Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/WSS3IoxVAQ7IL7pT1hyHvMNqxF8.roa
File: WSS3IoxVAQ7IL7pT1hyHvMNqxF8.roa (raw, json)
Hash identifier: OpAd4uhqJNHCB22SjtVmimMVGB78uhHrl0nvNlCn6u8=
Subject key identifier: 59:24:B7:22:8C:55:01:0E:C8:2F:BA:53:D6:1C:87:BC:C3:6A:C4:5F
Certificate issuer: /CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Certificate serial: 157C5935
Authority key identifier: 80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/WSS3IoxVAQ7IL7pT1hyHvMNqxF8.roa
Signing time: Sat 01 Jan 2022 14:03:43 +0000
ROA not before: Sat 01 Jan 2022 14:03:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206146
IP address blocks: 107.150.64.0/24 maxlen: 24
107.150.71.0/24 maxlen: 24
107.150.65.0/24 maxlen: 24
107.150.67.0/24 maxlen: 24
107.150.70.0/24 maxlen: 24
104.160.17.0/24 maxlen: 24
104.160.16.0/24 maxlen: 24
104.160.19.0/24 maxlen: 24
104.160.18.0/24 maxlen: 24
23.92.115.0/24 maxlen: 24
192.40.94.0/24 maxlen: 24
162.212.170.0/24 maxlen: 24
162.212.172.0/24 maxlen: 24
162.212.168.0/24 maxlen: 24
107.150.89.0/24 maxlen: 24
162.212.171.0/24 maxlen: 24
162.212.169.0/24 maxlen: 24
162.212.174.0/24 maxlen: 24
107.150.93.0/24 maxlen: 24
162.212.173.0/24 maxlen: 24
162.212.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360470837 (0x157c5935)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f376df5f9ef487c82b31a875c6a496d79ca0d7
Validity
Not Before: Jan 1 14:03:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5924b7228c55010ec82fba53d61c87bcc36ac45f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ee:22:3a:b2:64:6b:0d:23:ef:99:dd:a2:e3:
d4:93:d9:bb:39:3e:ef:21:80:bc:04:81:f5:98:d7:
2b:92:78:d2:51:66:6a:05:f2:16:29:78:e3:95:b3:
9e:6b:3c:9e:ac:ec:07:bb:45:f7:ec:bc:d4:be:00:
5c:ae:95:d3:22:37:5a:fe:c6:60:ff:c9:02:d9:da:
a7:87:79:ed:03:ea:6c:41:c5:df:60:26:1e:7d:5e:
01:ff:7b:7d:f3:d8:b9:c1:29:e1:45:b6:d0:90:0f:
62:e9:c7:73:fa:06:3b:73:b0:b1:79:25:ba:f4:6e:
8e:d6:82:b0:81:5b:2f:b8:23:01:e5:3c:07:14:24:
6a:c4:7f:e9:ce:76:73:d8:29:29:21:95:e1:2d:cc:
0a:72:17:36:d7:df:8f:e4:1b:f8:f1:9e:c8:ab:7c:
ed:e0:21:a7:31:0e:de:5c:a3:bc:7c:a4:b0:e9:57:
a0:b9:e9:3c:69:0c:7e:ca:5e:74:04:75:a5:1b:d3:
52:79:cb:84:53:18:b0:6b:3a:18:c8:52:1e:2c:d8:
d0:37:a1:7e:9e:2f:b8:ad:fd:ab:ea:a9:d6:c6:9b:
fe:fc:1c:ee:ec:03:42:15:0f:aa:ca:89:86:a3:27:
99:57:96:21:bb:a2:21:89:eb:7e:25:b2:b6:3e:f9:
6d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:24:B7:22:8C:55:01:0E:C8:2F:BA:53:D6:1C:87:BC:C3:6A:C4:5F
X509v3 Authority Key Identifier:
keyid:80:F3:76:DF:5F:9E:F4:87:C8:2B:31:A8:75:C6:A4:96:D7:9C:A0:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPN231-e9IfIKzGodcakltecoNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/WSS3IoxVAQ7IL7pT1hyHvMNqxF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/795ded-fcdf-47cf-af83-a4bc2816643a/1/gPN231-e9IfIKzGodcakltecoNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.92.115.0/24
104.160.16.0/22
107.150.64.0/23
107.150.67.0/24
107.150.70.0/23
107.150.89.0/24
107.150.93.0/24
162.212.168.0/21
192.40.94.0/24
Signature Algorithm: sha256WithRSAEncryption
31:ec:b4:6e:4d:b9:79:93:e2:6b:b2:87:de:b9:1f:65:f8:77:
09:22:35:83:2d:46:3e:86:d7:bd:de:9b:56:33:10:ca:b6:df:
ed:df:7f:6c:7c:aa:77:82:08:25:ac:2d:ac:af:49:88:88:1e:
bb:3c:86:d6:86:b3:97:cd:6b:32:c8:84:d2:a7:64:dd:a6:06:
a0:0d:1d:ce:be:63:48:f5:00:7a:ce:1c:f0:89:fa:a7:7b:a8:
42:27:3f:21:23:2d:50:b3:06:ff:a7:df:a1:cd:3d:9c:7b:1e:
3f:78:fa:77:f4:c7:ad:a9:e7:d5:34:ac:96:85:14:0a:63:9d:
54:3a:7a:2b:1d:a6:54:5b:3f:cc:08:14:e2:27:df:b5:4b:b9:
17:98:44:fe:be:3e:0f:74:82:1d:99:e3:1a:a9:27:bd:81:c7:
7b:df:a7:60:d5:74:6d:2a:c0:fa:7e:56:4d:a9:a3:51:cf:10:
04:a4:4d:b7:48:a2:a8:59:16:db:86:12:c8:0c:ec:ac:29:52:
a8:b3:1b:15:24:6b:bf:47:9a:cf:a2:2d:66:6b:f4:93:81:2f:
e1:c4:e5:86:1b:6d:30:70:ed:f0:53:fd:89:a4:fb:c7:cf:cf:
3b:07:dc:d9:48:a3:3a:6a:d2:f4:66:c7:e2:1a:0f:c5:f2:e2:
fe:5d:27:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:25 2023 by rpki-client on console-ams.rpki-client.org