Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/WlEMojowum-NnxrRpXRH_EbcvrI.roa
File: WlEMojowum-NnxrRpXRH_EbcvrI.roa (raw, json)
Hash identifier: ZsA+6v3Rhwkg7cTgeLUZ/GRPSfnDmcUb9Oa1inaq6LQ=
Subject key identifier: 5A:51:0C:A2:3A:30:BA:6F:8D:9F:1A:D1:A5:74:47:FC:46:DC:BE:B2
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 205F018D
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/WlEMojowum-NnxrRpXRH_EbcvrI.roa
Signing time: Tue 22 Mar 2022 19:52:42 +0000
ROA not before: Tue 22 Mar 2022 19:52:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60461
IP address blocks: 94.154.50.0/24 maxlen: 24
43.251.160.0/24 maxlen: 24
176.100.37.0/24 maxlen: 24
176.100.36.0/24 maxlen: 24
176.100.39.0/24 maxlen: 24
37.114.44.0/24 maxlen: 24
37.114.39.0/24 maxlen: 24
37.114.51.0/24 maxlen: 24
37.114.50.0/24 maxlen: 24
37.114.48.0/24 maxlen: 24
37.114.45.0/24 maxlen: 24
37.114.58.0/24 maxlen: 24
37.114.54.0/24 maxlen: 24
37.114.52.0/24 maxlen: 24
2a00:ccc3::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 543097229 (0x205f018d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Mar 22 19:52:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a510ca23a30ba6f8d9f1ad1a57447fc46dcbeb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e1:6f:46:32:99:ae:e1:fd:fb:1a:63:60:75:
70:23:98:5a:b3:4c:80:c8:c9:99:c0:51:28:be:c3:
be:2d:b2:9e:4d:28:c9:f6:d8:1a:a8:d7:3a:e5:f3:
58:ff:dc:14:f5:24:3a:df:a4:98:21:6b:18:23:58:
98:af:cf:f6:80:18:f4:9e:03:60:63:62:37:38:e4:
55:99:98:d7:8e:d1:e3:17:5b:fe:4f:51:ee:56:e8:
f0:f9:a7:32:a9:8c:f7:6d:f9:20:95:02:b6:aa:4b:
99:29:b9:ba:14:42:f4:da:30:9f:20:c6:ab:fd:38:
e8:8b:cf:4c:72:af:04:4d:cb:c8:06:05:7e:76:6f:
88:96:61:e7:1d:d4:15:b1:35:c2:fe:c8:fa:9b:66:
14:b7:c8:24:24:90:81:72:96:c9:4c:3a:28:ae:26:
a2:b4:f5:3d:27:ba:ad:66:7c:82:b3:60:de:b5:91:
3f:0c:81:26:c2:66:d0:83:78:00:64:29:46:4d:0d:
2a:fa:e1:f4:29:a8:44:6f:cd:7a:86:c5:6f:47:04:
9e:07:e4:28:50:21:d1:75:fb:5f:b9:36:d1:0c:32:
66:2b:43:3d:5f:27:2c:a8:e9:43:a5:57:93:ab:40:
c0:e5:ab:02:46:71:3e:99:eb:da:06:30:54:f5:9d:
26:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:51:0C:A2:3A:30:BA:6F:8D:9F:1A:D1:A5:74:47:FC:46:DC:BE:B2
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/WlEMojowum-NnxrRpXRH_EbcvrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.39.0/24
37.114.44.0/23
37.114.48.0/24
37.114.50.0-37.114.52.255
37.114.54.0/24
37.114.58.0/24
43.251.160.0/24
94.154.50.0/24
176.100.36.0/23
176.100.39.0/24
IPv6:
2a00:ccc3::/32
Signature Algorithm: sha256WithRSAEncryption
52:eb:5d:69:81:8a:13:6e:c7:e4:be:da:12:26:08:5c:fc:08:
16:f1:78:76:ae:d7:92:81:7b:b5:eb:80:46:6c:0c:b7:12:27:
14:8d:58:f0:e8:1e:22:ce:03:53:2e:71:bc:0a:12:8b:63:02:
2c:1f:d6:d7:98:ff:34:ec:68:33:21:42:c8:d5:da:c7:12:5d:
95:9f:0f:d5:47:bc:65:8b:80:a3:42:6b:ce:b4:f1:bd:d7:e5:
21:98:62:02:ab:48:1d:ca:60:19:88:25:e0:cb:62:ed:be:59:
a6:dc:69:29:04:56:a8:fd:46:a9:aa:41:51:fe:82:0f:ee:4a:
9e:c7:46:63:2b:8f:a4:79:a3:5b:f4:dc:d8:39:fc:d3:2c:b7:
a2:64:d5:37:6e:67:cd:18:57:57:82:5b:dd:38:82:e4:9e:27:
f7:ca:55:95:6c:47:b0:7a:0f:1f:f2:cc:e6:ba:da:5b:e4:e4:
52:8c:fd:cf:5c:28:e2:ac:b6:39:26:29:45:be:12:76:5d:fd:
79:3b:75:b6:6a:16:ad:0d:65:a9:70:df:08:d1:3b:9d:a2:5f:
85:84:a5:84:c5:e5:45:b3:9a:b3:eb:fa:4c:8d:c5:92:1c:6f:
66:31:86:6a:8b:1f:be:5d:54:8e:a7:4a:87:27:3e:39:77:0e:
1a:85:d8:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:18 2024 by rpki-client on console-ams.rpki-client.org