Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/wgx5_llX0mH20ewFV9gyynyi4eE.roa
File: wgx5_llX0mH20ewFV9gyynyi4eE.roa (raw, json)
Hash identifier: 7zB08v7MHtMBGSDmftDc4ZxESl6iBeCON8i2+4h+unY=
Subject key identifier: C2:0C:79:FE:59:57:D2:61:F6:D1:EC:05:57:D8:32:CA:7C:A2:E1:E1
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018519D054D4BF0ED5F024E160861E63B69A
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/wgx5_llX0mH20ewFV9gyynyi4eE.roa
Signing time: Fri 16 Dec 2022 07:22:41 +0000
ROA not before: Fri 16 Dec 2022 07:22:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 194.87.200.0/24 maxlen: 24
194.87.205.0/24 maxlen: 24
195.133.76.0/24 maxlen: 24
62.76.226.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.233.0/24 maxlen: 24
194.87.252.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
212.192.5.0/24 maxlen: 24
212.192.9.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
192.124.180.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
194.87.125.0/24 maxlen: 24
194.87.122.0/24 maxlen: 24
193.124.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:19:d0:54:d4:bf:0e:d5:f0:24:e1:60:86:1e:63:b6:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 16 07:22:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c20c79fe5957d261f6d1ec0557d832ca7ca2e1e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:cf:a5:9e:66:b3:68:38:36:e8:1e:25:8f:3e:
b7:2a:e7:e9:8a:ba:bd:80:49:46:e7:e0:24:ed:3f:
bb:56:06:06:be:79:d0:49:2b:c0:f3:09:5d:75:37:
b7:0c:72:e6:d9:7d:f2:d7:2e:ea:95:ea:fe:2a:7f:
df:41:42:62:eb:d5:21:71:0e:38:45:fa:7c:95:72:
1b:62:49:85:0f:dc:83:5a:dd:92:b7:83:3c:c4:6f:
43:f1:f5:dd:74:f0:1c:f9:38:23:df:8a:c6:5b:ab:
c8:34:b8:3f:35:33:0c:40:32:71:96:75:f9:be:18:
50:e2:2c:9c:26:b3:4a:46:95:1d:c2:1c:b8:a1:81:
ff:aa:af:89:51:8a:ba:46:b2:00:dc:8d:b2:51:80:
1f:92:d2:e2:e5:00:9b:67:ea:f1:aa:e1:4f:63:e7:
10:73:95:c9:63:de:9e:bc:0e:93:47:91:1b:64:9a:
02:4b:45:db:eb:da:00:1b:67:65:c1:52:23:c8:c5:
af:21:8d:e2:91:58:c5:d9:20:04:97:2b:87:6f:7c:
60:da:25:2e:a5:a4:a0:7c:c7:7a:22:bf:24:49:e6:
7c:51:49:d8:b0:94:ff:41:49:bf:41:3f:a5:fa:22:
fc:9f:1a:9f:2f:35:6e:41:4f:98:a7:96:ad:f1:49:
c6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:0C:79:FE:59:57:D2:61:F6:D1:EC:05:57:D8:32:CA:7C:A2:E1:E1
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/wgx5_llX0mH20ewFV9gyynyi4eE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0-62.76.226.255
192.124.180.0/24
192.124.183.0/24
193.124.18.0/24
193.124.45.0/24
193.124.90.0/24
193.124.133.0/24
193.124.200.0/24
194.58.40.0/24
194.58.46.0/24
194.87.122.0/24
194.87.124.0/23
194.87.170.0/24
194.87.200.0/24
194.87.205.0/24
194.87.233.0/24
194.87.252.0/24
195.133.76.0/24
195.133.193.0/24
212.192.5.0/24
212.192.9.0/24
Signature Algorithm: sha256WithRSAEncryption
71:a8:b3:32:c6:ee:6a:79:c3:91:19:65:cd:5e:97:10:f1:2e:
d3:71:f1:94:28:0b:f0:35:f3:38:1b:85:88:fe:03:cb:3d:ed:
2a:7f:3f:f0:c9:d3:6c:72:d8:9e:04:f1:55:09:37:ce:10:38:
d7:31:ae:e6:3a:45:a8:ca:71:c1:fa:44:67:63:6c:7c:1e:65:
38:b3:14:34:d1:8c:23:9e:97:e1:c1:08:ec:63:42:57:d8:3d:
d8:7e:3d:60:67:1b:43:01:a4:09:44:ee:46:4d:13:d7:4c:7c:
51:51:b6:e0:32:12:78:bb:62:ed:ce:12:c6:5d:c4:1e:80:2c:
eb:cd:f9:09:e4:53:9e:06:ab:72:f2:fd:b7:24:57:3d:dc:6d:
15:66:e4:3e:01:c6:d9:e6:17:69:dd:b7:63:3a:12:90:51:08:
89:3d:7d:8b:21:01:41:07:a4:05:89:89:58:aa:52:6a:69:5b:
87:a7:d0:c8:45:9b:73:6e:1f:fa:cc:a2:05:06:1d:31:55:80:
f7:de:cc:77:76:0c:c2:12:b8:eb:15:12:43:1a:dd:b2:c3:82:
cf:56:b5:74:1b:c0:93:14:63:14:45:40:30:65:71:e1:ed:9c:
94:d1:b6:3d:a8:2b:3a:e6:3d:d2:4d:db:e9:95:da:a4:20:c3:
88:e1:a9:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:50 2024 by rpki-client on console-ams.rpki-client.org