Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/36fd43-b5f3-40cf-8631-518e7a35660a/1/wFEgJH55kjebNs9787MaW7FUiZc.roa
File: wFEgJH55kjebNs9787MaW7FUiZc.roa (raw, json)
Hash identifier: TcnTArZJp1y9oT9N4yZTgUYoyx+z6Wq8v+A53AeCOP4=
Subject key identifier: C0:51:20:24:7E:79:92:37:9B:36:CF:7B:F3:B3:1A:5B:B1:54:89:97
Certificate issuer: /CN=d0e80414b947f1931f22bc9c878c17b7d23078eb
Certificate serial: 05303CF5
Authority key identifier: D0:E8:04:14:B9:47:F1:93:1F:22:BC:9C:87:8C:17:B7:D2:30:78:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OgEFLlH8ZMfIrych4wXt9IweOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/36fd43-b5f3-40cf-8631-518e7a35660a/1/wFEgJH55kjebNs9787MaW7FUiZc.roa
Signing time: Fri 14 Jan 2022 16:37:46 +0000
ROA not before: Fri 14 Jan 2022 16:37:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204947
IP address blocks: 185.63.100.0/22 maxlen: 24
185.234.172.0/22 maxlen: 24
2a0d:2100::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87047413 (0x5303cf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e80414b947f1931f22bc9c878c17b7d23078eb
Validity
Not Before: Jan 14 16:37:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c05120247e7992379b36cf7bf3b31a5bb1548997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:56:f9:23:c6:aa:e3:2a:5a:b6:20:d2:1b:be:
a3:6a:52:94:7c:14:c1:37:07:24:4f:fa:25:26:de:
c2:92:f7:51:e4:7c:90:20:13:4f:6b:0b:ce:49:ef:
6a:0c:c0:52:e3:91:eb:3b:cc:b6:7d:5f:b0:67:4a:
93:3b:fe:e9:63:ee:88:2d:ca:73:07:a1:11:9c:94:
44:e4:aa:07:5d:c6:9b:d0:94:de:4c:02:93:9e:ad:
a2:9e:96:3a:f0:48:b1:1f:8e:6a:c0:47:c7:93:b9:
52:3c:5d:19:e0:11:0c:6e:6d:52:00:b5:23:73:8e:
9f:ee:ba:ad:91:fd:29:8e:dd:3c:1f:66:98:6c:09:
54:90:bc:da:00:56:e9:e6:ec:25:63:87:a6:e1:46:
20:11:5d:e2:2a:be:88:e5:78:fc:40:6e:55:64:75:
17:c5:5e:95:d4:e6:7c:24:1c:46:0c:c7:92:c6:5d:
a3:34:73:3f:9c:9c:6b:2b:c4:91:f3:5c:4d:5d:f4:
3f:d8:ef:24:7a:8b:b4:29:3d:2d:03:0c:40:87:e6:
8a:8c:cc:f5:c8:93:5d:24:78:6a:a4:5f:6b:65:e0:
45:d3:c7:db:fb:fe:ef:80:72:62:e3:67:e2:ca:80:
6e:71:63:9e:0c:f2:50:3c:0c:42:1e:52:38:15:00:
ef:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:51:20:24:7E:79:92:37:9B:36:CF:7B:F3:B3:1A:5B:B1:54:89:97
X509v3 Authority Key Identifier:
keyid:D0:E8:04:14:B9:47:F1:93:1F:22:BC:9C:87:8C:17:B7:D2:30:78:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OgEFLlH8ZMfIrych4wXt9IweOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/36fd43-b5f3-40cf-8631-518e7a35660a/1/wFEgJH55kjebNs9787MaW7FUiZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/36fd43-b5f3-40cf-8631-518e7a35660a/1/0OgEFLlH8ZMfIrych4wXt9IweOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.100.0/22
185.234.172.0/22
IPv6:
2a0d:2100::/29
Signature Algorithm: sha256WithRSAEncryption
96:64:2e:f1:f9:7b:fb:2a:f8:a3:d7:eb:d5:ae:80:6b:1b:78:
b4:66:12:17:d5:69:44:58:70:a3:27:3e:e3:f6:c5:53:54:20:
9c:63:2a:84:70:ed:1b:cc:89:3d:44:fa:ab:bf:ed:62:6f:af:
7b:ea:ff:6a:94:a2:0e:11:5a:d8:46:76:8e:bc:33:bf:15:29:
ea:e5:6e:ef:97:75:fd:d5:ba:83:73:c4:4a:15:54:57:aa:b1:
32:7c:23:fe:92:ef:20:0e:71:8c:93:b4:b4:29:ac:f1:4f:71:
6a:0a:05:48:7f:e3:f9:2c:96:59:6a:9d:0b:2a:6d:1f:ca:ef:
21:8e:4d:fb:3f:2e:17:67:36:0e:6a:98:fe:7b:1d:d7:6d:2e:
fb:1e:40:c5:da:b4:6a:be:d4:7a:7e:a7:b3:43:15:df:0b:e2:
b8:0b:9b:67:96:ee:71:d4:e3:aa:76:ac:8e:59:25:46:c6:83:
5d:e3:d2:82:dd:f3:1f:d3:6c:ce:06:87:bf:12:65:04:14:7c:
52:42:46:a9:e6:c2:9a:a3:4c:39:34:66:aa:44:93:fb:56:34:
79:c0:3c:ab:b0:c9:5a:11:2b:21:d4:ec:73:74:17:94:c5:76:
e1:b1:37:c1:ff:45:ce:6b:f2:9d:eb:4b:0d:31:03:70:1c:50:
35:b1:d9:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:18 2024 by rpki-client on console-fra.rpki-client.org