Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/1e1a97-f276-4a51-b1b5-8c10909a485c/1/WV0u8aBY9HGtIjVF4srDlOaO9Cs.roa
File: WV0u8aBY9HGtIjVF4srDlOaO9Cs.roa (raw, json)
Hash identifier: WtxPqzO8IoUOnf5R5ABfUMbcm4+wkX1f1kWA6NMkSLg=
Subject key identifier: 59:5D:2E:F1:A0:58:F4:71:AD:22:35:45:E2:CA:C3:94:E6:8E:F4:2B
Certificate issuer: /CN=0b9d86096a49110cf9bf670240b519315b66abcb
Certificate serial: 0B8D73A5
Authority key identifier: 0B:9D:86:09:6A:49:11:0C:F9:BF:67:02:40:B5:19:31:5B:66:AB:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C52GCWpJEQz5v2cCQLUZMVtmq8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/1e1a97-f276-4a51-b1b5-8c10909a485c/1/WV0u8aBY9HGtIjVF4srDlOaO9Cs.roa
Signing time: Fri 25 Feb 2022 15:00:17 +0000
ROA not before: Fri 25 Feb 2022 15:00:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20559
IP address blocks: 185.122.116.0/22 maxlen: 22
194.213.112.0/23 maxlen: 23
5.172.40.0/21 maxlen: 24
31.200.208.0/21 maxlen: 24
91.224.248.0/23 maxlen: 23
45.13.164.0/22 maxlen: 24
46.226.88.0/21 maxlen: 21
185.51.56.0/22 maxlen: 22
45.133.196.0/22 maxlen: 24
193.37.204.0/22 maxlen: 22
185.46.64.0/22 maxlen: 22
193.187.188.0/22 maxlen: 22
45.146.124.0/22 maxlen: 22
88.218.152.0/22 maxlen: 22
185.113.84.0/22 maxlen: 22
46.19.216.0/21 maxlen: 21
91.218.148.0/22 maxlen: 22
93.186.176.0/20 maxlen: 20
85.209.108.0/22 maxlen: 22
2a03:3400::/32 maxlen: 48
2a00:d10::/32 maxlen: 48
2a06:6940::/29 maxlen: 48
2a04:a840::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193819557 (0xb8d73a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b9d86096a49110cf9bf670240b519315b66abcb
Validity
Not Before: Feb 25 15:00:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=595d2ef1a058f471ad223545e2cac394e68ef42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:d6:f3:2a:38:05:b9:3b:17:f0:75:b5:5a:69:
47:1e:b9:a3:f0:9d:20:8b:67:9b:0e:36:2a:38:cb:
17:ef:a3:41:ca:91:32:26:33:f8:76:8f:54:fc:ea:
95:b7:19:7f:03:bb:9b:a5:e5:47:63:66:e3:16:f2:
83:87:fc:84:b0:54:9b:95:d9:59:8a:b9:56:e8:09:
0d:fc:9d:de:eb:33:5b:4a:a8:04:49:0a:2e:47:ee:
f5:0c:75:95:05:af:89:30:a3:d8:6d:57:bf:71:17:
ee:4c:33:a9:64:41:ff:1f:60:80:68:82:91:6e:df:
ef:23:1c:0e:07:ec:9d:64:36:f9:47:4b:03:93:e2:
59:39:71:56:5a:33:fc:fb:bf:ab:b1:aa:bd:4f:54:
00:6a:ef:8e:ed:68:84:4c:ad:ca:bc:ab:fe:d9:2f:
b3:44:6d:1d:35:ee:20:16:b9:0b:df:99:99:92:fc:
d7:30:7a:fd:43:be:1f:2a:8f:c8:82:46:34:94:4c:
ad:a5:27:45:6f:33:d3:f7:7f:e2:c5:b9:dd:09:72:
68:ab:55:c0:61:bc:a6:10:7f:ea:bc:d2:bc:19:1c:
a3:df:4a:27:35:0d:be:fd:a9:cf:5e:04:76:ef:f4:
10:f7:60:f5:80:e5:c2:38:9b:ea:57:09:17:d1:33:
74:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:5D:2E:F1:A0:58:F4:71:AD:22:35:45:E2:CA:C3:94:E6:8E:F4:2B
X509v3 Authority Key Identifier:
keyid:0B:9D:86:09:6A:49:11:0C:F9:BF:67:02:40:B5:19:31:5B:66:AB:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C52GCWpJEQz5v2cCQLUZMVtmq8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/1e1a97-f276-4a51-b1b5-8c10909a485c/1/WV0u8aBY9HGtIjVF4srDlOaO9Cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/1e1a97-f276-4a51-b1b5-8c10909a485c/1/C52GCWpJEQz5v2cCQLUZMVtmq8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.40.0/21
31.200.208.0/21
45.13.164.0/22
45.133.196.0/22
45.146.124.0/22
46.19.216.0/21
46.226.88.0/21
85.209.108.0/22
88.218.152.0/22
91.218.148.0/22
91.224.248.0/23
93.186.176.0/20
185.46.64.0/22
185.51.56.0/22
185.113.84.0/22
185.122.116.0/22
193.37.204.0/22
193.187.188.0/22
194.213.112.0/23
IPv6:
2a00:d10::/32
2a03:3400::/32
2a04:a840::/29
2a06:6940::/29
Signature Algorithm: sha256WithRSAEncryption
8b:25:1c:44:b4:c4:3c:09:f0:c1:84:6d:72:2c:a1:30:bc:c9:
13:e1:ab:8e:5a:b7:fa:5b:d2:d6:dc:de:20:66:6b:41:41:7d:
52:7f:cc:a9:cf:c9:49:d5:cb:c8:1b:03:45:37:f1:1e:f9:23:
32:cf:4c:3e:a5:f4:ec:8f:85:68:60:ac:5c:5f:8a:56:ce:23:
50:ac:6e:80:03:0e:85:2a:a9:57:39:84:be:72:53:65:24:69:
8d:3a:d7:88:28:27:ae:10:84:52:8f:3f:f6:74:cd:bc:23:6e:
e1:99:e8:48:85:e1:d8:ec:86:f1:f5:45:c4:8a:06:79:36:9d:
4e:a4:a4:75:f6:a3:0e:88:c8:00:42:7b:e4:32:51:88:dc:7b:
91:83:6c:9f:8a:d9:88:95:3a:db:27:78:13:0f:c2:25:5a:57:
69:95:79:3c:32:22:92:8d:d7:af:a9:59:42:d1:c2:e4:0a:98:
f4:5b:36:12:5f:2c:2f:d9:04:fa:82:44:0c:aa:c9:e4:ff:b9:
4c:85:7e:b1:ca:2a:a6:04:0f:95:df:e2:32:f3:e4:a6:d8:72:
e1:3b:d9:9b:3b:56:7b:df:a3:f0:61:ab:28:e7:fb:d2:a4:69:
4c:aa:c7:b9:9f:b9:e9:ad:35:29:38:2a:63:bd:63:33:3c:fa:
63:38:57:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:23 2024 by rpki-client on console-fra.rpki-client.org