Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/051f88-857c-4e4b-bd3d-f1b893887884/1/WVNYdCwHvIuS0fgU6wJXRqT_j8k.roa
File: WVNYdCwHvIuS0fgU6wJXRqT_j8k.roa (raw, json)
Hash identifier: Lw9rJ9EvKrgZ5WtGPR51dCBX7td2p/JXAkyx7S8qn6Q=
Subject key identifier: 59:53:58:74:2C:07:BC:8B:92:D1:F8:14:EB:02:57:46:A4:FF:8F:C9
Certificate issuer: /CN=fb0aee0e1bf8212c0225e785b394f0416bb32bb7
Certificate serial: 028B68EE
Authority key identifier: FB:0A:EE:0E:1B:F8:21:2C:02:25:E7:85:B3:94:F0:41:6B:B3:2B:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wruDhv4ISwCJeeFs5TwQWuzK7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/051f88-857c-4e4b-bd3d-f1b893887884/1/WVNYdCwHvIuS0fgU6wJXRqT_j8k.roa
Signing time: Sat 01 Jan 2022 07:58:25 +0000
ROA not before: Sat 01 Jan 2022 07:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212629
IP address blocks: 185.145.108.0/22 maxlen: 22
2a07:48c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42690798 (0x28b68ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb0aee0e1bf8212c0225e785b394f0416bb32bb7
Validity
Not Before: Jan 1 07:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=595358742c07bc8b92d1f814eb025746a4ff8fc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:84:19:fc:9f:15:71:e4:1f:44:79:83:0b:01:
66:72:94:20:dd:b0:94:9c:e5:64:2c:9e:ba:47:79:
25:be:5a:69:c7:4d:cd:fc:c0:21:4b:67:53:2f:13:
b0:6c:c5:a9:68:10:d7:63:ec:09:6c:46:ea:a3:04:
c5:5c:6d:35:0b:bc:f3:61:0c:5a:b6:24:f4:7e:43:
75:ba:63:43:1e:96:e0:91:12:cc:58:ba:47:4a:f3:
73:bf:cf:9a:c2:be:ea:49:8b:51:5d:2b:c8:04:f4:
a2:a9:e6:f2:9d:c5:96:38:d3:0b:20:bb:79:cb:ce:
34:ce:cb:0e:44:fc:ec:fb:45:00:8f:02:7f:f1:86:
30:93:bf:37:b1:2e:c9:91:9c:24:ed:c6:70:fd:55:
59:cb:22:63:0f:86:c3:e3:67:72:9c:a8:a0:e8:a6:
1b:d4:95:53:ce:fa:56:5d:c0:e0:c2:b8:e1:52:5a:
1d:a7:57:78:bf:0b:a3:72:ab:3a:dc:1e:0b:bd:01:
bd:dd:2e:09:45:e2:bf:a8:62:ac:c8:e7:ab:66:ed:
1d:23:c2:2f:2b:a9:9d:b8:4b:6c:4b:5a:85:9e:9a:
3f:e2:5c:00:d6:e0:29:13:dd:39:cb:d0:e6:4b:db:
7c:01:e7:90:88:1a:eb:a4:6b:ef:6d:32:7d:c3:4e:
71:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:53:58:74:2C:07:BC:8B:92:D1:F8:14:EB:02:57:46:A4:FF:8F:C9
X509v3 Authority Key Identifier:
keyid:FB:0A:EE:0E:1B:F8:21:2C:02:25:E7:85:B3:94:F0:41:6B:B3:2B:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wruDhv4ISwCJeeFs5TwQWuzK7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/051f88-857c-4e4b-bd3d-f1b893887884/1/WVNYdCwHvIuS0fgU6wJXRqT_j8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/051f88-857c-4e4b-bd3d-f1b893887884/1/1-wruDhv4ISwCJeeFs5TwQWuzK7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.108.0/22
IPv6:
2a07:48c0::/29
Signature Algorithm: sha256WithRSAEncryption
a2:9a:a2:c4:a4:90:a1:bd:80:70:63:be:e0:9c:09:0c:ac:cc:
21:30:4d:4c:88:4d:4d:00:47:91:3b:07:dc:fa:39:14:98:72:
bf:8c:fc:28:c0:7c:38:17:cc:28:fd:b5:27:88:05:54:08:b2:
13:f2:a9:bc:c4:6b:1d:55:e1:28:f3:b6:f2:d7:12:fb:f8:8f:
4d:fd:04:26:d3:83:22:3d:d7:3a:42:09:67:7f:f9:95:d0:0b:
5c:9c:2c:d6:1b:51:46:10:29:b3:09:84:aa:c9:2b:d6:1d:84:
17:ce:8d:df:58:da:df:e6:7b:14:67:d6:4a:19:29:8a:ba:a4:
09:90:3a:ff:d2:e5:c3:ea:10:8d:95:d6:65:a7:8d:a7:88:49:
43:ad:8c:c1:8e:e4:16:17:2b:be:7c:32:7f:d1:23:0f:b7:4c:
2e:5f:ef:36:47:62:14:bb:33:8b:48:d1:23:c5:04:8b:17:46:
80:e3:54:3c:e7:7a:e8:73:ed:81:cf:e4:35:bc:99:2e:2e:62:
1f:14:fa:55:b8:b4:c1:3e:9e:8b:2e:49:fe:4c:15:48:00:ea:
27:36:4b:aa:ff:4f:37:80:18:5f:1c:57:7b:42:ef:84:b4:14:
ce:47:1f:5c:bf:08:93:ba:a3:ef:7d:d2:f7:54:e7:b5:6a:e5:
89:06:02:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:46 2023 by rpki-client on console-ams.rpki-client.org