Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/wgG-4DnLjb03QNaRyOZLfQwcvK8.roa
File: wgG-4DnLjb03QNaRyOZLfQwcvK8.roa (raw, json)
Hash identifier: Lu8aGvpcbTtejZB46NX4WH49gexX2L11zwzY3DFew3k=
Subject key identifier: C2:01:BE:E0:39:CB:8D:BD:37:40:D6:91:C8:E6:4B:7D:0C:1C:BC:AF
Certificate issuer: /CN=7a43253a368fc6475853971ba9235be0233d8b7c
Certificate serial: 01B5A225
Authority key identifier: 7A:43:25:3A:36:8F:C6:47:58:53:97:1B:A9:23:5B:E0:23:3D:8B:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/wgG-4DnLjb03QNaRyOZLfQwcvK8.roa
Signing time: Sat 01 Jan 2022 09:55:28 +0000
ROA not before: Sat 01 Jan 2022 09:55:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198682
IP address blocks: 185.249.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28680741 (0x1b5a225)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a43253a368fc6475853971ba9235be0233d8b7c
Validity
Not Before: Jan 1 09:55:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c201bee039cb8dbd3740d691c8e64b7d0c1cbcaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:93:48:b5:e7:58:e7:70:7d:7d:57:24:f9:55:
ae:ec:0b:dd:db:24:31:b6:f0:5b:12:21:a3:b1:39:
34:a4:4d:f2:7a:c8:6c:e4:53:9d:b3:3b:10:02:cd:
1c:42:af:d7:b1:78:1b:c7:1c:70:e1:88:10:af:d9:
11:44:32:ac:87:6e:b5:3c:1c:ec:fc:df:4c:a3:ba:
dd:b0:0a:ff:56:7b:a2:b3:02:dc:92:d9:bc:85:86:
32:34:9c:2d:bf:ed:be:a3:de:ad:36:2b:0a:22:87:
8d:d6:4e:78:f9:49:e5:47:15:67:ef:46:c6:fe:70:
1e:2d:3d:38:23:dc:eb:09:99:08:22:e2:10:01:ed:
06:5e:b4:27:da:0f:c5:87:af:49:6c:f2:67:86:76:
62:8b:c4:94:1c:0e:5f:84:dc:85:29:47:be:e2:53:
0d:4d:7d:89:da:f7:b5:38:1f:91:22:57:56:e6:b2:
24:de:78:50:88:c1:d9:a7:5d:98:44:e2:33:c1:c1:
62:5a:b8:bb:1d:53:22:79:bf:a6:47:9a:15:4c:06:
96:64:b3:4c:df:b5:f0:66:e6:3c:7f:49:07:21:25:
b5:fc:6a:be:2b:16:49:d0:3a:26:3b:18:b5:4c:3c:
a5:66:8c:57:a0:5c:1f:dc:1c:6e:61:bc:7c:2c:a8:
06:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:01:BE:E0:39:CB:8D:BD:37:40:D6:91:C8:E6:4B:7D:0C:1C:BC:AF
X509v3 Authority Key Identifier:
keyid:7A:43:25:3A:36:8F:C6:47:58:53:97:1B:A9:23:5B:E0:23:3D:8B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/wgG-4DnLjb03QNaRyOZLfQwcvK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.32.0/22
Signature Algorithm: sha256WithRSAEncryption
33:f0:3a:05:d8:b4:69:d2:22:7a:8f:98:1e:30:ab:a8:c4:85:
0c:c7:d1:72:ac:82:62:a1:3e:a4:c0:b7:d8:00:cf:96:0e:0a:
97:b1:24:65:d5:d3:01:b7:d3:b7:de:13:4c:89:c2:ef:80:5b:
50:c6:d2:34:1f:d8:84:fb:f5:e1:da:cf:01:e4:3c:ad:39:46:
94:de:2c:47:f8:af:72:2f:60:39:43:5b:de:16:fd:cd:da:b8:
f6:b6:3e:dd:59:bd:57:38:56:73:da:a6:85:c2:fb:97:ea:89:
b6:69:1d:f4:e5:cd:90:96:93:11:ce:09:39:e4:51:a7:ea:b8:
9e:c2:a4:c1:8d:09:57:1b:0e:35:4d:c2:ad:7d:1c:18:fd:94:
84:ad:4e:ef:d1:e4:d4:51:d9:91:af:24:1b:62:67:fa:db:5b:
eb:8d:5a:a5:52:a4:6e:ab:7d:6e:83:80:16:cc:b8:82:d0:e9:
3a:ac:7d:3d:62:e6:f9:55:cb:01:e1:1b:bf:80:7c:4b:9c:57:
ae:f7:32:3c:78:15:ac:7b:8e:62:cd:20:ec:87:6f:64:c1:31:
37:86:ec:2c:ea:dd:b0:62:37:18:03:81:ca:95:af:5d:8e:02:
28:4f:f8:34:b7:e5:90:bc:e0:8b:66:7a:83:a6:20:0e:0c:a8:
bc:b7:bb:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:11 2024 by rpki-client on console-ams.rpki-client.org