Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/wg02Ivp0T5JLyuj5zxDyPb-iEnw.roa
File: wg02Ivp0T5JLyuj5zxDyPb-iEnw.roa (raw, json)
Hash identifier: yaIIYLCsn+0tCurqTii9OnzMD0XmRuIB1aAvcq9weZA=
Subject key identifier: C2:0D:36:22:FA:74:4F:92:4B:CA:E8:F9:CF:10:F2:3D:BF:A2:12:7C
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 1AF65CD2
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/wg02Ivp0T5JLyuj5zxDyPb-iEnw.roa
Signing time: Sat 01 Jan 2022 13:05:39 +0000
ROA not before: Sat 01 Jan 2022 13:05:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8228
IP address blocks: 88.140.0.0/16 maxlen: 16
213.223.0.0/16 maxlen: 16
84.4.0.0/14 maxlen: 14
88.141.0.0/16 maxlen: 16
78.112.0.0/12 maxlen: 12
195.115.0.0/16 maxlen: 16
88.136.0.0/14 maxlen: 14
88.142.0.0/16 maxlen: 16
194.6.128.0/19 maxlen: 19
194.6.128.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452353234 (0x1af65cd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 13:05:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c20d3622fa744f924bcae8f9cf10f23dbfa2127c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f4:cf:9f:c2:d5:dd:e8:a2:50:b7:a4:29:08:
fd:ca:d9:d1:91:af:c8:fd:c2:54:e7:c4:65:ba:75:
80:8a:47:a5:58:f3:fb:ee:3f:64:0f:6b:c8:ac:9d:
52:e8:87:04:32:9a:87:75:14:05:30:9e:b1:d2:19:
da:34:d7:1e:cc:5d:48:71:74:21:47:3e:69:f0:5b:
c0:49:19:bd:90:0e:f1:78:bc:bb:0a:1b:82:41:f0:
2e:43:0a:30:01:bc:bc:b3:04:ea:f2:f8:1f:b0:37:
d3:e6:22:b6:46:37:30:a0:68:90:e5:76:59:dd:b4:
61:77:94:49:bd:dd:82:e9:e0:03:5b:61:27:5d:ad:
73:70:6a:7e:f1:b3:01:2e:a9:e6:ef:b1:67:17:94:
41:7c:90:1a:87:36:17:d6:be:72:6e:12:b3:6a:aa:
79:4b:d4:ec:72:69:ea:41:66:a6:78:ea:ae:e4:ee:
92:6c:1d:f2:2a:7f:8c:93:de:6e:00:9c:45:81:8a:
bb:c4:a3:d7:8d:31:9f:12:06:87:8a:6d:03:84:cf:
8c:9b:19:c9:0b:fd:5b:8a:cd:af:cd:6b:fc:bb:f1:
a2:5a:13:a9:d2:2b:4e:7b:7c:54:d6:0b:e2:83:a6:
97:c3:fa:29:e4:6b:f8:66:ae:45:ec:7b:df:c1:7a:
45:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:0D:36:22:FA:74:4F:92:4B:CA:E8:F9:CF:10:F2:3D:BF:A2:12:7C
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/wg02Ivp0T5JLyuj5zxDyPb-iEnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.112.0.0/12
84.4.0.0/14
88.136.0.0-88.142.255.255
194.6.128.0/19
195.115.0.0/16
213.223.0.0/16
Signature Algorithm: sha256WithRSAEncryption
55:fb:9a:fa:ab:8f:95:7b:26:94:41:05:01:aa:1d:d7:37:c6:
af:d5:fc:d6:bd:ed:4c:65:a8:d1:7c:8d:f9:eb:c3:39:af:d8:
fa:85:0a:22:8d:f1:df:99:db:1f:ca:3d:e1:eb:a5:ec:45:3f:
a1:42:46:48:1b:df:86:51:69:0e:12:fc:b2:58:9d:f4:b0:82:
49:d3:46:be:ee:ae:ac:4f:5a:a1:21:1d:a5:d9:28:f0:bf:06:
2f:1a:aa:bb:bb:de:33:37:70:b3:04:ef:da:61:ea:dd:c6:9e:
36:17:b0:88:5c:46:a7:f7:ef:b9:d4:bb:49:b3:01:c5:28:2d:
57:57:81:1e:ba:f1:82:8f:b7:97:04:47:61:88:4b:91:5c:7e:
25:15:86:4b:e9:e1:e7:fa:c8:2e:dc:44:42:11:41:ce:ef:68:
9a:08:59:cc:e3:75:fd:39:c4:23:1e:e1:e0:5d:e1:9c:42:d9:
7d:b4:30:fc:da:9b:c0:de:ec:b1:6c:30:7e:60:56:a4:54:b7:
14:22:7b:4c:51:9d:7d:14:27:cf:a5:16:d3:30:ec:43:77:72:
47:5b:da:90:05:40:d6:27:37:fd:ac:a5:eb:61:7f:7d:2e:a2:
15:71:1f:43:3b:38:bf:fa:75:ea:85:5a:e0:33:96:ee:65:31:
0a:46:9d:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:51 2024 by rpki-client on console-ams.rpki-client.org