Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/6fae02-0c37-4f05-81ba-1b46d2eb5412/1/WlAKmkytjWZIkfJDh8xhEyE7Hk8.roa
File: WlAKmkytjWZIkfJDh8xhEyE7Hk8.roa (raw, json)
Hash identifier: XfKkmyoTXyqvRbTH4rrJgqBdM8R+WbvxBwTpOimQuPM=
Subject key identifier: 5A:50:0A:9A:4C:AD:8D:66:48:91:F2:43:87:CC:61:13:21:3B:1E:4F
Certificate issuer: /CN=30aee11b2943572d11becc425c684b48bbb2cbd4
Certificate serial: 0E0546E3
Authority key identifier: 30:AE:E1:1B:29:43:57:2D:11:BE:CC:42:5C:68:4B:48:BB:B2:CB:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MK7hGylDVy0RvsxCXGhLSLuyy9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/6fae02-0c37-4f05-81ba-1b46d2eb5412/1/WlAKmkytjWZIkfJDh8xhEyE7Hk8.roa
Signing time: Sat 01 Jan 2022 09:57:40 +0000
ROA not before: Sat 01 Jan 2022 09:57:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41000
IP address blocks: 185.219.236.0/22 maxlen: 22
2a0b:eb40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 235226851 (0xe0546e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30aee11b2943572d11becc425c684b48bbb2cbd4
Validity
Not Before: Jan 1 09:57:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a500a9a4cad8d664891f24387cc6113213b1e4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1c:4e:6c:4d:ea:a6:b8:a6:36:42:4e:7c:11:
58:5e:38:c6:94:b4:8e:82:e3:d2:2e:15:52:50:08:
80:14:31:9a:60:60:eb:48:bd:5c:73:02:5f:32:ca:
77:99:72:a0:ca:68:10:f7:48:44:71:b4:9f:09:41:
ba:fd:4e:ca:40:60:95:ff:ff:a1:d3:29:c4:6a:8e:
dc:43:8e:92:ac:be:cf:da:c1:50:2c:55:cf:d1:9a:
9e:dd:a3:1a:76:e3:c0:4f:85:c4:b0:71:85:97:62:
ea:fe:df:0a:73:cb:6c:ae:3e:03:ec:d2:80:d1:e1:
57:c6:66:ad:78:f4:14:7b:7b:2c:3e:03:bf:57:65:
be:09:3e:84:51:70:c7:59:6e:67:e0:34:61:c0:08:
8f:87:19:99:db:8c:78:87:86:59:9d:c3:de:ab:cd:
a5:ef:6e:fc:e2:4d:af:d4:4d:78:4c:78:94:26:b0:
19:65:21:8d:c5:0c:e9:18:a4:23:b5:bd:23:5b:be:
8c:92:90:6a:90:d4:d8:81:f9:13:85:81:2e:7f:4a:
1f:b8:fc:3f:c2:61:7a:3e:3e:70:be:0d:42:db:3f:
83:92:af:b4:d7:41:7d:fc:ae:50:04:3b:cd:31:bc:
fd:d4:f5:27:e4:45:23:9f:4f:dc:79:ac:b0:92:8d:
0d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:50:0A:9A:4C:AD:8D:66:48:91:F2:43:87:CC:61:13:21:3B:1E:4F
X509v3 Authority Key Identifier:
keyid:30:AE:E1:1B:29:43:57:2D:11:BE:CC:42:5C:68:4B:48:BB:B2:CB:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MK7hGylDVy0RvsxCXGhLSLuyy9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6fae02-0c37-4f05-81ba-1b46d2eb5412/1/WlAKmkytjWZIkfJDh8xhEyE7Hk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6fae02-0c37-4f05-81ba-1b46d2eb5412/1/MK7hGylDVy0RvsxCXGhLSLuyy9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.236.0/22
IPv6:
2a0b:eb40::/29
Signature Algorithm: sha256WithRSAEncryption
17:62:7c:8c:a3:a5:dc:b7:fa:6d:d2:38:15:4d:92:3b:f4:9a:
f4:53:0a:52:51:89:2c:2e:04:a2:85:cb:f3:da:fa:de:19:39:
c8:34:0c:59:24:a0:1f:13:80:a9:6a:44:c5:66:06:f7:77:c4:
cb:dd:f1:14:ef:64:bc:89:f7:7b:4f:4e:a7:d5:99:83:21:70:
db:26:4d:3f:ed:e8:c6:60:9b:d6:0d:08:eb:85:bc:d1:eb:cc:
3c:9a:8d:dc:5c:05:ae:c1:c2:ed:18:c2:a1:d0:96:41:3e:93:
5f:0f:6e:df:49:2b:fb:aa:3e:b3:cd:5c:34:12:09:33:56:a2:
12:53:ad:cf:cd:69:35:b1:cd:28:f2:a0:c7:c5:c4:09:0a:19:
47:67:e0:72:89:36:6c:e4:c3:44:88:b5:62:4c:ae:9a:b1:e3:
12:9d:c1:dd:8a:11:31:c3:f9:40:8f:20:5f:45:08:42:67:e2:
1d:aa:20:78:4d:34:b7:94:e5:5b:85:59:71:8d:66:aa:ec:de:
5c:82:af:7f:60:21:4c:fe:1b:ca:cb:44:5f:ab:43:a6:0b:67:
6a:3a:78:a3:2e:f8:b6:a0:96:72:6d:b9:06:96:03:8b:f5:2d:
96:6a:c6:19:d6:47:cc:5a:87:3f:3a:59:31:cd:cd:3e:05:6c:
77:85:57:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:17 2025 by rpki-client