Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/4eaca0-8db9-4d0a-ba22-8a9935da0588/1/watpCpRvh83YwL5YTZguF4gUhl4.roa
File: watpCpRvh83YwL5YTZguF4gUhl4.roa (raw, json)
Hash identifier: FimJ0QQhlcp8IKJJ7VmKU/9pit2Te5XlgFX5PZ50Sh0=
Subject key identifier: C1:AB:69:0A:94:6F:87:CD:D8:C0:BE:58:4D:98:2E:17:88:14:86:5E
Certificate issuer: /CN=f1aaa16ddd8d8a12dfd0e53211703ad952e3b214
Certificate serial: D0BB
Authority key identifier: F1:AA:A1:6D:DD:8D:8A:12:DF:D0:E5:32:11:70:3A:D9:52:E3:B2:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8aqhbd2NihLf0OUyEXA62VLjshQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/4eaca0-8db9-4d0a-ba22-8a9935da0588/1/watpCpRvh83YwL5YTZguF4gUhl4.roa
Signing time: Fri 17 Jun 2022 14:37:44 +0000
ROA not before: Fri 17 Jun 2022 14:37:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 185.201.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53435 (0xd0bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1aaa16ddd8d8a12dfd0e53211703ad952e3b214
Validity
Not Before: Jun 17 14:37:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1ab690a946f87cdd8c0be584d982e178814865e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:51:09:7b:92:f1:09:bd:62:88:5b:83:57:06:
89:63:b6:a3:e9:b9:70:b2:ba:4e:41:84:36:b7:43:
52:85:d4:bd:04:fd:75:63:02:9a:02:3d:e0:10:cc:
cb:66:ea:1c:54:6a:12:fc:b8:8a:b1:15:7b:0c:06:
6f:c2:dc:e6:9d:48:59:88:a3:8d:57:15:70:1c:17:
b2:60:87:45:9f:85:d0:cc:88:a3:19:c1:f3:9c:2d:
0f:8e:40:32:70:bd:b0:8d:8c:77:af:c2:f6:3b:59:
1a:c0:58:f4:47:6f:5d:44:b2:77:89:b9:a5:a0:fa:
0e:71:48:33:64:24:0d:cf:da:2a:d0:99:81:4b:96:
b7:91:c4:e3:8c:d7:d1:1c:d6:25:b9:45:c7:d3:28:
31:1b:ef:53:1c:8d:1b:8f:8f:c9:9d:33:af:2f:b1:
8f:5a:88:be:70:a1:ac:19:38:a0:6b:b5:38:3a:18:
c0:06:3e:30:d8:3e:9e:4c:11:0f:4a:a9:c1:1f:d1:
1d:fa:66:c3:81:78:55:8e:e1:34:ad:8a:a6:ff:26:
53:9d:39:85:85:9d:fa:66:43:19:08:96:cb:32:c6:
7d:5a:0e:4b:6f:b4:4a:ea:8c:60:89:62:d3:6c:57:
a4:6d:09:c9:dd:1f:77:db:47:b2:1d:d2:d7:df:04:
da:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:AB:69:0A:94:6F:87:CD:D8:C0:BE:58:4D:98:2E:17:88:14:86:5E
X509v3 Authority Key Identifier:
keyid:F1:AA:A1:6D:DD:8D:8A:12:DF:D0:E5:32:11:70:3A:D9:52:E3:B2:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8aqhbd2NihLf0OUyEXA62VLjshQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4eaca0-8db9-4d0a-ba22-8a9935da0588/1/watpCpRvh83YwL5YTZguF4gUhl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4eaca0-8db9-4d0a-ba22-8a9935da0588/1/8aqhbd2NihLf0OUyEXA62VLjshQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.220.0/24
Signature Algorithm: sha256WithRSAEncryption
37:85:49:69:87:b0:ae:fd:1f:53:7b:04:a8:89:81:32:7f:66:
d2:0b:4e:22:4f:0f:c6:2b:56:46:9e:c6:59:9d:67:77:74:c3:
6e:c1:6d:86:6a:f4:f5:db:86:fd:d2:9d:df:dc:6a:50:5f:6d:
1e:fb:86:9c:33:a5:15:32:dc:37:26:19:1d:d0:fb:5a:d0:5f:
80:08:25:fb:aa:9f:45:ee:20:fc:6c:69:47:9c:82:d2:61:56:
1d:7f:50:8f:4e:80:3c:14:d8:39:6c:5c:45:91:b5:fa:c8:c1:
d8:0f:ff:de:11:df:33:b6:fa:ea:3f:2a:a6:42:49:05:17:ba:
e2:ee:e7:28:33:8e:e6:4d:f7:59:82:c6:09:1e:48:88:2c:68:
9d:41:6d:9c:1b:ef:fe:e8:1f:0b:d5:e9:e8:94:16:2a:6a:c6:
c4:69:35:3a:70:7a:6e:8e:0f:a2:7c:ad:3b:76:bf:fb:ac:04:
27:bd:48:34:78:11:3b:c3:fc:82:bd:48:c9:db:75:0e:2e:22:
9e:6f:ee:01:5f:20:58:01:92:5b:90:09:80:b3:13:1c:9d:f4:
d7:09:3c:47:7c:16:a7:26:d9:99:1e:48:46:51:02:3b:28:fc:
f1:2b:f1:28:2a:72:86:39:3d:ec:1e:3b:e0:9b:b9:2b:99:cc:
4b:aa:39:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:40 2025 by rpki-client