Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/wgDKzggurKlDWNOBa62t5stgn9k.roa
File: wgDKzggurKlDWNOBa62t5stgn9k.roa (raw, json)
Hash identifier: eOl+h5/NASQ7mLPq7T135rfUhx9t8awjpUqvTPjdA4I=
Subject key identifier: C2:00:CA:CE:08:2E:AC:A9:43:58:D3:81:6B:AD:AD:E6:CB:60:9F:D9
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 055A8D4F
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/wgDKzggurKlDWNOBa62t5stgn9k.roa
Signing time: Wed 01 Jun 2022 11:53:20 +0000
ROA not before: Wed 01 Jun 2022 11:53:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202766
IP address blocks: 94.198.47.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
185.229.212.0/22 maxlen: 22
185.229.213.0/24 maxlen: 24
185.229.212.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.114.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.120.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89820495 (0x55a8d4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jun 1 11:53:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c200cace082eaca94358d3816badade6cb609fd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:62:30:eb:4c:b8:c8:75:73:9d:a3:a0:fe:0f:
73:78:0b:a7:64:e3:7f:e2:22:a4:67:35:e0:29:62:
fd:d5:6b:e2:cd:13:e9:09:db:1f:ba:f7:26:bc:86:
a6:88:f5:53:64:90:59:7a:9d:1f:3f:53:02:fc:c4:
a2:39:10:84:22:12:37:77:47:c8:d8:63:9a:fa:d1:
25:11:8d:80:05:85:f0:35:46:30:25:56:96:85:87:
3a:ba:9c:98:be:d2:a3:a0:3b:f3:1d:fb:83:17:6b:
cd:27:01:c2:88:74:f1:81:c7:cd:9c:ab:46:8f:4c:
bc:9d:95:de:7a:0a:03:4f:eb:b4:47:cd:b7:6d:ec:
6f:57:49:99:3c:27:dc:9a:84:86:18:bb:15:cb:6d:
f4:c1:9a:74:15:75:37:e3:72:6c:0a:34:ed:6d:38:
2a:87:8f:89:5f:f9:76:2f:b6:96:d2:6a:2a:17:45:
bc:56:7e:8e:0b:f2:a4:5d:d0:23:87:d7:d9:c0:1d:
60:a3:86:cd:c7:bb:a5:8d:36:e2:06:1d:9a:b3:f9:
e3:35:0a:20:26:81:69:9f:b8:aa:24:f8:85:d5:06:
2e:7a:b6:51:d7:63:27:a1:25:00:0f:ac:ae:ec:74:
ad:db:2d:15:b3:f5:77:af:93:41:12:e4:6f:ec:df:
b4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:00:CA:CE:08:2E:AC:A9:43:58:D3:81:6B:AD:AD:E6:CB:60:9F:D9
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/wgDKzggurKlDWNOBa62t5stgn9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.112.0-80.66.116.255
80.66.120.0/23
89.42.70.0/24
89.44.150.0/24
94.198.46.0/23
178.19.32.0/23
178.19.44.0/24
178.19.47.0/24
185.229.212.0/22
185.242.175.0/24
Signature Algorithm: sha256WithRSAEncryption
33:7e:4d:8b:94:06:d1:e1:70:3f:9b:1f:8b:45:05:db:85:b1:
98:e4:dd:ad:8a:11:8c:7a:95:27:8f:45:8a:48:a0:0c:0a:dd:
80:66:c8:69:8e:65:25:ee:f5:99:dd:85:a5:df:a3:eb:f2:c8:
0e:01:23:97:24:03:83:1d:29:8d:3b:0f:8d:99:4f:f3:ae:a3:
3b:98:f2:98:26:a4:f3:c6:13:8d:39:a4:e1:9b:89:b2:d5:71:
b4:14:5b:ed:9f:0c:cd:f5:db:c6:9b:fa:41:c1:14:63:6d:bb:
cc:97:a3:a4:eb:b6:39:8b:04:b6:33:7d:36:0c:1c:89:e3:44:
7a:62:ef:e6:8e:e8:52:03:f1:da:b0:55:78:82:78:85:24:29:
6b:48:2f:96:90:6a:a6:7c:7c:eb:41:a7:90:b8:8d:ea:ae:c3:
65:54:30:dc:a6:da:3f:f5:58:0d:c8:4d:da:48:59:c0:d2:71:
1b:93:0b:3b:3a:f1:f1:5b:f0:c6:d7:34:49:a4:ef:64:97:e1:
64:7e:4a:53:b8:8e:2e:b8:0f:72:ca:6e:d7:56:a7:19:b2:0e:
ea:48:19:b3:4b:4b:92:a7:09:ca:da:1a:dc:c5:3c:2b:53:c8:
93:01:a0:49:83:07:ce:79:63:56:0f:71:1b:c8:8c:94:6a:4b:
73:10:c6:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:54 2023 by rpki-client on console-fra.rpki-client.org