Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WpihybF5tns2pOpQba1v2S8hyzI.roa
File: WpihybF5tns2pOpQba1v2S8hyzI.roa (raw, json)
Hash identifier: JDIivS4j04xsmthnUFMmBcX9pcs3SVJjrDMSSdywJ3I=
Subject key identifier: 5A:98:A1:C9:B1:79:B6:7B:36:A4:EA:50:6D:AD:6F:D9:2F:21:CB:32
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27E3DD63
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WpihybF5tns2pOpQba1v2S8hyzI.roa
Signing time: Sat 01 Jan 2022 16:09:04 +0000
ROA not before: Sat 01 Jan 2022 16:09:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59734
IP address blocks: 95.47.240.0/23 maxlen: 23
92.38.86.0/23 maxlen: 23
93.171.12.0/24 maxlen: 24
95.46.120.0/23 maxlen: 23
93.171.32.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 669244771 (0x27e3dd63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a98a1c9b179b67b36a4ea506dad6fd92f21cb32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5a:43:5e:16:69:62:d3:2d:b4:1c:8f:5f:5f:
01:2c:3e:3f:ca:d4:2a:ce:31:41:97:3c:5d:c3:11:
e6:f4:3a:1a:04:e7:cf:9b:7a:ee:81:f2:58:a1:70:
86:e5:26:a8:0c:cb:c2:a7:48:88:05:c8:f3:9c:db:
3e:3e:7d:53:e3:3d:79:63:b3:7d:1b:ce:82:8a:a9:
b7:7a:0c:ff:c5:ac:23:88:f4:bc:b9:17:c5:c7:8d:
e9:f2:53:13:af:3a:44:02:e9:2d:84:41:30:cf:f8:
70:d8:c8:26:35:81:2d:89:56:77:d0:a5:8c:2f:c7:
fd:b4:86:8c:28:67:b4:79:68:06:b8:ef:dc:db:54:
8a:99:0b:fa:fb:35:35:96:a0:cb:85:9b:a0:07:4e:
fe:2c:4a:57:32:7c:99:cb:5c:55:38:96:d8:3b:25:
d0:43:da:c3:31:39:b0:06:a0:d4:15:fc:46:b2:b8:
e2:ae:91:25:07:4b:58:57:fe:62:a5:f1:5f:33:2f:
dc:01:dc:85:bf:49:ef:82:fa:c4:54:d6:ca:ce:42:
0c:0a:eb:0f:f7:aa:c4:44:bd:64:ce:4b:27:c1:a7:
1a:e6:85:86:88:2f:68:60:a5:24:a3:c6:e9:95:e1:
5f:e4:42:e8:2a:e1:86:83:5e:c7:bf:4e:73:3c:13:
23:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:98:A1:C9:B1:79:B6:7B:36:A4:EA:50:6D:AD:6F:D9:2F:21:CB:32
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WpihybF5tns2pOpQba1v2S8hyzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.86.0/23
93.171.12.0/24
93.171.32.0/23
95.46.120.0/23
95.47.240.0/23
Signature Algorithm: sha256WithRSAEncryption
35:cc:69:af:43:d0:c9:8e:77:24:f4:c6:56:f0:2e:4a:02:09:
c3:01:8b:18:62:39:85:50:d9:ef:4b:69:35:09:3c:22:8d:9b:
ae:cd:2d:e7:32:94:5b:69:da:96:bf:a9:58:e3:99:92:2c:ed:
c0:3a:2c:68:81:7d:d6:41:a2:6a:77:27:c7:fd:dc:f2:88:9d:
47:f6:44:99:47:e8:dc:ea:c0:35:d3:92:be:1d:88:68:f4:2a:
4f:1a:c7:68:18:e7:79:09:a8:c3:9a:fe:23:ea:38:f1:de:3a:
a2:4f:91:bf:d5:12:95:91:80:57:03:d9:d2:a7:43:18:de:12:
2b:b2:65:a5:54:52:52:a9:ea:f4:bb:a1:6f:49:eb:77:89:25:
ff:07:99:db:57:59:5d:5f:07:7b:7e:93:64:11:cc:7d:6a:ce:
5f:90:b0:3d:a3:b3:a0:d8:04:fb:8a:de:3b:8a:64:46:00:bc:
ff:33:33:46:e9:cd:d1:fc:cb:01:ae:f3:f0:fe:29:d6:a4:6f:
d4:70:8a:13:49:ac:10:e2:e0:3e:bc:8d:fb:79:51:2b:20:b8:
ad:39:b6:39:e7:bf:75:ce:70:b0:a2:23:0e:a9:72:59:a5:d5:
14:8e:cf:d6:2d:f5:05:fe:e3:f0:c2:77:24:a8:76:45:dc:35:
f7:c8:4e:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:36:41 2025 by rpki-client