Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/WD8HO2GEtSkFA0H8F5iK1IKYSl4.roa
File: WD8HO2GEtSkFA0H8F5iK1IKYSl4.roa (raw, json)
Hash identifier: +cRdh8ASfpw41XmaAqwJZBK4CEABLIFGg0x9Ioa/INI=
Subject key identifier: 58:3F:07:3B:61:84:B5:29:05:03:41:FC:17:98:8A:D4:82:98:4A:5E
Certificate issuer: /CN=d5dcde2125f04058ad4f478e178884142cf2dad0
Certificate serial: 018FAFBF
Authority key identifier: D5:DC:DE:21:25:F0:40:58:AD:4F:47:8E:17:88:84:14:2C:F2:DA:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/WD8HO2GEtSkFA0H8F5iK1IKYSl4.roa
Signing time: Wed 16 Feb 2022 15:09:50 +0000
ROA not before: Wed 16 Feb 2022 15:09:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31543
IP address blocks: 176.121.56.0/22 maxlen: 24
176.104.224.0/20 maxlen: 24
2a00:15c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26193855 (0x18fafbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5dcde2125f04058ad4f478e178884142cf2dad0
Validity
Not Before: Feb 16 15:09:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=583f073b6184b529050341fc17988ad482984a5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:5b:07:cf:31:82:5d:bb:8f:e3:65:1f:ac:7b:
78:d6:f0:82:5b:e5:eb:3f:d1:1d:3f:68:dc:da:09:
6b:b8:c8:00:47:3f:fe:84:39:b3:c8:8e:74:21:69:
5b:c8:b0:03:f9:de:83:2f:30:75:e3:41:d1:ef:79:
75:a6:68:b8:fa:f3:f8:ca:90:b4:ef:9f:0d:ed:85:
00:bf:78:2e:70:ff:03:f8:9d:1a:56:dc:ba:66:c1:
0b:90:0b:e7:0e:3d:1d:ea:3b:01:fb:01:83:2d:69:
eb:49:e4:f8:65:70:28:c4:c9:b6:7a:60:3f:8c:af:
0f:6b:e4:4e:b3:40:db:de:6f:36:06:e0:ae:15:d1:
24:0d:02:e0:52:ee:27:e8:a1:a5:a7:a2:fe:0d:9d:
bf:04:8b:84:7e:d7:a4:4c:54:aa:6d:2d:59:c8:19:
b6:15:00:95:fd:7f:52:85:cd:b7:09:e0:7c:00:c9:
6e:95:0f:17:7e:e9:94:17:80:a7:7b:4d:e5:2d:f7:
f3:64:ef:73:14:95:ae:c3:35:a9:fc:b7:c6:b8:85:
15:8c:67:d0:f7:c8:c5:ce:90:b9:90:2f:c0:7a:0e:
e4:b7:76:e4:25:02:0a:e2:39:8e:20:fe:be:1c:81:
3c:3b:7a:52:dc:71:6c:c5:de:50:e9:e1:e5:df:46:
27:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:3F:07:3B:61:84:B5:29:05:03:41:FC:17:98:8A:D4:82:98:4A:5E
X509v3 Authority Key Identifier:
keyid:D5:DC:DE:21:25:F0:40:58:AD:4F:47:8E:17:88:84:14:2C:F2:DA:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/WD8HO2GEtSkFA0H8F5iK1IKYSl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.104.224.0/20
176.121.56.0/22
IPv6:
2a00:15c0::/29
Signature Algorithm: sha256WithRSAEncryption
7c:55:f6:79:59:24:87:26:df:b1:1a:8b:0f:56:e7:e5:d5:a1:
06:86:bd:9c:40:94:8e:ae:f9:d7:1a:1a:a5:e1:77:de:4d:a6:
9f:43:f2:d1:08:20:60:8e:28:99:3f:32:9f:68:c6:55:4b:24:
2c:00:f1:1b:04:c6:ba:93:6b:d0:38:74:72:50:8f:33:2a:e6:
69:df:f3:81:74:a2:ef:83:da:d1:43:4a:ba:b8:d8:12:a3:3b:
1e:24:cf:da:27:75:a5:df:f8:21:c0:ac:cf:96:e3:04:3a:df:
4f:c8:af:17:f7:4e:03:63:67:16:00:8e:d1:7a:3d:49:bd:26:
ab:6d:68:9a:37:b1:2c:01:a5:57:17:9c:27:ea:a1:de:9a:90:
b2:80:fc:dc:e9:3f:28:66:00:a0:ad:18:6a:02:fc:f0:78:a3:
5b:65:ff:08:88:b3:b2:8f:7f:78:4c:73:b5:0c:c7:df:c2:cc:
54:e5:44:39:d1:ac:e1:67:20:bb:db:98:89:be:e1:da:06:e8:
f8:99:52:2c:95:12:f5:4b:a5:46:2a:90:c7:dd:32:d2:64:3b:
43:a2:80:8f:ea:5b:18:0e:1b:a5:51:54:5e:aa:48:e7:ae:60:
e1:48:b3:83:c9:c6:53:b4:f1:53:74:44:ed:ca:c2:8b:ae:f4:
86:58:e4:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:10 2024 by rpki-client on console-ams.rpki-client.org