Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/0b06bc-b8c7-4f75-b29e-c107a7ac0488/1/zI7R49YWd9SHRTyEp0d2KS6-s5A.roa
File: zI7R49YWd9SHRTyEp0d2KS6-s5A.roa (raw, json)
Hash identifier: zQqZYdtbLm9/TrKbBz03dRCK/WHBHuX1K440vTPD50A=
Subject key identifier: CC:8E:D1:E3:D6:16:77:D4:87:45:3C:84:A7:47:76:29:2E:BE:B3:90
Certificate issuer: /CN=58ffa14df2a89cb6709636f2b0b570abccf8b84b
Certificate serial: 018216B69F3DB33BABAB0C9B9E0521742BD6
Authority key identifier: 58:FF:A1:4D:F2:A8:9C:B6:70:96:36:F2:B0:B5:70:AB:CC:F8:B8:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WP-hTfKonLZwljbysLVwq8z4uEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/0b06bc-b8c7-4f75-b29e-c107a7ac0488/1/zI7R49YWd9SHRTyEp0d2KS6-s5A.roa
Signing time: Tue 19 Jul 2022 13:47:23 +0000
ROA not before: Tue 19 Jul 2022 13:47:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58010
IP address blocks: 185.216.214.0/24 maxlen: 24
2a0b:bbc0:1c00::/48 maxlen: 48
2a0b:bbc0:1c01::/48 maxlen: 48
2a0b:bbc0:1c02::/48 maxlen: 48
2a0b:bbc0:1c00::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:16:b6:9f:3d:b3:3b:ab:ab:0c:9b:9e:05:21:74:2b:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ffa14df2a89cb6709636f2b0b570abccf8b84b
Validity
Not Before: Jul 19 13:47:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc8ed1e3d61677d487453c84a74776292ebeb390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0d:88:1d:38:e9:46:7a:37:b2:bd:a1:f0:50:
55:a9:4f:ce:5c:84:fb:4f:60:bf:b5:e8:78:74:47:
c4:90:80:f6:37:5b:f1:33:a3:5f:9a:c5:46:2f:62:
e1:b1:4c:a0:47:39:a8:cf:83:2b:cd:8a:ae:b2:45:
1d:d8:77:a4:6c:39:0c:ef:31:6b:bb:ba:72:59:96:
19:7b:77:85:e3:ec:65:0d:6a:21:62:ab:88:9e:03:
02:dc:7c:e1:89:d5:f0:83:4d:c1:2d:ba:09:a1:f3:
65:73:5f:4f:17:32:72:6b:5c:0d:70:01:d2:e2:40:
92:b9:73:63:d1:56:ea:7b:5e:3f:e5:3e:83:62:09:
65:ed:b4:c8:f8:10:e3:c6:9a:21:a6:17:c8:2d:76:
43:f9:b8:f4:c8:7b:79:a9:65:9d:58:30:ae:60:50:
f8:09:ce:ab:a3:db:8e:d0:b0:e8:0e:b0:cf:53:4b:
6c:4e:e5:8a:f6:3c:2c:db:41:80:e2:cc:96:87:69:
ba:9b:95:95:7f:1d:c5:2a:9f:56:7f:da:38:b8:5b:
74:3c:f1:47:79:8d:e9:97:64:e5:dd:ad:52:ae:74:
85:3e:c7:3e:04:4a:01:5b:06:31:aa:ab:d6:c6:bf:
6a:07:00:80:b8:63:95:78:6a:f6:0f:86:d8:93:5b:
aa:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:8E:D1:E3:D6:16:77:D4:87:45:3C:84:A7:47:76:29:2E:BE:B3:90
X509v3 Authority Key Identifier:
keyid:58:FF:A1:4D:F2:A8:9C:B6:70:96:36:F2:B0:B5:70:AB:CC:F8:B8:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WP-hTfKonLZwljbysLVwq8z4uEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/0b06bc-b8c7-4f75-b29e-c107a7ac0488/1/zI7R49YWd9SHRTyEp0d2KS6-s5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/0b06bc-b8c7-4f75-b29e-c107a7ac0488/1/WP-hTfKonLZwljbysLVwq8z4uEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.214.0/24
IPv6:
2a0b:bbc0:1c00::/40
Signature Algorithm: sha256WithRSAEncryption
2d:1c:a2:d9:d5:0e:03:49:7c:9d:bb:f3:0f:25:ba:45:90:4f:
50:8d:03:41:4c:a3:12:cf:09:f9:22:9b:7f:d2:9b:38:95:85:
65:b7:59:b4:30:54:14:db:eb:12:7c:0c:fe:d8:67:76:cb:4c:
db:33:84:94:36:8a:7d:5d:95:c8:18:13:cc:e4:a2:41:ad:8d:
73:ff:08:34:c0:96:43:2e:16:e7:1b:fd:6a:c3:9a:82:22:7c:
da:69:e8:c1:a8:17:ff:7c:39:c5:8f:b3:00:b3:11:5f:3a:6e:
21:21:45:4e:4e:54:22:5e:2b:e3:5a:b9:8b:76:4c:ef:3b:82:
ba:94:32:0c:f3:83:a9:18:c7:15:d5:6c:e0:0e:0b:b5:d0:62:
7d:89:ad:41:bc:25:e3:6b:93:e9:b0:cb:6f:5c:ca:da:70:fa:
bd:30:54:8a:5b:4b:c4:9d:28:ff:de:4f:d8:0a:ff:a7:f4:19:
9d:45:b1:aa:45:13:8b:57:47:3c:ca:50:2c:8f:af:21:19:ea:
a4:f7:d7:66:76:71:20:ee:38:fc:74:7a:71:84:52:b3:57:9a:
c1:55:6b:d0:e8:92:0b:67:27:db:0b:1f:9d:a2:35:22:42:b7:
16:23:b7:72:8e:21:f7:6e:ea:0e:f1:22:48:53:76:7e:d8:28:
bd:ac:63:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:47 2023 by rpki-client on console-ams.rpki-client.org