Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/W4cNvd6ga4esNCOE8pzrPxm3uoc.roa
File: W4cNvd6ga4esNCOE8pzrPxm3uoc.roa (raw, json)
Hash identifier: eCidSW1aVrvQGXkPAjGVe3njLtiGelCCe5CGNxlb2aM=
Subject key identifier: 5B:87:0D:BD:DE:A0:6B:87:AC:34:23:84:F2:9C:EB:3F:19:B7:BA:87
Certificate issuer: /CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Certificate serial: 0182D03A9242B77646C8C62D265646A2DC80
Authority key identifier: EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/W4cNvd6ga4esNCOE8pzrPxm3uoc.roa
Signing time: Wed 24 Aug 2022 14:21:15 +0000
ROA not before: Wed 24 Aug 2022 14:21:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62068
IP address blocks: 91.230.49.0/24 maxlen: 24
5.182.208.0/22 maxlen: 24
185.244.36.0/22 maxlen: 24
45.87.40.0/22 maxlen: 24
185.224.128.0/22 maxlen: 24
45.14.224.0/22 maxlen: 24
2a0d:2780::/29 maxlen: 32
2a0e:16c0::/29 maxlen: 29
2a0e:1740::/29 maxlen: 29
2a12:a8c0::/30 maxlen: 30
2a0d:2400::/29 maxlen: 39
2a0e:2000::/29 maxlen: 29
2a12:a8c4::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d0:3a:92:42:b7:76:46:c8:c6:2d:26:56:46:a2:dc:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Validity
Not Before: Aug 24 14:21:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b870dbddea06b87ac342384f29ceb3f19b7ba87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:01:34:9d:6f:02:6d:aa:f2:c8:96:04:d9:e1:
87:8e:ed:6b:e7:45:8a:9a:78:6f:4d:6e:c6:20:a9:
b2:e2:30:40:d8:c2:03:6e:7b:7e:1f:31:2c:13:f9:
da:98:c3:6e:c2:a2:a0:a8:1e:93:a9:7e:b0:28:a2:
26:f1:88:53:0a:85:67:fa:fd:d5:99:14:c9:68:60:
43:c1:89:ee:34:0f:4b:cf:84:67:51:e0:d7:79:3d:
f8:04:56:56:da:11:d7:d7:6c:08:4d:a5:d7:b7:61:
c4:67:2b:a9:b3:40:53:41:42:a8:a9:21:a7:0c:e2:
8a:33:2c:2f:55:54:c7:de:c0:8f:c9:34:7b:34:5e:
f4:6f:87:a9:a9:6e:3d:77:49:12:94:12:00:d9:15:
72:ed:13:6f:3d:8f:a0:e2:60:57:20:82:1d:af:f2:
d1:86:02:77:00:20:d0:c6:ff:3b:52:e8:0f:a3:dc:
18:95:87:31:79:bf:66:2d:98:36:92:2a:db:de:13:
4a:b8:8f:51:be:4a:ae:a5:a2:54:b0:29:eb:15:20:
0f:c6:a3:25:e3:1a:00:6b:46:1a:3b:27:ec:e0:c0:
0c:fd:be:62:40:c5:eb:f9:a6:42:92:76:72:9c:df:
22:07:4a:c7:f9:f0:58:61:25:ec:f5:56:ae:7d:b9:
75:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:87:0D:BD:DE:A0:6B:87:AC:34:23:84:F2:9C:EB:3F:19:B7:BA:87
X509v3 Authority Key Identifier:
keyid:EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/W4cNvd6ga4esNCOE8pzrPxm3uoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/7E-wYalCbk-yiF2CKGdXKhtYpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.208.0/22
45.14.224.0/22
45.87.40.0/22
91.230.49.0/24
185.224.128.0/22
185.244.36.0/22
IPv6:
2a0d:2400::/29
2a0d:2780::/29
2a0e:16c0::/29
2a0e:1740::/29
2a0e:2000::/29
2a12:a8c0::/29
Signature Algorithm: sha256WithRSAEncryption
51:e7:db:b1:95:61:76:d5:76:b5:0a:22:bd:00:87:2d:fb:46:
ed:5a:ea:1d:b5:bd:91:6b:94:1d:97:b1:40:34:70:4e:9b:6c:
d7:f0:a0:48:2a:1c:fd:c7:7e:77:95:18:7d:3f:8c:bb:3c:25:
d9:e4:49:d6:c5:a8:57:0f:73:26:5f:f9:38:ec:9d:07:6b:7f:
f6:61:23:b2:79:a1:fd:cb:95:a4:03:a1:a1:b4:a3:ed:fe:82:
10:91:26:3c:78:a7:f6:1b:a1:cb:f7:2b:e3:7d:bf:7c:88:31:
19:7e:d0:cb:e9:61:1f:63:25:db:2b:38:12:50:26:cb:b4:b6:
f6:93:c0:59:8e:b0:2d:07:47:66:6b:3a:73:eb:6f:da:f0:7b:
54:3a:e4:e4:06:68:a9:d4:c9:6a:5b:c3:49:33:99:ea:83:08:
2f:2f:75:b6:d5:b0:1b:89:a8:1e:f1:77:54:90:08:c0:14:68:
fa:5f:b7:de:ea:af:28:19:26:a6:28:fa:40:05:97:13:0f:75:
c7:db:3f:e6:35:bb:ff:cf:0f:3c:8e:54:88:4f:92:b8:18:24:
a8:1e:b2:31:19:b0:fe:37:f5:ce:b2:eb:db:b8:fc:b0:2d:1a:
09:38:0e:ad:4d:ab:b7:33:d6:32:c3:63:82:53:c4:2d:44:80:
07:a3:96:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:00 2024 by rpki-client on console-ams.rpki-client.org