Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/WgbjOskFm58Bshr6-bXJyDrsDpQ.roa
File: WgbjOskFm58Bshr6-bXJyDrsDpQ.roa (raw, json)
Hash identifier: LbG7fG5vlg/RZ6Wzogdl/yFNrNoeHZeFswFVEvvnw+Y=
Subject key identifier: 5A:06:E3:3A:C9:05:9B:9F:01:B2:1A:FA:F9:B5:C9:C8:3A:EC:0E:94
Certificate issuer: /CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae
Certificate serial: 012FBAB1
Authority key identifier: 89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/WgbjOskFm58Bshr6-bXJyDrsDpQ.roa
Signing time: Sun 03 Jul 2022 10:06:26 +0000
ROA not before: Sun 03 Jul 2022 10:06:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50710
IP address blocks: 185.118.96.0/22 maxlen: 22
185.118.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19905201 (0x12fbab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae
Validity
Not Before: Jul 3 10:06:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a06e33ac9059b9f01b21afaf9b5c9c83aec0e94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:dd:a3:06:0b:3c:76:97:cb:88:bb:94:a0:3f:
6f:e3:7a:47:58:02:00:f7:63:12:39:f9:39:fd:f6:
d1:df:28:c8:58:de:82:ea:b4:a6:99:d9:be:2a:11:
d4:a5:48:e3:c3:bf:d0:2d:06:6f:9f:d7:8b:64:88:
34:03:f5:01:50:38:67:b8:eb:0e:db:7a:80:27:9b:
8f:7d:c4:57:b8:3d:0e:fc:34:0a:c3:a5:46:36:dd:
da:ea:01:2f:08:b6:14:89:bf:00:ec:0f:19:9a:70:
7a:45:bf:4e:0b:ed:53:46:ae:27:3d:c9:26:3f:c7:
88:28:42:73:e5:72:78:37:fa:1d:52:bf:d4:4f:98:
21:9d:39:f5:c5:c1:08:75:1f:a0:9c:2b:c2:26:7f:
77:44:7f:53:07:6d:c3:34:e6:86:53:2c:c0:ff:55:
a4:51:81:cb:f5:9d:39:89:d4:f3:1f:02:12:ea:6d:
88:82:48:6f:31:0c:64:5e:39:e0:3e:38:a3:7c:58:
58:de:fa:b6:f5:47:ab:b1:5e:44:bc:36:bb:40:49:
e6:8f:67:7f:5f:bc:c5:20:66:24:22:d1:58:56:71:
96:75:71:cd:f1:24:57:4d:ec:50:76:c5:b8:4c:45:
89:36:c1:fe:3d:25:92:32:92:b9:66:12:0e:b7:fa:
06:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:06:E3:3A:C9:05:9B:9F:01:B2:1A:FA:F9:B5:C9:C8:3A:EC:0E:94
X509v3 Authority Key Identifier:
keyid:89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/WgbjOskFm58Bshr6-bXJyDrsDpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/iW7W5LXHwZ25jFdDKvTc9jC_YK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.96.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:ee:e4:3b:63:ac:fb:60:c1:65:b8:2b:22:a6:26:49:7f:cf:
4c:98:a7:98:4f:a3:e7:8e:7f:97:d6:61:b5:b1:40:32:30:80:
51:49:c2:78:00:c7:0e:ef:88:b2:0f:f3:43:0f:5b:30:c2:4d:
d5:49:f4:86:02:ff:e4:92:c1:ac:3c:da:f2:49:92:ba:74:37:
ec:2b:d3:18:29:ef:ce:12:99:1f:69:94:01:a4:03:93:00:8e:
06:54:1a:a5:42:4e:c2:88:1d:9a:0f:4f:12:ce:39:e6:c1:53:
0f:ec:a7:a2:32:dd:e8:64:b9:28:b3:a2:a9:be:4b:45:7d:bb:
1f:57:99:5a:56:bb:54:28:e7:af:28:da:f6:9e:26:6b:e1:5b:
3a:27:a5:f5:01:fb:de:18:bb:f4:68:ec:3e:a4:86:cd:dc:a3:
44:65:b8:93:0e:50:4e:87:06:86:bc:d8:cb:0d:88:10:1a:b3:
92:9d:23:31:4d:e4:8f:9a:e2:94:f9:9e:74:b2:15:b8:3c:83:
5b:68:7c:2c:e3:51:dd:f4:e1:fd:58:73:39:3a:37:59:07:70:
7b:84:c4:2a:68:b0:48:a9:17:61:cc:d1:69:26:a7:6e:cc:45:
88:5c:7a:ec:f9:e2:0b:2e:10:8d:b7:e0:b9:9e:32:d5:59:14:
f3:94:e4:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:07 2024 by rpki-client on console-ams.rpki-client.org