Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/wAMEQAVDD_ftf2S24ba4kaTq3i8.roa
File: wAMEQAVDD_ftf2S24ba4kaTq3i8.roa (raw, json)
Hash identifier: K6/4CHAeW2liwrGfhZizgy++ddgbpS3lgJC2KHfeUyk=
Subject key identifier: C0:03:04:40:05:43:0F:F7:ED:7F:64:B6:E1:B6:B8:91:A4:EA:DE:2F
Certificate issuer: /CN=3950303615aca6e5f6f5b5691c7c2c8dca5f234d
Certificate serial: 093440EB
Authority key identifier: 39:50:30:36:15:AC:A6:E5:F6:F5:B5:69:1C:7C:2C:8D:CA:5F:23:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OVAwNhWspuX29bVpHHwsjcpfI00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/wAMEQAVDD_ftf2S24ba4kaTq3i8.roa
Signing time: Sat 01 Jan 2022 06:05:35 +0000
ROA not before: Sat 01 Jan 2022 06:05:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21100
IP address blocks: 185.14.28.0/22 maxlen: 22
217.12.218.0/24 maxlen: 24
217.12.200.0/23 maxlen: 23
5.34.180.0/23 maxlen: 23
217.12.208.0/23 maxlen: 23
2a02:27ab::/32 maxlen: 32
2a02:27a9::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154419435 (0x93440eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3950303615aca6e5f6f5b5691c7c2c8dca5f234d
Validity
Not Before: Jan 1 06:05:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c003044005430ff7ed7f64b6e1b6b891a4eade2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:7d:e0:92:5d:10:c2:45:6a:bd:8f:98:6a:f2:
3b:9c:c1:72:d7:04:15:9b:e1:be:52:a0:fb:8f:81:
78:c1:f6:a9:47:a2:ca:ec:a4:86:6c:d8:44:5e:b6:
5f:20:5c:57:15:b1:36:b2:d8:11:64:a9:4b:b2:0f:
42:dd:b1:a6:75:22:01:c4:44:14:aa:74:06:ec:9a:
e8:ce:22:df:48:9f:37:df:8e:59:95:ce:ff:ea:ad:
11:62:b3:de:58:27:01:d9:d1:a9:12:16:30:ef:d9:
66:c0:05:c3:ae:c7:94:19:8d:91:1c:27:b0:18:47:
45:66:1a:56:68:78:75:ff:46:a8:c2:75:89:21:f2:
26:15:39:cd:63:fc:01:09:b7:aa:0e:6d:43:75:4b:
c7:b4:7c:e5:9a:68:d7:12:fc:1e:48:31:70:5f:f6:
5a:6b:3e:80:18:b9:78:17:99:68:c1:ba:d7:f3:2e:
7c:a2:f5:df:84:0c:2f:b3:e6:23:ea:38:ff:83:71:
52:77:d3:9d:ea:ce:d0:7f:35:a5:24:0e:78:bd:72:
18:cf:bf:7a:16:f1:b6:f5:bd:a6:30:78:8c:66:35:
ee:f2:df:ad:6c:18:32:ca:9c:6b:ee:93:36:c6:c0:
fb:e1:3f:de:25:01:d4:42:ed:c9:43:c6:78:15:6d:
70:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:03:04:40:05:43:0F:F7:ED:7F:64:B6:E1:B6:B8:91:A4:EA:DE:2F
X509v3 Authority Key Identifier:
keyid:39:50:30:36:15:AC:A6:E5:F6:F5:B5:69:1C:7C:2C:8D:CA:5F:23:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OVAwNhWspuX29bVpHHwsjcpfI00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/wAMEQAVDD_ftf2S24ba4kaTq3i8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/OVAwNhWspuX29bVpHHwsjcpfI00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.180.0/23
185.14.28.0/22
217.12.200.0/23
217.12.208.0/23
217.12.218.0/24
IPv6:
2a02:27a9::/32
2a02:27ab::/32
Signature Algorithm: sha256WithRSAEncryption
7c:31:87:88:89:be:4b:bd:d0:f8:a2:c7:1d:bf:12:d6:01:94:
66:5a:da:d7:51:84:ae:66:b5:b6:f7:d8:a7:d7:b7:1b:61:25:
38:eb:ff:1c:45:61:fc:19:71:31:85:7b:c2:c1:29:18:fc:10:
cf:32:ae:c9:62:23:7e:8b:50:b4:09:66:95:09:df:1e:a1:55:
56:1d:59:1c:59:a3:48:dd:61:d6:a7:21:09:06:63:90:a8:6b:
99:8b:11:df:5a:70:82:8d:96:d9:c9:2e:d9:18:10:3f:45:15:
79:34:3f:41:04:9a:e5:8d:a2:57:d3:c0:e3:1c:d8:c8:2b:90:
dc:00:18:62:5d:14:41:c0:09:da:f7:bc:1c:71:7f:d7:5c:b3:
96:c0:89:08:b3:c7:f7:94:0c:8e:66:bf:63:02:b1:9f:85:bd:
9e:37:e4:1f:60:f2:92:a0:5e:d1:3b:d8:b5:10:7a:17:26:7f:
f2:60:e1:c8:8c:a8:8a:67:b5:01:7d:33:55:9f:34:d4:41:83:
fc:c5:de:9b:92:88:38:89:00:6b:a3:ee:eb:57:b1:4b:91:43:
20:69:d3:df:2f:c5:64:93:dd:8e:6c:e4:a8:21:16:46:42:52:
fa:16:75:9b:d4:5e:f3:50:07:bc:c5:2d:cb:de:fa:55:58:90:
d8:40:e4:fb
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgIECTRA6zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OTUwMzAzNjE1YWNhNmU1ZjZmNWI1NjkxYzdjMmM4ZGNhNWYyMzRkMB4XDTIyMDEw
MTA2MDUzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzAwMzA0NDAwNTQz
MGZmN2VkN2Y2NGI2ZTFiNmI4OTFhNGVhZGUyZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIp94JJdEMJFar2PmGryO5zBctcEFZvhvlKg+4+BeMH2qUei
yuykhmzYRF62XyBcVxWxNrLYEWSpS7IPQt2xpnUiAcREFKp0Buya6M4i30ifN9+O
WZXO/+qtEWKz3lgnAdnRqRIWMO/ZZsAFw67HlBmNkRwnsBhHRWYaVmh4df9GqMJ1
iSHyJhU5zWP8AQm3qg5tQ3VLx7R85Zpo1xL8HkgxcF/2Wms+gBi5eBeZaMG61/Mu
fKL134QML7PmI+o4/4NxUnfTnerO0H81pSQOeL1yGM+/ehbxtvW9pjB4jGY17vLf
rWwYMsqca+6TNsbA++E/3iUB1ELtyUPGeBVtcEMCAwEAAaOCAjcwggIzMB0GA1Ud
DgQWBBTAAwRABUMP9+1/ZLbhtriRpOreLzAfBgNVHSMEGDAWgBQ5UDA2Faym5fb1
tWkcfCyNyl8jTTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09WQXdOaFdzcHVYMjliVnBISHdzamNwZkkwMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWIvMzhjNjk0LTIzYTctNDhiMi1hYWVjLTZjOGZkMGJjNWIwMC8x
L3dBTUVRQVZERF9mdGYyUzI0YmE0a2FUcTNpOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWIv
MzhjNjk0LTIzYTctNDhiMi1hYWVjLTZjOGZkMGJjNWIwMC8xL09WQXdOaFdzcHVY
MjliVnBISHdzamNwZkkwMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBN
BggrBgEFBQcBBwEB/wQ+MDwwJAQCAAEwHgMEAQUitAMEArkOHAMEAdkMyAMEAdkM
0AMEANkM2jAUBAIAAjAOAwUAKgInqQMFACoCJ6swDQYJKoZIhvcNAQELBQADggEB
AHwxh4iJvku90Piixx2/EtYBlGZa2tdRhK5mtbb32KfXtxthJTjr/xxFYfwZcTGF
e8LBKRj8EM8yrsliI36LULQJZpUJ3x6hVVYdWRxZo0jdYdanIQkGY5Coa5mLEd9a
cIKNltnJLtkYED9FFXk0P0EEmuWNolfTwOMc2MgrkNwAGGJdFEHACdr3vBxxf9dc
s5bAiQizx/eUDI5mv2MCsZ+FvZ435B9g8pKgXtE72LUQehcmf/Jg4ciMqIpntQF9
M1WfNNRBg/zF3puSiDiJAGuj7utXsUuRQyBp098vxWST3Y5s5KghFkZCUvoWdZvU
XvNQB7zFLcve+lVYkNhA5Ps=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:22 2024 by rpki-client on console-fra.rpki-client.org