Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/626fa6-6eca-476e-a5af-afe63376c88f/1/WISEDcEHfBm-m_R2MLq_w8d2ask.roa
File: WISEDcEHfBm-m_R2MLq_w8d2ask.roa (raw, json)
Hash identifier: SfjcC2VAXdR0rW2iG1gHjwnNcWma08FhypAXD2noRTg=
Subject key identifier: 58:84:84:0D:C1:07:7C:19:BE:9B:F4:76:30:BA:BF:C3:C7:76:6A:C9
Certificate issuer: /CN=eedde41f362e98ae37d1efc7caf3e7d3c1653ee2
Certificate serial: 01843C76CEC4DEA045ED7F01EF2E2C8F5F49
Authority key identifier: EE:DD:E4:1F:36:2E:98:AE:37:D1:EF:C7:CA:F3:E7:D3:C1:65:3E:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7t3kHzYumK430e_HyvPn08FlPuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/626fa6-6eca-476e-a5af-afe63376c88f/1/WISEDcEHfBm-m_R2MLq_w8d2ask.roa
Signing time: Thu 03 Nov 2022 07:48:49 +0000
ROA not before: Thu 03 Nov 2022 07:48:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31103
IP address blocks: 84.19.160.0/19 maxlen: 24
217.114.208.0/20 maxlen: 24
84.19.167.0/24 maxlen: 24
95.169.161.0/24 maxlen: 24
84.19.188.0/24 maxlen: 24
87.118.67.0/24 maxlen: 24
87.118.64.0/18 maxlen: 24
95.169.160.0/24 maxlen: 24
95.169.169.0/24 maxlen: 24
87.118.83.0/24 maxlen: 24
95.169.176.0/21 maxlen: 24
95.169.184.0/22 maxlen: 24
87.118.86.0/24 maxlen: 24
95.169.186.0/24 maxlen: 24
95.169.190.0/23 maxlen: 24
95.169.189.0/24 maxlen: 24
95.169.188.0/24 maxlen: 24
95.169.187.0/24 maxlen: 24
87.118.92.0/24 maxlen: 24
62.141.48.0/20 maxlen: 24
87.118.120.0/24 maxlen: 24
2001:1b60::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3c:76:ce:c4:de:a0:45:ed:7f:01:ef:2e:2c:8f:5f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eedde41f362e98ae37d1efc7caf3e7d3c1653ee2
Validity
Not Before: Nov 3 07:48:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5884840dc1077c19be9bf47630babfc3c7766ac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:66:fd:67:4d:92:b0:46:6d:30:0c:87:86:be:
f3:77:17:17:e3:71:8c:9a:e1:f6:87:85:0b:ef:1f:
cb:47:18:c1:23:32:d6:3c:01:7a:3a:d0:e0:a9:9e:
5e:50:07:91:3b:16:d0:4b:96:e9:3f:0b:eb:06:9c:
ee:d5:13:9e:39:e3:aa:fa:54:a9:3e:30:11:e4:79:
23:91:6b:14:f7:b3:e6:ae:ff:70:09:e6:95:01:1c:
0d:93:ef:16:3d:27:d6:7b:0a:14:dc:d2:28:9d:c3:
64:13:19:01:df:b6:20:6f:55:f0:49:60:4c:1f:71:
3f:7a:6f:77:13:6c:7d:74:40:96:29:69:de:7a:2b:
bf:41:e5:c5:06:b7:50:5c:c3:75:6f:4d:ca:3f:17:
89:d6:9a:3c:9f:ee:2a:74:fb:ac:96:5e:0f:04:c0:
7c:13:1b:76:fd:f4:1d:c8:e4:8d:56:42:e6:c2:1e:
0b:5a:25:6a:69:e6:ec:d4:0a:11:1f:b9:a0:f3:ff:
d8:ef:e4:15:20:08:58:cd:10:ca:59:8b:df:0a:c5:
83:1a:88:24:43:9c:85:a5:52:b0:e7:d6:ce:58:22:
f2:b4:c8:e2:c9:a1:d8:e3:85:26:54:e9:11:8d:65:
33:b3:3d:92:6e:99:9d:fd:1c:f4:4e:9a:28:01:44:
68:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:84:84:0D:C1:07:7C:19:BE:9B:F4:76:30:BA:BF:C3:C7:76:6A:C9
X509v3 Authority Key Identifier:
keyid:EE:DD:E4:1F:36:2E:98:AE:37:D1:EF:C7:CA:F3:E7:D3:C1:65:3E:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7t3kHzYumK430e_HyvPn08FlPuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/626fa6-6eca-476e-a5af-afe63376c88f/1/WISEDcEHfBm-m_R2MLq_w8d2ask.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/626fa6-6eca-476e-a5af-afe63376c88f/1/7t3kHzYumK430e_HyvPn08FlPuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.141.48.0/20
84.19.160.0/19
87.118.64.0/18
95.169.160.0/23
95.169.169.0/24
95.169.176.0/20
217.114.208.0/20
IPv6:
2001:1b60::/29
Signature Algorithm: sha256WithRSAEncryption
c7:20:00:60:85:e3:20:8b:f2:ec:a5:63:09:27:e5:7e:db:e5:
5f:74:5b:24:0d:ab:e0:ca:1b:55:b5:fe:39:05:5c:32:c0:87:
42:04:4f:2a:ac:31:a9:5c:4b:8c:6b:68:69:38:4d:b3:51:04:
27:f2:9f:bf:e6:37:0b:2e:95:92:e5:7b:32:c8:bb:c0:1d:b2:
7e:4e:47:0e:ee:90:68:f5:b7:8a:11:2f:95:f3:41:e9:cd:04:
e3:60:ad:17:0e:de:be:17:7b:63:0f:97:b1:9f:6f:28:08:d9:
8c:d7:2b:47:7c:58:da:b3:1c:ed:2f:33:90:a7:2a:16:fb:fc:
76:a8:f1:94:35:e8:be:9e:9a:e1:0c:70:5b:b3:0b:c1:23:bc:
a9:b9:4f:99:33:5e:44:23:37:6a:28:e1:72:e7:1f:65:a7:85:
45:67:a6:c2:84:50:e3:5f:c8:5f:97:a6:b0:8e:93:2f:92:8f:
fe:97:91:5e:96:92:d0:54:12:17:93:d3:05:af:4d:ed:eb:6d:
e1:a9:9b:0c:80:fb:73:b5:79:a8:6d:01:b0:8f:d2:bd:52:96:
27:82:c0:d4:78:2d:ef:fa:e3:1e:7e:2a:51:a7:14:f4:79:e3:
b0:f0:2b:cf:6d:c5:9b:f6:b8:79:31:44:8d:e5:c7:12:ec:fe:
9c:eb:85:b1
-----BEGIN CERTIFICATE-----
MIIFMDCCBBigAwIBAgISAYQ8ds7E3qBF7X8B7y4sj19JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlZGRlNDFmMzYyZTk4YWUzN2QxZWZjN2NhZjNlN2QzYzE2
NTNlZTIwHhcNMjIxMTAzMDc0ODQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ODg0ODQwZGMxMDc3YzE5YmU5YmY0NzYzMGJhYmZjM2M3NzY2YWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomb9Z02SsEZtMAyHhr7zdxcX43GM
muH2h4UL7x/LRxjBIzLWPAF6OtDgqZ5eUAeROxbQS5bpPwvrBpzu1ROeOeOq+lSp
PjAR5HkjkWsU97Pmrv9wCeaVARwNk+8WPSfWewoU3NIoncNkExkB37Ygb1XwSWBM
H3E/em93E2x9dECWKWneeiu/QeXFBrdQXMN1b03KPxeJ1po8n+4qdPusll4PBMB8
Ext2/fQdyOSNVkLmwh4LWiVqaebs1AoRH7mg8//Y7+QVIAhYzRDKWYvfCsWDGogk
Q5yFpVKw59bOWCLytMjiyaHY44UmVOkRjWUzsz2Sbpmd/Rz0TpooAURoZwIDAQAB
o4ICPDCCAjgwHQYDVR0OBBYEFFiEhA3BB3wZvpv0djC6v8PHdmrJMB8GA1UdIwQY
MBaAFO7d5B82LpiuN9Hvx8rz59PBZT7iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3Qza0h6WXVtSzQzMGVfSHl2UG4wOEZsUHVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My82MjZmYTYtNmVjYS00NzZlLWE1YWYt
YWZlNjMzNzZjODhmLzEvV0lTRURjRUhmQm0tbV9SMk1McV93OGQyYXNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My82MjZmYTYtNmVjYS00NzZlLWE1YWYtYWZlNjMzNzZjODhm
LzEvN3Qza0h6WXVtSzQzMGVfSHl2UG4wOEZsUHVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQEPo0wAwQF
VBOgAwQGV3ZAAwQBX6mgAwQAX6mpAwQEX6mwAwQE2XLQMA0EAgACMAcDBQMgARtg
MA0GCSqGSIb3DQEBCwUAA4IBAQDHIABgheMgi/LspWMJJ+V+2+VfdFskDavgyhtV
tf45BVwywIdCBE8qrDGpXEuMa2hpOE2zUQQn8p+/5jcLLpWS5XsyyLvAHbJ+TkcO
7pBo9beKES+V80HpzQTjYK0XDt6+F3tjD5exn28oCNmM1ytHfFjasxztLzOQpyoW
+/x2qPGUNei+nprhDHBbswvBI7ypuU+ZM15EIzdqKOFy5x9lp4VFZ6bChFDjX8hf
l6awjpMvko/+l5FelpLQVBIXk9MFr03t623hqZsMgPtztXmobQGwj9K9UpYngsDU
eC3v+uMefipRpxT0eeOw8CvPbcWb9rh5MUSN5ccS7P6c64Wx
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:54 2023 by rpki-client on console-ams.rpki-client.org