Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/wOT_kSBhTediMp1j9lQ4rtx-6vo.roa
File: wOT_kSBhTediMp1j9lQ4rtx-6vo.roa (raw, json)
Hash identifier: CZAXge+X4WsFVDu/qD2pLBDCKGfh40+36dKZn0puXLA=
Subject key identifier: C0:E4:FF:91:20:61:4D:E7:62:32:9D:63:F6:54:38:AE:DC:7E:EA:FA
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0BBCBD8D
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/wOT_kSBhTediMp1j9lQ4rtx-6vo.roa
Signing time: Wed 02 Feb 2022 08:08:29 +0000
ROA not before: Wed 02 Feb 2022 08:08:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.43.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
89.43.41.0/24 maxlen: 24
89.43.45.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
93.113.202.0/24 maxlen: 24
93.113.203.0/24 maxlen: 24
89.44.209.0/24 maxlen: 24
188.215.95.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.45.34.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
86.106.80.0/24 maxlen: 24
93.114.187.0/24 maxlen: 24
86.106.97.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
85.204.127.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196918669 (0xbbcbd8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Feb 2 08:08:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0e4ff9120614de762329d63f65438aedc7eeafa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a0:76:03:27:d8:fc:f7:3f:9a:78:85:4f:49:
75:82:00:e6:34:83:81:3e:d2:88:a1:a6:fe:e5:7d:
34:a1:f3:0a:0d:bd:65:87:9b:75:a2:7d:ef:88:7f:
fa:8a:52:72:9e:da:57:40:09:08:a9:90:95:71:58:
d1:ba:92:8b:a6:5d:ea:6b:c7:22:15:0e:43:12:38:
07:a1:48:73:55:2c:b6:f6:0f:1f:8a:ae:38:69:f8:
a1:65:19:de:3d:44:73:e5:b6:09:d4:2a:cc:7a:f0:
50:d9:50:e9:bc:65:fa:5f:cb:10:3b:62:c8:37:e0:
1e:5a:9f:1e:3d:48:63:9b:f5:c4:f0:b8:69:2c:60:
aa:9d:26:be:b0:d0:3e:cb:bb:cd:3e:f7:e2:f0:5e:
fb:f3:a8:80:4e:e0:90:91:fc:b7:24:46:df:0e:8c:
71:c3:d8:f2:c6:5b:27:54:71:69:3d:fb:9c:c3:ba:
5c:60:3e:fc:20:45:4e:9f:56:9b:42:61:41:3a:0c:
1e:08:f7:46:06:88:9a:48:ec:61:82:8a:57:e3:91:
6e:65:ca:99:cd:ca:22:04:8a:93:25:34:da:2b:a2:
54:06:a0:bb:4a:b5:f3:6e:65:4d:d9:d9:91:e1:4e:
73:b3:5d:24:7f:1a:03:d3:15:f0:3a:7a:47:7d:44:
54:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E4:FF:91:20:61:4D:E7:62:32:9D:63:F6:54:38:AE:DC:7E:EA:FA
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/wOT_kSBhTediMp1j9lQ4rtx-6vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.127.0/24
86.106.80.0/24
86.106.97.0/24
86.106.104.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0/22
89.43.45.0-89.43.46.255
89.43.73.0/24
89.44.209.0/24
89.45.34.0/24
93.113.158.0/24
93.113.202.0/23
93.114.55.0/24
93.114.99.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.215.95.0/24
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
4c:29:5d:fe:21:2b:73:89:d5:46:29:7b:40:a3:a3:47:70:50:
3b:d4:7b:6f:25:4e:8d:d6:2a:b3:2a:d8:48:8e:18:e3:47:62:
b0:82:a0:f7:c9:a7:bf:f0:dd:90:9f:37:44:7e:9b:dd:f1:e7:
34:82:d3:09:56:e4:5e:93:fe:fa:cb:25:d6:e2:8a:ab:d8:5b:
a6:37:05:ce:93:6a:32:7c:3a:e6:19:40:7a:b6:9d:2f:65:c8:
c6:1e:7a:a5:3d:1c:bf:d9:2f:db:f1:aa:41:41:8d:f7:42:e2:
61:d6:a3:e6:a8:1f:82:4c:45:05:9e:b4:0b:bd:41:24:00:6e:
61:9c:2d:18:db:a7:8f:8e:fa:8e:7b:6f:db:84:ac:d2:2a:89:
22:34:b8:57:d0:b9:ed:63:2f:26:08:3f:8c:4b:6c:73:65:e8:
ee:ac:15:80:a2:e8:0e:0f:7a:88:b6:df:73:00:12:fd:c1:ca:
26:ff:1c:2b:9a:61:82:14:5e:97:3a:2e:6b:42:f8:f4:8f:f5:
bd:cd:e4:eb:d4:af:be:f5:28:78:26:85:29:ed:5f:34:e9:1e:
1c:2e:44:5c:b9:3d:5e:fe:31:5c:f9:fe:21:24:3d:ad:d9:e0:
92:1a:32:be:fe:95:61:56:c1:cd:75:0a:69:14:32:d9:3e:d6:
81:fa:ca:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:08 2023 by rpki-client on console-fra.rpki-client.org