Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/WKKYkLDZ-cEfrQkNuQg-hvWYdX4.roa
File: WKKYkLDZ-cEfrQkNuQg-hvWYdX4.roa (raw, json)
Hash identifier: 8DPxa/IfrMXDPaxHDLrP0hvBk0hXy1T1Kx2qO+1R+MY=
Subject key identifier: 58:A2:98:90:B0:D9:F9:C1:1F:AD:09:0D:B9:08:3E:86:F5:98:75:7E
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 0BE2EAEB
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/WKKYkLDZ-cEfrQkNuQg-hvWYdX4.roa
Signing time: Mon 09 May 2022 22:51:16 +0000
ROA not before: Mon 09 May 2022 22:51:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 185.148.241.0/24 maxlen: 24
185.148.243.0/24 maxlen: 24
45.133.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199420651 (0xbe2eaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: May 9 22:51:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58a29890b0d9f9c11fad090db9083e86f598757e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2a:82:15:c2:fa:06:77:a1:37:35:04:38:a9:
10:a6:86:32:5d:e3:04:6c:b9:79:1e:91:2a:58:0e:
74:ca:d6:0c:ca:f5:6f:c0:fa:f8:74:b8:5d:13:5b:
cf:8c:0e:47:f0:f5:a9:1e:f3:5d:a2:87:13:0f:f8:
b2:61:c0:df:01:6c:cd:42:48:e2:2d:6e:06:51:32:
31:78:a7:bf:24:c3:03:e8:58:75:9f:1b:99:20:d7:
16:18:f7:96:03:f6:fb:20:fe:e1:6a:14:ef:1b:f8:
e0:6c:92:9c:39:e4:b3:b7:2b:76:d1:a8:48:88:53:
94:ae:ff:cc:ef:2d:25:52:bb:8b:db:f2:f1:67:9f:
7e:f5:98:2e:1c:48:f7:cb:c3:4c:8e:c5:7e:fc:d7:
e4:92:92:6b:85:b7:97:f7:d2:30:d7:58:9b:08:40:
c2:a3:03:88:ed:b4:56:f7:be:01:1f:36:a1:05:1f:
08:04:68:c8:06:32:3e:dc:0d:12:15:d8:71:73:fe:
56:49:4b:11:9d:ef:07:e4:8f:d3:94:f5:69:3d:8b:
66:79:c0:7d:8e:98:cc:0f:a2:f1:3b:d8:c2:64:f1:
22:f7:54:75:d9:8e:8d:fb:c9:6e:2a:eb:99:b3:e0:
3b:c2:f0:ec:a7:00:ae:98:a7:6f:eb:96:bf:e7:d1:
d5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A2:98:90:B0:D9:F9:C1:1F:AD:09:0D:B9:08:3E:86:F5:98:75:7E
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/WKKYkLDZ-cEfrQkNuQg-hvWYdX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.39.0/24
185.148.241.0/24
185.148.243.0/24
Signature Algorithm: sha256WithRSAEncryption
be:81:a6:98:4f:bc:e5:38:80:bb:3e:d5:65:8e:92:e6:ab:53:
c0:64:ef:14:0d:5f:fd:1c:fa:88:b4:b5:75:a5:57:ab:4d:f9:
51:73:5d:ae:b5:d6:7a:70:14:4f:8f:4a:db:17:fc:ac:79:4b:
1b:f8:d5:73:34:55:e2:07:c8:cf:83:af:a4:a3:f7:53:aa:fe:
8a:c3:e3:cc:be:eb:6c:fa:9d:e5:25:e5:3e:44:c9:b0:d2:38:
c2:2e:ff:e8:bd:05:9d:11:84:4b:e1:0b:10:26:56:38:07:cb:
15:e2:25:20:04:f4:9e:65:9e:52:15:71:0d:45:af:e5:61:bb:
35:9f:7a:94:93:b5:3e:59:e1:6a:fa:9a:ce:fd:32:99:5e:ac:
10:c8:2d:2e:57:16:e6:43:5e:2c:4f:22:a0:25:ff:c5:af:7a:
8b:72:ab:13:88:03:65:22:be:24:de:42:67:18:83:af:6a:48:
15:c8:b4:35:14:a9:4f:d2:4d:08:41:ad:fc:3a:92:82:5f:20:
45:aa:8b:08:9c:cb:dd:e7:0b:0f:bb:92:53:7b:ff:06:c2:c2:
c1:e8:e0:ca:9b:3d:b1:42:8d:d8:ae:dc:65:b0:44:5a:48:bb:
e7:ab:25:56:ca:08:17:1a:a1:75:bb:d7:c2:49:e0:c1:87:05:
3e:ca:6a:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:45 2024 by rpki-client on console-ams.rpki-client.org