Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/WwlB403rm46RdVt61Ls-FhI73h0.roa
File: WwlB403rm46RdVt61Ls-FhI73h0.roa (raw, json)
Hash identifier: bJ0Dga/MsRaN2wj9X5EYnHqRh5aJkOaEsfii+k2hlJI=
Subject key identifier: 5B:09:41:E3:4D:EB:9B:8E:91:75:5B:7A:D4:BB:3E:16:12:3B:DE:1D
Certificate issuer: /CN=f5fb32d2266b1f9bce57cac98bc0247f2c9197f2
Certificate serial: EF669D
Authority key identifier: F5:FB:32:D2:26:6B:1F:9B:CE:57:CA:C9:8B:C0:24:7F:2C:91:97:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9fsy0iZrH5vOV8rJi8AkfyyRl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/WwlB403rm46RdVt61Ls-FhI73h0.roa
Signing time: Sat 01 Jan 2022 05:54:47 +0000
ROA not before: Sat 01 Jan 2022 05:54:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201341
IP address blocks: 37.156.6.0/24 maxlen: 24
188.240.69.0/24 maxlen: 24
85.204.245.0/24 maxlen: 24
85.204.251.0/24 maxlen: 24
89.36.142.0/24 maxlen: 24
188.208.102.0/24 maxlen: 24
188.215.34.0/24 maxlen: 24
89.37.234.0/24 maxlen: 24
176.223.67.0/24 maxlen: 24
89.34.172.0/24 maxlen: 24
89.36.225.0/24 maxlen: 24
188.213.218.0/24 maxlen: 24
188.240.211.0/24 maxlen: 24
86.107.102.0/24 maxlen: 24
89.33.118.0/24 maxlen: 24
89.33.117.0/24 maxlen: 24
46.102.251.0/24 maxlen: 24
94.177.22.0/24 maxlen: 24
37.153.134.0/24 maxlen: 24
89.35.126.0/24 maxlen: 24
185.77.165.0/24 maxlen: 24
185.77.164.0/24 maxlen: 24
185.77.166.0/24 maxlen: 24
185.77.167.0/24 maxlen: 24
86.105.13.0/24 maxlen: 24
89.39.122.0/24 maxlen: 24
188.211.26.0/24 maxlen: 24
86.105.7.0/24 maxlen: 24
2a05:6300::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15689373 (0xef669d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5fb32d2266b1f9bce57cac98bc0247f2c9197f2
Validity
Not Before: Jan 1 05:54:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b0941e34deb9b8e91755b7ad4bb3e16123bde1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:d8:ac:7c:f7:1e:6b:17:1a:ab:fe:fb:da:4c:
85:56:1d:78:c9:b2:ef:b0:48:d1:18:3e:a8:de:d5:
65:fa:3b:e8:08:d0:c9:94:90:2d:d6:d9:c0:64:89:
7e:e2:08:85:f8:eb:73:44:74:05:13:47:9c:7f:ff:
43:a0:1f:2c:d9:88:5b:f6:87:c0:63:e2:e2:18:46:
0c:19:35:06:11:87:75:67:53:ee:e9:91:49:64:b7:
0e:0f:95:8a:71:84:38:e0:c6:5b:82:18:dd:9b:d3:
af:68:e8:77:a6:22:44:4c:55:fc:b4:d9:0e:ee:6d:
d7:02:5b:f1:fd:bf:fc:22:a5:e8:6f:cf:d0:f5:fc:
6d:d2:7f:e0:85:32:4a:1a:65:98:07:27:87:cf:e9:
05:e7:3b:dc:13:a9:5e:a5:88:10:01:f8:81:10:a9:
d1:c3:f7:d3:df:ba:10:09:be:a6:f3:18:6f:26:bf:
dc:f5:df:d5:8f:e7:bb:d3:94:da:19:16:3e:fa:27:
d9:07:6f:6f:50:a0:f0:fd:79:2d:92:28:59:2b:4b:
b1:0c:e9:30:27:d3:e5:db:a2:bb:6b:65:9a:23:e7:
d5:8c:be:bd:61:d8:2b:2a:84:90:9f:bc:82:2e:0a:
95:26:c6:31:ef:83:fb:1e:3f:44:ee:1e:d7:4e:e2:
52:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:09:41:E3:4D:EB:9B:8E:91:75:5B:7A:D4:BB:3E:16:12:3B:DE:1D
X509v3 Authority Key Identifier:
keyid:F5:FB:32:D2:26:6B:1F:9B:CE:57:CA:C9:8B:C0:24:7F:2C:91:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9fsy0iZrH5vOV8rJi8AkfyyRl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/WwlB403rm46RdVt61Ls-FhI73h0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/9fsy0iZrH5vOV8rJi8AkfyyRl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.134.0/24
37.156.6.0/24
46.102.251.0/24
85.204.245.0/24
85.204.251.0/24
86.105.7.0/24
86.105.13.0/24
86.107.102.0/24
89.33.117.0-89.33.118.255
89.34.172.0/24
89.35.126.0/24
89.36.142.0/24
89.36.225.0/24
89.37.234.0/24
89.39.122.0/24
94.177.22.0/24
176.223.67.0/24
185.77.164.0/22
188.208.102.0/24
188.211.26.0/24
188.213.218.0/24
188.215.34.0/24
188.240.69.0/24
188.240.211.0/24
IPv6:
2a05:6300::/29
Signature Algorithm: sha256WithRSAEncryption
a9:03:35:35:76:cb:31:a1:ef:78:bb:50:57:f6:d1:34:bc:72:
71:3a:c6:36:37:2d:c3:73:40:37:ee:e4:59:ca:79:31:de:fc:
69:2d:bf:64:20:98:1d:a7:57:e2:b1:06:62:cd:94:b7:65:68:
85:3f:89:f1:75:63:fd:2f:5e:83:2c:d8:76:8c:09:0a:e6:b2:
80:d7:3b:95:6b:e7:cf:7c:17:47:39:14:b5:db:81:f1:2f:b7:
7f:99:44:4c:c2:63:7d:91:5e:df:b2:22:6f:ce:ac:6c:4f:6f:
74:f3:79:d9:6d:b1:31:23:b1:7c:29:20:23:4b:c5:78:46:1e:
ca:ef:f4:8c:9b:7e:ff:16:1c:a0:37:5a:c8:58:19:66:71:3d:
d8:a9:5f:41:fb:09:1f:72:be:d2:71:83:f9:d8:3f:07:3d:5e:
82:0d:86:e7:d7:f0:a8:27:fd:f9:ea:7a:d7:66:93:0f:dd:4d:
19:77:b5:08:d9:7f:30:ec:63:19:ef:90:2a:6f:29:0e:11:dc:
c1:f0:6c:9c:c7:f4:e5:7c:91:94:29:bf:3e:d4:e9:35:8d:84:
96:3f:4e:e5:cf:0e:c8:c9:5b:b4:0c:27:5f:83:c4:12:9a:46:
e1:eb:f6:7b:17:68:82:da:82:99:8d:55:68:28:fc:9f:67:fb:
fd:8f:34:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:15 2023 by rpki-client on console-ams.rpki-client.org