Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/WHMRqM2f8OdhbADIgoiCnshXoIM.roa
File: WHMRqM2f8OdhbADIgoiCnshXoIM.roa (raw, json)
Hash identifier: 3p4JF/+D0tlkZVCNnp71DpfjqCAjq9bBwS54bY9I/Vg=
Subject key identifier: 58:73:11:A8:CD:9F:F0:E7:61:6C:00:C8:82:88:82:9E:C8:57:A0:83
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0D40B2C0
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/WHMRqM2f8OdhbADIgoiCnshXoIM.roa
Signing time: Tue 28 Jun 2022 17:19:58 +0000
ROA not before: Tue 28 Jun 2022 17:19:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.43.0/24 maxlen: 24
89.43.44.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
89.43.41.0/24 maxlen: 24
89.43.45.0/24 maxlen: 24
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
93.113.202.0/24 maxlen: 24
89.44.209.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.45.34.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
93.114.187.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
86.106.97.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
93.114.171.0/24 maxlen: 24
85.204.125.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
85.204.78.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222343872 (0xd40b2c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jun 28 17:19:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=587311a8cd9ff0e7616c00c88288829ec857a083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0f:e6:86:51:f6:df:b4:e7:61:fc:01:e2:3c:
34:70:87:b4:65:bf:19:ee:b6:b4:59:9d:1e:9a:fa:
2e:ca:83:fc:83:38:6f:6c:b1:97:de:cf:71:4f:b9:
cb:8c:39:cc:e3:ab:2f:76:f5:8a:47:bd:15:9a:84:
d4:80:38:bd:17:01:dd:63:68:d5:32:b8:82:f3:c2:
3d:b1:c8:5e:1b:bf:eb:09:b5:be:97:36:d5:4e:48:
27:a9:90:62:65:8e:d4:10:23:e5:43:3a:dd:5d:89:
35:cc:b0:08:d0:31:3b:0a:79:16:35:39:e9:21:1e:
eb:76:54:f5:05:82:42:19:7a:23:11:68:0d:f7:de:
13:52:21:e1:09:8e:0c:3b:3d:54:58:7a:61:c3:6a:
41:45:15:fa:5d:94:72:03:b7:e0:96:a3:0c:e2:5e:
6f:bb:62:43:58:1d:57:c6:81:db:eb:37:61:2a:11:
44:a6:3d:05:fb:10:6b:e6:a4:10:48:53:be:d7:a4:
7f:eb:00:25:74:0f:fe:fe:65:08:9f:41:c0:98:9d:
53:41:f4:5f:aa:64:d8:22:41:16:c1:ae:c7:e7:17:
bb:ee:5b:88:7b:42:e1:08:77:dd:7e:15:89:ac:48:
42:d0:e3:9e:23:4c:b6:08:d3:42:d7:41:92:66:f1:
50:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:73:11:A8:CD:9F:F0:E7:61:6C:00:C8:82:88:82:9E:C8:57:A0:83
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/WHMRqM2f8OdhbADIgoiCnshXoIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.78.0/24
85.204.125.0/24
85.204.127.0/24
86.106.80.0/24
86.106.97.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0-89.43.45.255
89.43.73.0/24
89.44.209.0/24
89.45.34.0/24
93.113.158.0/24
93.113.202.0/24
93.114.55.0/24
93.114.99.0/24
93.114.171.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
22:8e:c0:e1:5e:be:16:80:55:ff:2a:12:27:8b:de:bb:d9:b6:
2f:b6:9e:15:97:06:67:64:45:48:cc:88:40:23:94:89:15:de:
28:2e:02:25:0d:e5:7d:e3:2f:6e:59:63:98:88:7a:a6:a4:25:
3a:c1:e1:37:74:ed:56:09:63:2b:a8:41:38:cc:f4:6c:1c:d4:
c6:87:c6:90:1c:29:8d:01:94:6f:81:ae:ab:07:34:69:53:f9:
41:40:7b:5b:f0:ed:22:59:14:be:ed:e8:08:72:19:92:7b:61:
da:22:d0:7f:68:71:0b:eb:f5:6f:2f:f3:df:57:be:54:a2:05:
c6:54:de:25:6e:17:1d:15:dc:f0:e7:21:20:c3:a3:8f:c9:87:
05:37:f7:6e:b9:fb:f5:7b:e4:55:0d:4b:2f:f7:0f:d6:10:91:
80:4d:ad:f8:de:b9:f7:06:1f:a6:b5:02:8b:86:4b:f1:29:a3:
9e:08:e5:92:f8:a0:67:c8:98:eb:58:89:68:99:57:4d:1b:36:
dd:f7:c6:48:4e:8b:5c:25:f7:a6:9c:b6:8e:f2:0f:dc:1f:bc:
a5:c1:f2:5b:c4:98:80:4d:3c:75:f3:65:e9:ba:9c:a5:84:b2:
e2:25:df:00:38:a2:c5:2f:f3:44:5b:56:e5:ee:0e:c2:55:a1:
5c:4f:55:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:54 2023 by rpki-client on console-ams.rpki-client.org