Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/95fa61-17fb-4890-9598-1d3a1e9b7545/1/WzgHwApT8rcNgILDNXwuDkfdwGA.roa
File: WzgHwApT8rcNgILDNXwuDkfdwGA.roa (raw, json)
Hash identifier: f4QSe/9f6Ftp/LcuQ6O9bgCX6aH7dwSbIrk5zS7/XlY=
Subject key identifier: 5B:38:07:C0:0A:53:F2:B7:0D:80:82:C3:35:7C:2E:0E:47:DD:C0:60
Certificate issuer: /CN=2d2f9339fbb8cb33c522751c530f3a20a753547c
Certificate serial: 093DD3AD
Authority key identifier: 2D:2F:93:39:FB:B8:CB:33:C5:22:75:1C:53:0F:3A:20:A7:53:54:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LS-TOfu4yzPFInUcUw86IKdTVHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/95fa61-17fb-4890-9598-1d3a1e9b7545/1/WzgHwApT8rcNgILDNXwuDkfdwGA.roa
Signing time: Sat 01 Jan 2022 10:57:04 +0000
ROA not before: Sat 01 Jan 2022 10:57:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200449
IP address blocks: 185.104.208.0/22 maxlen: 32
2a06:3340::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155046829 (0x93dd3ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d2f9339fbb8cb33c522751c530f3a20a753547c
Validity
Not Before: Jan 1 10:57:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b3807c00a53f2b70d8082c3357c2e0e47ddc060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:17:66:ea:5f:ae:d6:6a:90:b2:f4:29:e9:0d:
8d:77:ba:2d:33:f3:74:a7:2f:15:d9:5d:4f:45:9b:
23:85:de:1c:c3:57:e2:a5:e4:a5:de:4f:c0:cb:39:
0f:6b:36:ab:c4:1c:65:83:8e:c4:25:31:77:7a:01:
b4:1e:c4:c7:c3:1c:04:b6:ad:b0:9c:93:d0:ba:ed:
89:a3:45:4c:19:bd:c7:86:da:de:33:90:4b:16:4e:
7a:f6:03:a7:e6:ff:9a:ba:d2:1a:45:5e:b4:ed:8b:
58:d6:04:a5:ad:8e:33:4f:51:f9:ec:0a:3d:8b:08:
64:33:c5:1f:01:41:d9:31:cc:04:3e:e2:e3:3c:55:
64:fa:3b:26:c0:cd:e1:f6:9f:c2:26:b6:39:6f:2b:
76:f0:3c:f6:db:3c:b8:bc:ce:c8:54:95:10:56:ea:
9e:32:61:6d:ee:eb:8b:78:cd:5d:92:67:5b:de:5d:
45:77:7d:c8:bb:c1:6d:59:ce:3f:4d:71:09:90:77:
83:d6:d7:50:c3:03:ce:7e:08:e8:b2:8e:71:cf:ae:
35:c0:da:b9:72:44:2e:17:6f:2a:bd:97:8d:b7:c3:
1a:1f:bb:67:e6:de:92:85:51:8f:5f:88:70:dc:28:
e8:7b:66:a3:cd:b7:1d:64:1c:66:da:2c:26:22:d6:
bc:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:38:07:C0:0A:53:F2:B7:0D:80:82:C3:35:7C:2E:0E:47:DD:C0:60
X509v3 Authority Key Identifier:
keyid:2D:2F:93:39:FB:B8:CB:33:C5:22:75:1C:53:0F:3A:20:A7:53:54:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LS-TOfu4yzPFInUcUw86IKdTVHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/95fa61-17fb-4890-9598-1d3a1e9b7545/1/WzgHwApT8rcNgILDNXwuDkfdwGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/95fa61-17fb-4890-9598-1d3a1e9b7545/1/LS-TOfu4yzPFInUcUw86IKdTVHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.208.0/22
IPv6:
2a06:3340::/29
Signature Algorithm: sha256WithRSAEncryption
74:02:0b:29:68:e3:2e:e3:27:a5:ca:93:94:6f:c9:29:ac:7f:
3f:52:42:ce:c2:55:81:94:da:b3:c4:1d:b9:83:1d:44:3a:53:
d8:62:4d:6c:58:98:2d:68:28:c3:50:c7:75:e8:5a:95:af:3a:
c9:d2:b4:bd:05:4f:52:49:9f:df:b8:0d:51:4a:a0:33:61:09:
3e:6e:f2:8f:38:b7:4a:04:65:0d:80:a5:19:4a:32:52:6e:e4:
2b:8a:8e:06:61:10:3f:68:f4:45:d7:62:e1:b8:ff:e6:ba:86:
95:b8:0b:a6:3b:6c:6a:6e:b9:9d:ea:d2:b9:ed:21:06:e0:5d:
48:5a:cb:47:5d:c5:4e:cc:72:ef:dd:b3:57:bf:00:6a:e6:7a:
e3:6d:30:52:eb:f3:49:4b:96:67:33:73:75:c7:9f:55:6f:27:
4e:6d:d8:da:47:32:16:ef:82:4f:81:a5:10:c2:9b:0e:2f:42:
5a:99:32:c3:33:38:e1:51:e9:dd:f2:57:e1:af:13:b5:4c:5b:
64:79:3e:46:99:30:5d:d3:9c:4b:62:60:bd:98:f7:f3:34:0b:
4e:58:0e:17:fe:42:cf:1f:ae:b4:12:6c:d6:cc:80:74:83:b1:
f2:e8:55:5e:d1:24:ce:67:ec:12:a2:b0:94:d2:54:12:e6:af:
8e:9d:7a:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:03 2024 by rpki-client on console-fra.rpki-client.org