Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/0ee2ab-07d9-4a81-abf0-e0e4be6696f9/1/mmbWllwiEW5RsZamkxvSFK3G6TY.roa
File: mmbWllwiEW5RsZamkxvSFK3G6TY.roa (raw, json)
Hash identifier: ukkInP2/wEwdTDlbqm9I/0CJqD+Gw9+/9sQBuA7Hwxo=
Subject key identifier: 9A:66:D6:96:5C:22:11:6E:51:B1:96:A6:93:1B:D2:14:AD:C6:E9:36
Certificate issuer: /CN=586329f307b98285b71d22c7197ec19b701ded67
Certificate serial: 12746A84
Authority key identifier: 58:63:29:F3:07:B9:82:85:B7:1D:22:C7:19:7E:C1:9B:70:1D:ED:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGMp8we5goW3HSLHGX7Bm3Ad7Wc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/0ee2ab-07d9-4a81-abf0-e0e4be6696f9/1/mmbWllwiEW5RsZamkxvSFK3G6TY.roa
Signing time: Sat 01 Jan 2022 07:04:40 +0000
ROA not before: Sat 01 Jan 2022 07:04:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42586
IP address blocks: 77.36.128.0/17 maxlen: 17
77.36.128.0/19 maxlen: 19
77.36.128.0/20 maxlen: 20
77.36.128.0/18 maxlen: 18
77.36.144.0/20 maxlen: 20
77.36.224.0/20 maxlen: 20
77.36.224.0/19 maxlen: 19
77.36.240.0/20 maxlen: 20
77.36.160.0/20 maxlen: 20
77.36.160.0/19 maxlen: 19
77.36.165.0/24 maxlen: 24
185.194.244.0/22 maxlen: 22
77.36.166.0/24 maxlen: 24
77.36.163.0/24 maxlen: 24
77.36.164.0/24 maxlen: 24
77.36.176.0/20 maxlen: 20
77.36.192.0/20 maxlen: 20
77.36.192.0/19 maxlen: 19
77.36.192.0/18 maxlen: 18
77.36.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 309619332 (0x12746a84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=586329f307b98285b71d22c7197ec19b701ded67
Validity
Not Before: Jan 1 07:04:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a66d6965c22116e51b196a6931bd214adc6e936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9c:81:4e:36:a6:c4:5b:d5:6b:60:a8:80:d0:
f3:4f:59:6c:8a:39:76:3b:d3:bf:73:4f:fb:ff:0f:
7c:28:f1:34:b1:3f:9a:9f:03:88:1c:fe:7f:79:c1:
b3:9c:a4:17:6b:44:f7:96:41:af:84:e1:2c:77:22:
05:6e:24:c4:a6:68:71:17:17:6d:1a:01:a8:04:3d:
f1:cb:91:13:9d:9f:77:dc:94:17:2d:4f:82:d9:10:
ee:d5:14:ac:73:e9:49:bd:26:65:b0:84:58:60:56:
ef:4f:b1:e1:b8:82:0e:e1:49:2a:0f:19:40:a2:79:
ec:1d:78:81:1d:5d:c4:ab:a1:79:e0:ee:10:72:c7:
8a:dc:ae:61:05:14:97:52:ee:f4:8e:1e:7b:bd:f2:
cf:6e:33:e9:27:8f:33:db:ab:90:69:66:64:f7:6a:
dd:f3:f7:b0:d1:69:39:26:10:b0:eb:43:c8:1e:0a:
2d:9a:96:6e:95:3c:b3:dd:e6:7a:71:dd:16:52:a1:
9a:aa:77:4b:6c:ca:96:f8:d3:19:10:43:43:94:58:
50:56:db:35:a3:f0:cf:71:66:e5:4c:c1:f7:37:bb:
a3:3c:75:86:4d:df:fb:a8:79:8c:6b:b1:f0:5d:2e:
f1:b7:e4:df:b0:22:b4:a6:9b:3d:d2:ac:c6:b6:ac:
9a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:66:D6:96:5C:22:11:6E:51:B1:96:A6:93:1B:D2:14:AD:C6:E9:36
X509v3 Authority Key Identifier:
keyid:58:63:29:F3:07:B9:82:85:B7:1D:22:C7:19:7E:C1:9B:70:1D:ED:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGMp8we5goW3HSLHGX7Bm3Ad7Wc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0ee2ab-07d9-4a81-abf0-e0e4be6696f9/1/mmbWllwiEW5RsZamkxvSFK3G6TY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0ee2ab-07d9-4a81-abf0-e0e4be6696f9/1/WGMp8we5goW3HSLHGX7Bm3Ad7Wc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.36.128.0/17
185.194.244.0/22
Signature Algorithm: sha256WithRSAEncryption
60:61:6a:1b:43:53:7e:9e:6e:03:e6:1e:f3:79:36:50:b0:4b:
94:3a:f7:a9:3b:be:ca:bd:54:59:6b:c5:88:e3:9f:bd:b2:e9:
3a:49:61:6d:5c:79:16:e5:cf:8d:01:6a:cf:7c:4d:64:6f:2c:
67:1c:58:92:2c:08:21:ab:f3:04:d2:0e:bc:0c:8c:00:aa:26:
41:01:10:42:45:6e:a1:16:b5:78:d5:f0:bc:7b:e2:0d:92:9f:
9c:4e:f7:9f:81:0f:6b:b5:80:62:ff:63:69:dc:9f:18:ac:a9:
bb:1c:28:c6:d2:46:a8:08:c4:3d:b7:65:be:fd:fd:f9:aa:14:
31:04:a7:13:7b:9b:8b:4e:3f:9d:1f:62:ef:7b:b1:4a:05:15:
24:45:1f:7e:62:84:32:94:b9:6b:8f:03:41:67:ee:78:ce:fa:
37:aa:76:e4:c5:fe:9d:0b:7c:f7:60:e1:d8:08:82:ab:fa:e4:
b1:21:af:e4:17:13:2c:fe:e9:51:58:7e:fb:12:d0:e2:59:8a:
9a:74:53:97:07:15:83:3e:f3:be:76:6b:0e:53:2e:f7:e4:dd:
79:d2:f2:64:82:c5:e2:78:8b:55:fb:2e:01:c2:81:a3:24:60:
80:51:f1:b1:07:19:4c:5e:ce:8e:f3:e3:6e:3d:23:8d:84:6f:
93:d6:0b:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:38 2024 by rpki-client on console-fra.rpki-client.org