Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/WazNDyghphQadd_ukbymJrTCG-I.roa
File: WazNDyghphQadd_ukbymJrTCG-I.roa (raw, json)
Hash identifier: 7Jh3Jn3PnY2rN8uqzms14XYPnncMEVFXuYHoe1L+3Hk=
Subject key identifier: 59:AC:CD:0F:28:21:A6:14:1A:75:DF:EE:91:BC:A6:26:B4:C2:1B:E2
Certificate issuer: /CN=d04079bb7070ed0eeea3a1a467c79462bcc5455f
Certificate serial: 03930B79
Authority key identifier: D0:40:79:BB:70:70:ED:0E:EE:A3:A1:A4:67:C7:94:62:BC:C5:45:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/WazNDyghphQadd_ukbymJrTCG-I.roa
Signing time: Wed 22 Jun 2022 15:42:32 +0000
ROA not before: Wed 22 Jun 2022 15:42:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59811
IP address blocks: 185.66.206.0/24 maxlen: 24
2a04:1840::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59968377 (0x3930b79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04079bb7070ed0eeea3a1a467c79462bcc5455f
Validity
Not Before: Jun 22 15:42:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59accd0f2821a6141a75dfee91bca626b4c21be2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1c:de:b9:6d:9c:dc:cd:4f:42:43:60:07:b5:
b4:c4:a4:fd:1d:57:bc:f3:6a:46:27:4a:3a:d4:71:
cd:87:31:77:4f:ac:ef:c3:30:e7:5b:09:42:ea:eb:
7f:d1:69:81:80:c6:c1:7f:43:60:21:fe:dc:a0:cd:
37:51:f4:29:1f:23:23:23:bd:cc:d9:c8:ed:19:24:
37:75:1c:3a:9b:a7:a3:52:0f:b5:85:c6:4d:21:38:
ad:76:fb:ab:41:77:0e:24:2a:ab:6c:05:4a:3d:05:
1a:b3:67:90:6b:dd:2e:a2:a5:67:7a:61:7e:a2:db:
3b:9b:67:2e:ed:a5:e6:a7:e1:64:9c:82:24:dd:06:
b7:8c:59:6a:91:70:bf:57:5e:ff:c3:6a:60:cf:5b:
2e:f6:a6:f7:26:6d:7e:59:30:3a:0f:8e:80:aa:63:
de:4c:24:b0:ee:39:ec:d8:9f:05:82:aa:ca:ad:b2:
ab:26:e0:d7:07:2b:6a:29:fd:b5:ed:aa:63:c2:39:
d8:92:4f:dc:62:09:05:d2:c5:ef:a6:1b:2b:50:ef:
43:07:e4:c3:d8:68:f2:8f:a3:68:04:ee:6d:53:27:
48:d2:70:b3:ff:af:fe:91:cb:d4:63:44:a6:0f:3d:
e7:16:96:65:36:fc:5a:98:a1:53:d5:52:27:14:11:
12:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:AC:CD:0F:28:21:A6:14:1A:75:DF:EE:91:BC:A6:26:B4:C2:1B:E2
X509v3 Authority Key Identifier:
keyid:D0:40:79:BB:70:70:ED:0E:EE:A3:A1:A4:67:C7:94:62:BC:C5:45:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/WazNDyghphQadd_ukbymJrTCG-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.206.0/24
IPv6:
2a04:1840::/29
Signature Algorithm: sha256WithRSAEncryption
7c:cc:1a:5d:13:01:ae:f9:cb:6b:9d:63:88:c8:ef:b2:58:93:
6d:83:76:05:bf:3e:2e:f3:c0:d8:a5:65:2a:af:81:76:fe:f8:
a6:90:01:5c:09:10:5b:82:ca:f8:1e:75:7b:81:9b:bc:55:fb:
50:08:b9:92:23:8d:17:18:f3:18:08:ed:db:ac:a4:58:e9:74:
df:8c:6c:9c:9c:24:fd:01:65:18:9b:fd:c8:04:da:9c:81:1e:
65:a2:4a:c6:92:a4:f7:b6:84:c2:b3:ba:31:89:11:e0:4a:29:
31:69:70:29:32:5f:7a:35:78:d7:d5:a9:19:c2:bf:a8:a8:b5:
fb:66:a3:6c:07:a5:d6:c8:15:d3:9a:7d:22:56:a9:d6:f5:10:
42:1a:82:16:58:bd:40:49:cc:c5:62:14:fd:cd:07:a7:1d:36:
ac:63:dc:b4:58:d5:41:7c:fd:80:bd:96:b6:58:46:e2:9e:85:
aa:bc:34:a8:94:f6:f5:f2:ae:18:a3:36:a5:6d:0a:e7:c7:df:
1a:10:34:e7:20:95:fd:57:29:26:12:c0:81:5e:b9:82:44:e5:
99:0e:d7:1b:79:c6:ba:73:b5:a4:0c:db:1e:27:fa:a5:86:6f:
30:bc:2b:47:6a:e4:8b:3a:cc:cf:48:18:f0:6e:11:f1:d2:1f:
f0:d5:05:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:18 2024 by rpki-client on console-ams.rpki-client.org