Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/WPmiJtPTFreo7DTgcXrvgeDtGbo.roa
File: WPmiJtPTFreo7DTgcXrvgeDtGbo.roa (raw, json)
Hash identifier: f/Yo2h52H40wqLWnLPAgzqgODZ/aMwP3LBRP1A20r5k=
Subject key identifier: 58:F9:A2:26:D3:D3:16:B7:A8:EC:34:E0:71:7A:EF:81:E0:ED:19:BA
Certificate issuer: /CN=5dc87309876cec404f007bf6da0434c0bdc62d8b
Certificate serial: 092F7A5C
Authority key identifier: 5D:C8:73:09:87:6C:EC:40:4F:00:7B:F6:DA:04:34:C0:BD:C6:2D:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/WPmiJtPTFreo7DTgcXrvgeDtGbo.roa
Signing time: Sat 01 Jan 2022 15:02:47 +0000
ROA not before: Sat 01 Jan 2022 15:02:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41821
IP address blocks: 185.210.80.0/22 maxlen: 24
2a0b:6040::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154106460 (0x92f7a5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc87309876cec404f007bf6da0434c0bdc62d8b
Validity
Not Before: Jan 1 15:02:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58f9a226d3d316b7a8ec34e0717aef81e0ed19ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ef:f9:6c:54:18:e9:34:1e:83:cd:ef:de:67:
fe:5c:fb:39:ff:3f:bc:f0:51:6e:a9:ca:6d:61:bf:
22:4d:44:a1:46:f3:bf:98:88:4d:9e:68:cd:ae:fe:
58:2c:9d:ec:63:fd:8b:f4:8c:fe:e5:8a:d7:3e:f5:
a4:c0:8e:b9:e4:82:cd:8d:8b:14:30:38:ac:70:d5:
28:f1:0c:9d:cc:05:8e:6b:d7:d7:95:d9:89:ba:31:
d5:a6:90:0d:fe:74:07:b7:ed:82:f9:28:e1:87:cd:
e4:6c:b6:51:43:24:3e:18:9d:c2:e5:6d:20:9d:5f:
a5:d0:f4:9a:e7:bd:1b:25:82:3d:23:71:b3:62:6f:
39:01:8c:12:5a:4f:51:52:17:2d:4b:c8:04:9f:ef:
4b:d1:71:7b:73:24:c4:5b:42:52:8f:0c:66:87:75:
cf:b9:e4:e9:32:e3:4f:67:01:4e:b1:2f:cc:67:fb:
5b:cc:d5:75:a0:3a:cf:29:15:fa:b9:98:94:0f:0f:
96:13:af:2e:16:33:dc:52:71:50:25:b6:a3:b0:a3:
0b:f1:ef:70:82:44:99:3e:b2:ec:af:35:3d:3f:f3:
9e:bd:87:54:bd:bf:45:0e:84:9b:ac:30:24:94:82:
58:a5:b1:d3:e7:09:c8:c9:d5:ac:60:04:ed:ee:d6:
59:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F9:A2:26:D3:D3:16:B7:A8:EC:34:E0:71:7A:EF:81:E0:ED:19:BA
X509v3 Authority Key Identifier:
keyid:5D:C8:73:09:87:6C:EC:40:4F:00:7B:F6:DA:04:34:C0:BD:C6:2D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/WPmiJtPTFreo7DTgcXrvgeDtGbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.80.0/22
IPv6:
2a0b:6040::/32
Signature Algorithm: sha256WithRSAEncryption
b0:20:3f:90:9d:7b:36:52:1b:25:f6:0c:be:27:a8:c2:01:00:
6a:01:12:58:25:98:1f:d2:99:30:89:5a:94:20:dc:65:e6:c2:
5c:a0:79:c6:60:20:22:03:05:cd:0b:ae:15:76:95:22:c2:f5:
ce:91:c5:1c:48:9b:57:9c:55:8d:14:9e:0c:d3:b0:3c:5e:e3:
c8:3d:bf:ef:eb:20:73:39:e8:34:f7:bc:cc:e8:ff:4e:d8:b2:
67:99:70:27:b2:a9:23:00:67:2d:2f:62:37:84:f5:e4:10:10:
95:8a:29:20:90:c6:f2:80:b4:12:ad:5e:7e:8a:ac:89:83:4b:
07:47:20:bf:48:d4:77:cd:ff:9c:8f:38:b7:1a:ea:1b:b9:d0:
cf:a5:2e:3e:e7:25:1a:81:f6:37:1f:fc:08:e1:b5:31:5a:a3:
04:97:46:e2:91:a7:02:a2:6f:c6:f7:77:5d:cf:9b:a5:68:58:
e9:63:d0:0b:3e:20:d5:36:d1:41:4f:64:16:9b:46:9e:84:ad:
41:92:65:7e:59:c7:6b:7c:60:4c:da:53:6f:9e:57:9c:17:5c:
79:a6:ee:27:ef:b4:c2:91:e0:2d:24:c5:0b:26:0f:49:23:09:
a6:85:6b:56:96:29:84:fc:78:e1:1d:3c:04:45:5e:10:8e:31:
1b:a9:d0:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:31 2023 by rpki-client on console-fra.rpki-client.org