Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/wPj38PMBD05nRit6byLjez76N44.roa
File: wPj38PMBD05nRit6byLjez76N44.roa (raw, json)
Hash identifier: GAflwWsVw7egOIq7bKszlUf94pKa/aDC7SNyMBQwLpg=
Subject key identifier: C0:F8:F7:F0:F3:01:0F:4E:67:46:2B:7A:6F:22:E3:7B:3E:FA:37:8E
Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Certificate serial: 018313AD465D732ADEDFC403D49D70DD91CC
Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/wPj38PMBD05nRit6byLjez76N44.roa
Signing time: Tue 06 Sep 2022 16:41:06 +0000
ROA not before: Tue 06 Sep 2022 16:41:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47232
IP address blocks: 5.39.200.0/22 maxlen: 32
185.15.108.0/22 maxlen: 32
78.111.114.0/23 maxlen: 32
78.111.116.0/23 maxlen: 32
78.111.112.0/20 maxlen: 32
46.29.224.0/21 maxlen: 32
213.108.162.0/23 maxlen: 32
217.75.208.0/20 maxlen: 32
185.64.220.0/22 maxlen: 32
185.125.128.0/22 maxlen: 32
93.91.150.0/23 maxlen: 32
93.91.152.0/24 maxlen: 32
93.91.149.0/24 maxlen: 32
93.91.153.0/24 maxlen: 32
93.91.154.0/24 maxlen: 32
46.29.228.0/23 maxlen: 32
185.52.172.0/24 maxlen: 32
93.91.144.0/20 maxlen: 32
2a02:17a0::/32 maxlen: 48
2a02:17a0::/29 maxlen: 48
2a03:2a82::/31 maxlen: 48
2a04:7bc0::/29 maxlen: 48
2a03:2a80::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:13:ad:46:5d:73:2a:de:df:c4:03:d4:9d:70:dd:91:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Validity
Not Before: Sep 6 16:41:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0f8f7f0f3010f4e67462b7a6f22e37b3efa378e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ce:10:01:e2:32:51:2e:b7:99:a7:63:44:4f:
d6:be:d2:73:b6:2b:ca:00:93:29:f8:73:70:6c:d2:
e7:8c:97:2b:84:ee:ad:4d:b3:32:41:71:87:8f:8c:
8c:82:07:98:26:10:a3:17:7d:e0:49:77:dd:32:c8:
18:57:40:13:b3:bf:bb:64:71:b2:75:6b:f6:4a:f5:
67:d0:60:70:e5:7e:0e:44:52:75:a1:65:2d:2d:8d:
d6:9e:71:70:05:4f:46:0a:d9:27:37:d7:51:1d:eb:
cc:d2:3f:e2:a9:10:d0:52:74:48:bc:78:cc:79:9d:
0b:d0:99:a9:77:b7:b9:f6:53:c8:41:01:67:ce:e7:
08:5a:a5:a6:9b:b3:b4:59:68:14:9e:9d:10:22:12:
84:ba:9f:1f:41:7e:08:7f:08:67:67:37:92:7b:e5:
95:f0:73:2f:3f:09:43:30:9d:38:d5:e2:ec:3c:d2:
2d:1f:3e:12:70:bb:31:fa:2b:26:d8:60:f9:3e:41:
e8:67:b4:48:cd:73:03:70:a4:60:54:bd:40:d8:3a:
e3:9c:b5:c5:3e:f7:26:18:93:ce:3f:90:fd:8f:b6:
0f:9d:8c:01:4e:56:4d:98:22:8d:5e:1a:96:cf:9b:
a1:d3:2f:6a:c5:0e:59:93:21:f9:f1:a0:bd:05:d9:
16:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:F8:F7:F0:F3:01:0F:4E:67:46:2B:7A:6F:22:E3:7B:3E:FA:37:8E
X509v3 Authority Key Identifier:
keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/wPj38PMBD05nRit6byLjez76N44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.200.0/22
46.29.224.0/21
78.111.112.0/20
93.91.144.0/20
185.15.108.0/22
185.52.172.0/24
185.64.220.0/22
185.125.128.0/22
213.108.162.0/23
217.75.208.0/20
IPv6:
2a02:17a0::/29
2a03:2a80::/29
2a04:7bc0::/29
Signature Algorithm: sha256WithRSAEncryption
93:1c:85:04:8a:d9:bc:8a:fc:65:dc:27:b4:15:d6:6c:0e:96:
23:7f:ab:76:5f:4f:cc:07:56:c9:c7:da:26:bb:d7:66:3c:10:
6e:87:aa:b8:01:40:c7:aa:de:cb:c4:f6:e0:33:9c:a3:5d:f6:
60:cc:fa:a8:e8:0b:66:b1:21:e6:38:cf:72:03:68:b3:91:8b:
59:9e:8f:8f:33:3c:aa:ff:ff:e2:69:69:64:5d:8b:41:13:28:
cf:b7:9e:ab:08:37:20:b7:a7:f2:be:ca:73:41:ce:f5:40:5f:
6f:1a:23:6d:54:17:2a:cd:ff:75:29:8e:6e:8c:71:77:be:4b:
8c:14:d1:0f:2d:8d:74:a1:65:c6:b6:02:cb:a6:27:26:dc:86:
b5:3a:2c:48:4a:a1:ea:4e:23:f1:ec:01:99:c7:5d:02:40:a8:
f2:b4:92:71:c9:f9:cb:7a:89:1d:06:e0:8b:f7:7e:be:cb:97:
ae:85:55:81:99:bc:01:41:18:82:11:53:e4:79:91:e2:d2:fb:
37:34:c8:a3:f6:bf:7b:d3:9b:91:b9:c1:3d:6e:ab:f3:e5:c3:
98:17:8c:ac:4e:a4:7f:af:7a:1b:9b:2d:b7:76:43:a7:e3:64:
26:64:9f:7d:2b:8c:6a:ee:39:dc:50:6b:09:e6:78:3e:5d:a1:
61:ce:3c:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:32 2024 by rpki-client on console-ams.rpki-client.org