Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/WIOKXVQV1nASJQeFQsa0WzWZwv4.roa
File: WIOKXVQV1nASJQeFQsa0WzWZwv4.roa (raw, json)
Hash identifier: OFfzjEADn4WTyByjjvZNyMR156DZSkC22Z8MI5W8nGg=
Subject key identifier: 58:83:8A:5D:54:15:D6:70:12:25:07:85:42:C6:B4:5B:35:99:C2:FE
Certificate issuer: /CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Certificate serial: 0183B6B5A7F24DF8D38381BAB8B10225DD6F
Authority key identifier: D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/WIOKXVQV1nASJQeFQsa0WzWZwv4.roa
Signing time: Sat 08 Oct 2022 08:28:21 +0000
ROA not before: Sat 08 Oct 2022 08:28:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62406
IP address blocks: 185.235.83.0/24 maxlen: 24
2a0d:4d00:83::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b6:b5:a7:f2:4d:f8:d3:83:81:ba:b8:b1:02:25:dd:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Validity
Not Before: Oct 8 08:28:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58838a5d5415d6701225078542c6b45b3599c2fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b4:5c:eb:73:7f:88:90:01:9b:bb:e1:0d:9e:
9d:95:56:e0:4a:99:25:1b:c3:fa:ec:0b:8e:28:7a:
fc:44:ae:9f:f9:c6:8c:b3:7a:76:ad:0a:ab:7f:e4:
8d:f8:14:86:95:06:e8:87:06:78:e5:26:37:45:a2:
02:d3:71:3b:15:c8:c4:2a:9f:74:94:4b:70:3e:8a:
ad:fe:f7:8d:86:a5:22:dc:0f:ff:00:08:e2:41:1c:
ad:dd:ee:45:d1:e3:58:97:6a:fe:2e:56:e3:b2:e9:
33:d4:61:02:53:36:dd:78:e8:f5:f1:b4:ca:74:0c:
f4:0f:4a:70:af:a7:64:f6:db:33:93:f4:e8:19:e7:
41:d1:33:9c:75:ec:24:fe:42:3c:fa:98:5d:0e:24:
fb:9d:72:cd:59:c5:11:94:a1:93:d8:1d:c3:06:81:
c2:52:9d:07:3a:23:a5:91:a2:ea:03:50:89:e7:06:
4d:7c:57:28:fa:64:fd:d0:33:a8:90:a2:b1:f4:80:
34:3b:32:33:84:62:43:59:a0:af:7d:95:4b:9b:d7:
5d:1f:51:73:3a:ff:24:ba:73:3e:12:a7:2b:4b:41:
de:29:e9:90:95:23:ef:42:18:19:70:19:08:da:c7:
1e:d6:f6:6d:b9:8d:ad:6e:7b:be:e4:9d:1e:d2:0f:
69:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:83:8A:5D:54:15:D6:70:12:25:07:85:42:C6:B4:5B:35:99:C2:FE
X509v3 Authority Key Identifier:
keyid:D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/WIOKXVQV1nASJQeFQsa0WzWZwv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/04YKmzZYX7iqBR_Df8xqB3OZDL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.83.0/24
IPv6:
2a0d:4d00:83::/48
Signature Algorithm: sha256WithRSAEncryption
0b:ac:96:b3:50:4c:b0:7c:8b:ef:8b:bd:7b:71:f4:2e:1f:d0:
f4:78:02:09:86:99:15:46:54:10:ea:cd:1b:1c:38:23:12:f7:
c5:62:3f:1d:df:55:18:11:6d:51:e6:5c:4c:48:54:ed:57:75:
ef:1a:62:85:a3:0f:4d:7f:9e:30:6d:8c:3e:90:57:d0:41:28:
3d:88:3f:ef:89:c4:40:3b:bd:7c:ae:8e:87:4a:6c:e6:46:f1:
e3:80:18:a1:ad:10:ad:e5:0d:13:db:98:56:09:74:70:55:51:
14:a1:0b:89:2b:f9:ee:34:6a:a3:17:09:ff:20:f9:61:2a:c9:
1f:a7:fc:52:dc:80:ca:00:92:49:9e:49:8f:a2:a5:41:e4:86:
06:9d:62:12:00:96:5a:43:85:fb:b6:e9:d9:9b:23:de:ed:25:
62:51:bc:f6:36:1a:04:2b:cd:99:c3:39:1e:77:40:1e:bb:48:
42:38:a5:7d:2a:49:34:93:e1:38:9c:8a:38:58:c8:15:8b:72:
63:a8:52:e8:a1:03:f6:f4:6c:7a:9b:52:8f:98:9f:f3:53:ad:
65:1a:4b:74:3f:f3:b3:05:d3:c5:48:c4:6b:ec:74:74:11:ba:
48:78:14:28:d9:a3:bd:f8:25:49:fb:fc:95:ac:78:ef:ce:c5:
c5:56:a4:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:12 2025 by rpki-client