Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/wZBhZDK3q4WPqmbW5j9aqskVJF0.roa
File: wZBhZDK3q4WPqmbW5j9aqskVJF0.roa (raw, json)
Hash identifier: iSaDNu/eojdsTuYdOxuKq5WUwLC3GAEf5uneHmrPU6c=
Subject key identifier: C1:90:61:64:32:B7:AB:85:8F:AA:66:D6:E6:3F:5A:AA:C9:15:24:5D
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 1480E4AB
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/wZBhZDK3q4WPqmbW5j9aqskVJF0.roa
Signing time: Mon 28 Mar 2022 15:26:18 +0000
ROA not before: Mon 28 Mar 2022 15:26:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204868
IP address blocks: 5.253.228.0/22 maxlen: 22
185.145.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343991467 (0x1480e4ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Mar 28 15:26:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c190616432b7ab858faa66d6e63f5aaac915245d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:dc:35:a0:f4:e4:47:d1:54:9d:66:ea:75:d5:
d0:9b:04:14:81:bf:2b:87:2b:41:94:c2:f7:07:66:
9f:95:34:12:b2:39:cb:68:80:37:16:a0:55:a6:f8:
5c:ca:95:d4:b6:c1:a7:22:4a:2b:a8:21:fd:1a:68:
61:ce:4d:b9:1a:eb:f5:d6:fe:e5:dd:8b:e4:c9:29:
64:9b:8a:88:e2:00:7e:13:78:bf:ee:f3:28:07:fb:
60:8a:ae:70:fb:39:d6:74:5e:40:a8:5e:d2:10:ec:
5b:ac:ae:8a:55:d1:06:6b:fd:a3:fb:5e:03:13:0c:
a2:8f:d8:ac:68:09:49:e0:fc:0e:1e:3f:bc:4a:13:
93:b2:af:66:e8:ae:5b:2a:a2:f9:73:b2:80:ca:cd:
08:94:86:2a:0c:19:a8:17:8d:e2:de:fd:52:52:38:
11:8d:f0:fb:49:a7:b8:5b:1c:7e:df:87:a4:f9:5d:
b0:56:39:8c:af:de:bb:d9:2a:f9:6a:95:8a:df:b2:
33:8b:98:9f:5e:ad:e1:26:1f:b5:e3:34:c5:18:43:
03:62:6f:bd:ea:c1:11:27:66:b6:84:50:70:db:b5:
33:c0:b4:cd:67:d9:d3:5a:8d:3d:0d:c4:cc:c3:e1:
a8:7a:2b:0e:ed:21:b0:3d:5b:12:96:ff:82:2c:e3:
20:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:90:61:64:32:B7:AB:85:8F:AA:66:D6:E6:3F:5A:AA:C9:15:24:5D
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/wZBhZDK3q4WPqmbW5j9aqskVJF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.228.0/22
185.145.80.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:d5:ff:42:ed:d9:dd:49:e5:de:81:5e:72:99:c7:01:ff:88:
93:67:94:f6:0e:56:ec:e6:26:2b:58:07:f8:38:d7:86:5e:e1:
72:9d:26:2a:bf:49:48:3d:dd:2a:78:7f:8f:21:a8:cb:e9:e7:
93:6c:5f:7a:87:bd:1b:4a:20:bf:98:47:55:4c:a1:55:05:0e:
79:43:2b:1b:76:b3:99:26:df:9e:92:40:01:cd:8a:b6:b7:3c:
ae:31:f1:16:33:69:18:c4:69:b5:48:3c:ee:69:13:cd:85:e1:
40:00:fb:0a:06:19:4f:c3:71:23:c2:05:78:17:96:37:b8:f1:
60:43:c2:9d:68:d2:fd:02:bf:d4:4a:ca:e5:42:91:85:6b:01:
13:f9:24:2c:da:0f:32:4a:8a:7e:fc:48:99:b2:1d:4d:5d:3d:
16:9e:c1:94:15:fd:19:c3:fe:6d:aa:a7:0e:56:d7:b1:2b:20:
a6:b4:94:46:75:19:d9:8f:ff:59:2c:af:01:27:84:29:7d:db:
25:57:82:ff:5b:b3:68:d6:d6:09:16:5c:59:91:01:1c:6d:31:
b2:a0:6d:49:4d:28:db:b9:08:8b:ac:6f:63:a5:46:ec:e3:f2:
b3:ae:a2:62:2e:f6:f3:d5:0c:2c:0f:a8:3e:af:ab:e7:e9:d1:
de:2f:b4:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org