Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/wOeKY18EclisS2kS2ooKDX5PAaI.roa
File: wOeKY18EclisS2kS2ooKDX5PAaI.roa (raw, json)
Hash identifier: twhojBtwMLSWK/YalgwUjcJYrZij4BgL6lqZG2z5ITk=
Subject key identifier: C0:E7:8A:63:5F:04:72:58:AC:4B:69:12:DA:8A:0A:0D:7E:4F:01:A2
Certificate issuer: /CN=d1e013ec8a5c56df241a9b2563d111f8e543bf91
Certificate serial: 16495048
Authority key identifier: D1:E0:13:EC:8A:5C:56:DF:24:1A:9B:25:63:D1:11:F8:E5:43:BF:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/wOeKY18EclisS2kS2ooKDX5PAaI.roa
Signing time: Sat 01 Jan 2022 04:59:16 +0000
ROA not before: Sat 01 Jan 2022 04:59:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 185.85.74.0/24 maxlen: 24
185.85.72.0/24 maxlen: 24
185.85.75.0/24 maxlen: 24
185.85.73.0/24 maxlen: 24
2a05:abc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373903432 (0x16495048)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1e013ec8a5c56df241a9b2563d111f8e543bf91
Validity
Not Before: Jan 1 04:59:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0e78a635f047258ac4b6912da8a0a0d7e4f01a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b9:11:f1:db:36:3b:ae:98:1d:ae:44:15:b7:
59:40:60:d3:9c:e6:98:2f:1d:93:f2:fc:9a:64:06:
8e:37:d4:66:c7:99:a9:10:ed:fd:23:4e:79:13:dc:
3b:76:f8:44:64:78:05:10:7d:9f:dd:81:2a:53:83:
c0:bc:b5:46:fe:1c:50:66:6c:bc:9b:29:bf:7e:8f:
be:a9:94:0e:7f:52:fd:37:97:61:7b:f8:1d:70:d5:
5e:39:e2:38:29:87:ca:9b:46:8f:b1:f2:6b:f6:5d:
b2:26:45:24:76:16:4a:3c:72:80:24:91:be:2d:bc:
54:88:c1:c9:73:3a:f4:80:7b:e1:5d:e3:55:e6:d8:
a6:19:55:f0:fd:c0:8e:37:16:a9:34:14:60:23:97:
72:82:61:3e:93:06:fd:3a:f5:5c:20:93:e2:94:76:
b0:07:5a:d2:79:32:c3:0b:a5:83:1e:56:ad:29:ef:
12:93:f1:37:82:84:da:db:d3:c2:1a:89:81:6f:d7:
6d:33:88:88:63:cf:af:15:89:b6:8f:ca:25:37:e1:
94:61:bb:61:26:73:73:d3:12:08:d8:00:82:ea:9b:
d2:fb:d5:66:5a:b3:97:34:2f:eb:73:e1:3a:16:a9:
7c:0f:ac:c9:b9:9b:9d:fa:6a:b0:ea:34:fd:d5:cf:
d4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E7:8A:63:5F:04:72:58:AC:4B:69:12:DA:8A:0A:0D:7E:4F:01:A2
X509v3 Authority Key Identifier:
keyid:D1:E0:13:EC:8A:5C:56:DF:24:1A:9B:25:63:D1:11:F8:E5:43:BF:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/wOeKY18EclisS2kS2ooKDX5PAaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/0eAT7IpcVt8kGpslY9ER-OVDv5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.72.0/22
IPv6:
2a05:abc0::/29
Signature Algorithm: sha256WithRSAEncryption
0f:6e:2b:c0:d9:f1:f6:2b:f5:09:66:59:97:12:22:df:2c:b9:
29:de:f7:69:a5:93:b5:f1:a2:5f:23:2c:41:46:b9:e0:44:5a:
32:bd:c2:99:c4:52:d3:0f:49:0f:85:c0:72:57:06:e3:2b:48:
b7:c4:8b:b1:1e:f6:45:ad:5f:c6:22:03:3b:68:f4:d7:82:6e:
1d:fb:79:78:bf:4f:c8:01:f3:c7:01:62:b2:ae:39:32:c1:0a:
79:34:44:c6:b5:0b:c4:70:d8:e0:14:c5:14:8d:27:20:1a:21:
2d:6b:0d:5a:93:00:ec:af:9d:1e:b6:96:0c:97:c6:d4:09:d6:
97:fd:87:ca:ca:7a:2e:cc:ec:6c:9c:52:8a:b4:97:07:fe:7d:
0b:04:03:98:b1:0a:48:95:8d:b2:44:c5:19:2c:55:d6:51:40:
ee:0a:6a:f9:5c:a4:92:c6:44:63:2b:f8:4e:21:4f:a0:0b:d3:
de:49:49:1e:a1:9c:5a:0a:57:e7:3c:5a:81:cd:d9:86:8d:e5:
f7:d2:ad:f8:56:fb:cd:be:eb:ee:94:f4:b3:8b:14:1c:62:fb:
88:1c:db:b2:25:0a:bc:84:4d:af:88:4f:19:57:52:39:2e:eb:
33:3d:4f:4b:86:30:f0:6f:dc:e0:22:bf:3b:44:ec:b8:69:d6:
3e:b5:b2:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:38 2024 by rpki-client on console-ams.rpki-client.org