Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/wyvFdWQNmZws83YhjrkpXR2frWA.roa
File: wyvFdWQNmZws83YhjrkpXR2frWA.roa (raw, json)
Hash identifier: dFruzH72uIlwM2s//vPEnHxLIquT/IH+QbEun8COkeg=
Subject key identifier: C3:2B:C5:75:64:0D:99:9C:2C:F3:76:21:8E:B9:29:5D:1D:9F:AD:60
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 053673A8
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/wyvFdWQNmZws83YhjrkpXR2frWA.roa
Signing time: Thu 19 May 2022 08:57:46 +0000
ROA not before: Thu 19 May 2022 08:57:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202766
IP address blocks: 94.198.47.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
185.229.212.0/22 maxlen: 22
185.229.213.0/24 maxlen: 24
185.229.212.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
80.66.120.0/23 maxlen: 23
89.44.150.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87454632 (0x53673a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: May 19 08:57:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c32bc575640d999c2cf376218eb9295d1d9fad60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:53:df:c0:4d:e6:0c:91:f8:aa:b6:f3:5c:08:
77:46:4e:b0:1c:7c:b0:e8:c1:c8:81:1b:82:6d:e0:
89:a9:c9:35:13:b5:fa:62:87:79:44:08:ec:bf:c1:
98:4f:b7:26:49:69:73:fa:29:db:93:a1:ea:ad:3b:
5e:5e:a5:5f:f0:84:72:6f:69:eb:bc:57:4c:14:a1:
6f:20:0a:5d:c1:31:ad:df:28:f2:32:9b:91:b1:c0:
87:b1:02:2e:83:37:06:55:26:b5:a2:16:c0:ad:2c:
fa:c5:f0:3e:e3:65:f7:f9:7d:55:a1:70:71:b0:e8:
71:11:a0:67:f3:2e:bd:4a:32:41:e8:d3:de:f8:23:
db:4d:4f:c3:14:73:ff:eb:cb:7b:dd:46:2f:b3:fe:
6c:f2:73:19:c4:be:fe:d5:eb:ab:6a:9e:fd:ea:df:
ce:0f:0a:9e:b6:1a:95:2f:53:07:04:f3:10:37:1d:
29:a4:4c:bf:64:0b:fa:4e:2f:dd:72:71:e9:61:c4:
b6:84:f7:60:6c:fd:22:cb:f3:77:9c:f9:94:11:e0:
d1:1e:c6:eb:3d:67:e2:9f:1c:cc:2d:19:6e:15:f5:
11:86:71:ce:23:d5:4b:71:b0:9e:81:ac:9f:48:9e:
aa:ab:0c:58:ff:eb:a3:9a:45:53:f9:02:35:a4:40:
96:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:2B:C5:75:64:0D:99:9C:2C:F3:76:21:8E:B9:29:5D:1D:9F:AD:60
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/wyvFdWQNmZws83YhjrkpXR2frWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.112.0/23
80.66.115.0/24
80.66.120.0/23
89.42.70.0/24
89.44.150.0/24
94.198.46.0/23
178.19.32.0/23
178.19.44.0/24
178.19.47.0/24
185.229.212.0/22
185.242.175.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:ab:7b:2a:22:96:1f:d0:6e:9a:60:58:8d:12:f8:af:82:d1:
0b:27:b6:ec:e1:a1:3f:f9:5e:42:8e:0c:3f:18:43:fa:e4:fe:
5d:bc:5e:50:34:4b:ae:c5:6c:6c:5a:b1:da:58:32:80:69:da:
14:d4:ce:e0:48:0c:a9:a6:02:cb:1e:70:85:3d:d0:7f:74:86:
2c:92:fe:c3:ff:b7:7c:e3:80:39:ab:2f:d0:51:62:75:34:72:
e9:83:66:0c:13:4f:2f:69:bf:c2:01:e1:b9:6c:67:53:21:86:
ef:d9:e7:42:8c:57:c7:cf:d9:ba:5f:18:a6:e1:1e:80:46:9e:
68:ed:5a:65:73:1e:f9:56:ab:7e:63:8b:dc:29:38:f7:48:05:
3e:e5:dc:57:09:e1:dd:f1:a4:72:a3:d3:6e:97:72:9f:5f:d3:
d0:be:8b:6a:01:75:b9:0b:9b:ba:da:b0:7e:c8:61:a9:bc:08:
17:d5:87:2e:63:13:ef:df:37:1c:46:6d:89:c4:84:a4:63:88:
b3:b9:ba:e5:2f:e1:8d:cd:bb:f4:26:20:18:f5:65:93:43:32:
6b:c1:5e:a0:35:f9:7a:40:f6:27:bd:6f:23:2d:9d:11:20:d0:
6f:10:fc:a3:72:a7:ed:8b:d5:10:a8:6d:c7:64:73:98:6e:02:
cb:59:4b:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:36 2023 by rpki-client on console-ams.rpki-client.org