Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/wuM8d0om4q7z5nPg_seAqN_3OW0.roa
File: wuM8d0om4q7z5nPg_seAqN_3OW0.roa (raw, json)
Hash identifier: bbER/K2TloH8HHc7HlNkGS3Eu4TAQU3kyGnmNIEcGVo=
Subject key identifier: C2:E3:3C:77:4A:26:E2:AE:F3:E6:73:E0:FE:C7:80:A8:DF:F7:39:6D
Certificate issuer: /CN=fad949f66253543ee89b9196390736b5a6ed7cb8
Certificate serial: 021F7745
Authority key identifier: FA:D9:49:F6:62:53:54:3E:E8:9B:91:96:39:07:36:B5:A6:ED:7C:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tlJ9mJTVD7om5GWOQc2tabtfLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/wuM8d0om4q7z5nPg_seAqN_3OW0.roa
Signing time: Wed 23 Feb 2022 13:20:29 +0000
ROA not before: Wed 23 Feb 2022 13:20:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14445
IP address blocks: 185.218.2.0/24 maxlen: 24
2a11:2800:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35616581 (0x21f7745)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad949f66253543ee89b9196390736b5a6ed7cb8
Validity
Not Before: Feb 23 13:20:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2e33c774a26e2aef3e673e0fec780a8dff7396d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0d:95:b3:1e:69:b3:9f:9c:be:03:62:b1:c2:
3a:88:c7:3f:99:7d:31:c7:a3:51:ae:8f:ce:b0:31:
46:5c:9c:16:51:c0:76:c0:a6:da:bd:e4:d4:12:7f:
92:a7:89:f4:06:80:f1:15:aa:60:81:d1:42:98:d1:
6f:0e:4d:14:37:f8:8d:79:26:6b:0e:2a:ab:65:1d:
f1:a6:ca:77:de:3a:74:91:d3:1a:d9:8f:9f:5f:37:
78:c9:96:cb:46:8a:b4:d8:c1:4d:71:e7:f6:15:ee:
ae:95:43:a8:bf:60:8b:74:75:fb:53:14:d1:eb:bf:
19:fd:31:29:dc:e2:5d:a5:d6:10:23:11:ae:df:ba:
12:47:fe:25:2c:08:df:75:ba:13:04:7a:78:51:5b:
0f:a4:0b:1c:b8:49:0f:a2:98:29:4d:7b:19:4c:2f:
8c:01:85:b0:8f:3c:d6:f2:25:9d:c1:57:c9:f0:3a:
69:96:3c:13:8f:7c:30:65:ac:7a:69:7d:df:bf:ef:
84:7e:d2:7f:80:da:01:56:b1:4a:96:d9:63:db:cb:
26:5d:c0:d6:0b:c9:f7:e1:7f:be:b4:ee:f3:0f:ca:
35:4e:02:d0:74:5b:1b:00:51:54:64:9a:59:af:d4:
12:3a:ce:13:50:01:18:20:ae:cf:60:09:96:29:e3:
14:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:E3:3C:77:4A:26:E2:AE:F3:E6:73:E0:FE:C7:80:A8:DF:F7:39:6D
X509v3 Authority Key Identifier:
keyid:FA:D9:49:F6:62:53:54:3E:E8:9B:91:96:39:07:36:B5:A6:ED:7C:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tlJ9mJTVD7om5GWOQc2tabtfLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/wuM8d0om4q7z5nPg_seAqN_3OW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/1-tlJ9mJTVD7om5GWOQc2tabtfLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.2.0/24
IPv6:
2a11:2800:4::/48
Signature Algorithm: sha256WithRSAEncryption
98:73:8a:b8:a6:16:60:06:4d:d6:85:aa:66:72:e0:79:c3:32:
8b:82:5b:71:e7:d5:af:45:23:47:d7:68:a9:01:14:95:1f:51:
c3:03:01:b3:eb:b1:f1:74:fd:59:0f:45:9f:eb:41:7c:4e:41:
05:06:68:da:4a:42:79:f3:97:15:21:d3:69:61:f2:7c:9f:d1:
fe:2e:7e:9f:b2:e0:2a:0e:37:f9:a9:9a:88:42:7a:1e:a7:c8:
4a:20:9c:3d:99:3e:21:19:bc:9d:a8:e7:62:03:3f:89:d3:d9:
d7:a3:02:69:ae:30:fa:a6:86:b1:71:ae:5f:fd:49:2d:0e:21:
4c:50:1f:99:5b:33:3e:54:cd:e6:ef:5f:33:1f:e1:d0:59:49:
d8:69:b5:b0:5f:e3:f9:b9:37:31:58:c1:b4:13:86:00:71:2c:
c8:e3:7b:3f:bf:c9:97:55:4a:df:3d:af:77:dc:4e:06:f3:91:
15:ec:ac:20:60:54:9a:c5:45:d4:88:5a:c3:6b:38:41:2a:61:
42:a0:b6:de:f3:cf:e4:5b:cc:60:9d:9c:b8:fe:a2:84:43:05:
77:34:9a:0b:db:da:3e:28:ab:32:54:5b:a1:0b:c6:bb:ba:ff:
a6:55:aa:eb:7b:79:df:80:d2:b0:c5:60:76:ad:f7:51:38:99:
8e:4d:15:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:31 2024 by rpki-client on console-fra.rpki-client.org