Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/WEj4ychXrEjzMZttBBGxCNWhTsQ.roa
File: WEj4ychXrEjzMZttBBGxCNWhTsQ.roa (raw, json)
Hash identifier: wcHg4HuW7xIDnmjyU6WqpQ0sqZIa07/hUsum1+/ZX+s=
Subject key identifier: 58:48:F8:C9:C8:57:AC:48:F3:31:9B:6D:04:11:B1:08:D5:A1:4E:C4
Certificate issuer: /CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Certificate serial: 174A099C
Authority key identifier: 91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/WEj4ychXrEjzMZttBBGxCNWhTsQ.roa
Signing time: Sat 01 Jan 2022 08:05:45 +0000
ROA not before: Sat 01 Jan 2022 08:05:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199455
IP address blocks: 185.4.118.0/24 maxlen: 24
185.4.117.0/24 maxlen: 24
185.4.116.0/24 maxlen: 24
185.4.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390728092 (0x174a099c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Validity
Not Before: Jan 1 08:05:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5848f8c9c857ac48f3319b6d0411b108d5a14ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:19:f4:f1:8b:f6:e2:76:5f:a8:ba:11:b1:98:
9d:32:30:7e:3c:39:e8:35:9c:b9:b3:1e:ff:84:4e:
8d:1d:b8:01:7b:e2:a2:ea:26:03:d6:ba:41:20:61:
1b:0f:80:b2:78:01:e1:c4:bc:f3:74:a1:db:9b:1c:
ab:ae:e4:fc:6a:a9:e1:e7:99:97:69:a0:75:a4:48:
98:d9:e8:9a:1a:f6:ec:96:e4:50:e1:2a:d9:b5:53:
83:09:46:c8:6a:af:39:8a:61:d4:f9:3a:65:30:ce:
9e:f0:d3:e6:0a:b1:a9:a8:2f:0e:c4:12:6a:3e:05:
bf:b1:6d:aa:ee:73:27:c3:ed:90:b4:2a:22:36:c3:
36:71:80:a7:e2:00:6a:fe:a9:9e:8d:47:1a:0a:cb:
15:e1:ae:68:27:91:e5:18:86:27:0e:4f:24:f9:1e:
e5:5a:b4:3a:3f:ec:8e:51:6e:92:dd:c1:0c:25:24:
01:40:07:14:5c:78:38:19:a7:29:8f:b1:77:11:da:
c4:17:75:1b:7c:7c:8e:5f:ba:1a:e2:2e:60:8b:a0:
32:6a:2c:25:28:b7:04:4f:eb:61:d5:8a:05:bc:41:
05:61:6a:24:56:65:d6:5a:d3:df:ac:27:aa:89:53:
d9:ed:c5:88:5c:92:97:16:60:1f:05:64:c8:79:f9:
bc:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:48:F8:C9:C8:57:AC:48:F3:31:9B:6D:04:11:B1:08:D5:A1:4E:C4
X509v3 Authority Key Identifier:
keyid:91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/WEj4ychXrEjzMZttBBGxCNWhTsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.116.0/22
Signature Algorithm: sha256WithRSAEncryption
89:d2:fc:c0:bd:1a:ae:ed:5a:4a:85:27:4a:f2:16:28:2a:bb:
bb:ca:5c:ce:ed:76:15:1e:27:ec:86:1b:4d:1b:cc:db:40:9f:
5b:00:69:69:1a:52:c8:82:4f:e0:c3:fd:d6:43:bb:5a:c5:ee:
69:c6:fb:c5:3d:38:a6:fc:9a:ee:c4:c1:cd:3c:74:5d:0f:76:
2d:74:0d:52:ea:3d:05:33:72:86:5d:c6:7f:73:20:8b:d9:e3:
ad:90:62:6b:91:f5:bd:79:75:6b:62:d5:6d:55:4e:54:d6:77:
0f:32:6c:99:ad:6d:32:56:e8:99:b9:36:ef:ce:72:dd:35:15:
4c:6c:8d:d9:15:8d:2d:10:92:79:42:f9:4e:0b:a5:02:3a:8e:
9a:8b:f6:0a:16:11:5a:41:a3:0a:6f:e7:50:a7:c5:fe:b9:b0:
34:c8:e7:3f:1a:23:ed:0f:7d:e1:a4:36:2f:39:86:aa:45:93:
04:2a:7c:d6:ed:83:1b:75:ce:47:b9:ac:56:28:56:45:f8:ea:
98:6e:ec:5a:92:b8:63:f9:5c:05:26:af:29:39:fc:0e:1b:53:
f1:02:cc:7e:51:a1:e4:61:71:37:6e:a9:af:a1:50:21:7a:fa:
34:ab:87:7f:18:cb:03:07:3c:8d:11:de:b3:4a:66:88:e9:88:
ea:70:86:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:03 2023 by rpki-client on console-fra.rpki-client.org