Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WKUNnMVFAZIfzVtwfw94qlw5Tdo.roa
File: WKUNnMVFAZIfzVtwfw94qlw5Tdo.roa (raw, json)
Hash identifier: 49/5S6d/L6he7oYwgHL3bU5Rnvjv3iuiUNaSDbeIHGM=
Subject key identifier: 58:A5:0D:9C:C5:45:01:92:1F:CD:5B:70:7F:0F:78:AA:5C:39:4D:DA
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018455DCE3CC8405F0DA556757F7D3DA1DBC
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WKUNnMVFAZIfzVtwfw94qlw5Tdo.roa
Signing time: Tue 08 Nov 2022 06:10:50 +0000
ROA not before: Tue 08 Nov 2022 06:10:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14178
IP address blocks: 45.86.248.0/22 maxlen: 22
45.145.251.0/24 maxlen: 24
45.144.188.0/22 maxlen: 24
45.85.224.0/22 maxlen: 22
45.130.138.0/24 maxlen: 24
136.144.41.0/24 maxlen: 24
185.227.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:55:dc:e3:cc:84:05:f0:da:55:67:57:f7:d3:da:1d:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Nov 8 06:10:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58a50d9cc54501921fcd5b707f0f78aa5c394dda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3f:b8:9d:05:3e:59:cf:9a:fa:cb:96:a7:0a:
99:a2:80:cf:3c:76:dd:3f:e3:ff:a1:dc:ea:5c:54:
e2:65:ae:a6:3f:14:05:09:cd:ee:70:34:aa:62:2e:
fd:e4:30:56:d8:f9:75:d6:30:13:4f:17:c8:bd:b2:
51:63:43:60:4e:ed:79:d0:b5:13:e6:ac:e0:f0:01:
11:f7:fc:8f:80:37:e6:a6:03:bc:20:bd:74:a3:61:
6a:ef:03:24:bf:84:9d:68:32:ad:7a:43:2b:f7:4f:
f2:81:b2:d0:89:70:c9:3d:8e:3c:31:a5:d3:dc:b0:
11:43:11:d2:81:a8:dc:82:ff:31:ce:09:75:fa:09:
b6:58:90:ac:01:35:90:8e:12:1c:58:14:b5:1e:df:
53:7d:48:71:65:66:ce:b2:d8:c3:9f:ea:4e:ac:73:
49:5c:be:16:7f:46:9f:d4:6e:6c:07:36:93:76:dc:
17:13:c9:75:ea:ad:74:5e:4b:33:3a:c5:1f:9d:87:
25:67:1b:39:75:e0:ed:dc:8d:79:ce:dc:4e:1e:8a:
a6:fd:ec:28:69:74:50:c9:59:ba:d9:b8:8b:68:54:
87:0c:58:9c:b1:bd:83:b7:51:81:ea:7d:ba:4d:41:
54:ee:4f:84:73:b3:2f:48:9d:b6:82:b6:cf:e8:cd:
d0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A5:0D:9C:C5:45:01:92:1F:CD:5B:70:7F:0F:78:AA:5C:39:4D:DA
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WKUNnMVFAZIfzVtwfw94qlw5Tdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.224.0/22
45.86.248.0/22
45.130.138.0/24
45.144.188.0/22
45.145.251.0/24
136.144.41.0/24
185.227.35.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:89:6a:1e:02:bc:5b:25:a6:ce:73:89:11:73:c9:f7:c5:47:
1d:fa:db:e4:49:e2:f5:d5:b2:4f:90:fd:67:0f:9b:3e:89:d6:
f6:1a:c8:92:2f:b4:7e:44:bb:ad:12:ad:9f:cf:15:7e:84:ad:
c9:19:5e:89:1d:ae:de:6e:48:c2:7c:9e:17:74:b2:9a:91:9e:
f0:4d:b3:68:ec:87:0a:33:7d:9d:a1:15:bf:3f:b7:4e:36:99:
5e:7f:d0:c7:25:18:e2:48:97:7b:e7:e1:4a:ba:5f:87:88:e2:
4c:b3:1d:36:c4:fa:bd:7c:7b:73:94:66:f1:a0:be:27:05:f4:
66:55:ca:ad:2d:28:77:5f:ce:5c:be:19:8f:28:e7:0e:7e:cc:
1f:d1:0b:76:30:12:ce:bb:3f:03:b7:dc:4a:4d:ce:fa:ff:ad:
6f:99:58:d1:e7:28:17:99:61:a1:50:7c:37:18:c0:4f:80:91:
96:51:4e:98:63:1b:77:af:35:a2:21:fd:45:59:4d:c0:95:2b:
4d:8d:49:46:23:78:6d:9b:ad:4e:5e:46:cb:f8:a6:0e:89:a7:
9c:4c:f8:cd:2c:23:2e:1a:86:f5:68:e2:41:a5:e4:cf:38:7e:
65:39:ea:03:7f:69:93:69:94:89:8d:89:f0:30:9e:f8:92:37:
5d:11:b6:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org