: 23
92.206.128.0/18 maxlen: 18
92.206.190.0/23 maxlen: 23
89.186.136.0/21 maxlen: 21
217.68.160.0/19 maxlen: 19
217.68.160.0/20 maxlen: 20
89.186.144.0/20 maxlen: 20
89.186.144.0/21 maxlen: 21
92.206.192.0/18 maxlen: 18
217.68.176.0/20 maxlen: 20
89.186.152.0/21 maxlen: 21
92.206.224.0/19 maxlen: 19
77.64.160.0/19 maxlen: 19
83.221.72.0/21 maxlen: 21
83.221.80.0/20 maxlen: 20
83.221.80.0/21 maxlen: 21
83.221.88.0/21 maxlen: 21
77.64.192.0/19 maxlen: 19
77.64.192.0/20 maxlen: 20
92.206.64.0/18 maxlen: 18
185.44.148.0/22 maxlen: 22
185.44.150.0/23 maxlen: 23
77.64.208.0/20 maxlen: 20
77.64.128.0/17 maxlen: 17
77.64.128.0/19 maxlen: 19
77.64.128.0/18 maxlen: 18
92.206.0.0/17 maxlen: 17
92.206.0.0/18 maxlen: 18
92.206.0.0/16 maxlen: 16
77.64.146.0/23 maxlen: 23
83.221.64.0/19 maxlen: 19
83.221.64.0/21 maxlen: 21
83.221.64.0/20 maxlen: 20
2a02:2454:8000::/33 maxlen: 33
2a00:c1a0::/32 maxlen: 32
2a00:c1a0::/34 maxlen: 34
2a00:c1a0:8000::/34 maxlen: 34
2a00:c1a0:4000::/34 maxlen: 34
2a00:c1a0:c000::/34 maxlen: 34
2a02:2457:100::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 376912455 (0x16773a47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b769a53dd86352d3440f222bdf907cf09c2dba
Validity
Not Before: Apr 21 08:21:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2228281d525c1be8f8661a564aed94724bc924a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5d:d1:2b:94:0a:38:c2:f5:29:c3:77:c7:97:
2f:2f:43:b6:3b:8a:2e:78:aa:9f:30:32:64:9a:7f:
3d:64:96:c5:24:42:78:1f:d4:fe:23:a3:02:a5:28:
61:5d:1b:0c:cf:4e:c1:01:cf:1a:ad:60:01:59:74:
9a:65:51:b0:9a:0a:f5:b6:c5:23:33:a9:ca:73:f7:
46:a8:00:b1:7a:3c:4b:60:15:f2:c3:1e:09:1b:52:
e5:ec:67:d1:0d:e7:50:4f:62:d1:59:ab:8d:d7:c3:
02:0b:80:f2:50:37:bf:72:8f:1f:20:f2:4f:a6:66:
ed:a1:20:1d:3f:eb:40:9e:13:73:c3:45:d6:11:7a:
76:6f:32:a4:f0:e9:22:dd:d2:70:0b:d8:88:37:6e:
d0:cc:0c:f3:aa:b0:63:35:cc:5c:27:79:ad:0b:b4:
c9:18:ec:2b:9d:c9:a6:23:d9:cf:c9:5b:37:d5:1d:
dc:f6:b8:fd:05:b1:53:c8:35:c3:20:0f:90:c0:83:
a9:be:01:b3:a4:e5:20:ec:b9:f3:f4:bf:46:9d:8b:
95:79:ca:77:10:c3:16:78:5a:cb:c3:9a:3d:5d:03:
f8:1a:a4:6d:c1:90:9d:a4:e8:a9:4c:17:cd:75:ae:
11:aa:32:69:07:3e:3f:cc:9b:e7:7a:64:13:29:4c:
00:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:28:28:1D:52:5C:1B:E8:F8:66:1A:56:4A:ED:94:72:4B:C9:24:A3
X509v3 Authority Key Identifier:
keyid:F4:B7:69:A5:3D:D8:63:52:D3:44:0F:22:2B:DF:90:7C:F0:9C:2D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdppT3YY1LTRA8iK9-QfPCcLbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/IigoHVJcG-j4ZhpWSu2UckvJJKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/9LdppT3YY1LTRA8iK9-QfPCcLbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.64.128.0/17
83.221.64.0/19
89.186.128.0/19
92.206.0.0/16
185.44.148.0/22
217.68.160.0/19
IPv6:
2a00:c1a0::/32
2a02:2454:8000::/33
2a02:2457:100::/40
Signature Algorithm: sha256WithRSAEncryption
10:a5:4a:68:3d:26:f1:ef:d0:1a:bd:1f:31:77:8e:fc:ab:10:
fc:99:96:ee:9e:36:44:12:67:21:35:a5:93:c7:d8:7b:a8:c5:
48:95:43:6d:08:80:68:e0:dd:cb:ac:2a:be:cc:c3:a9:f0:c6:
7a:74:51:a7:e4:94:99:48:0c:a4:85:ca:b4:e2:c3:b4:aa:eb:
e1:56:b6:07:cc:ad:f5:26:22:45:20:12:53:58:41:d3:ab:74:
82:07:fe:fa:46:09:80:e5:03:95:11:15:79:9c:37:21:71:b5:
5d:e7:02:9a:8e:e1:81:94:b4:ed:ed:d8:c4:2b:b2:23:41:b7:
d5:34:f6:88:4d:f4:ae:3d:50:1f:ae:82:c7:93:e6:17:10:50:
09:5a:6d:14:02:d9:02:7b:07:25:a4:1f:26:89:82:c4:98:b0:
0c:c7:83:28:c1:96:e8:15:0a:ed:84:d1:71:d9:4f:35:32:c3:
9b:ec:77:9b:46:d7:b8:c7:5a:6b:85:07:df:73:a5:5a:35:db:
de:57:39:2a:a2:45:66:ff:ff:3c:34:a5:34:78:3e:96:4f:b5:
9a:68:d6:90:6f:5e:c9:2c:75:68:99:82:1e:09:c1:a4:29:67:
1d:de:64:1e:72:9a:34:2b:54:3f:03:1c:70:fb:04:04:7f:b5:
0c:a3:30:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:52 2023 by rpki-client on console-ams.rpki-client.org