Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/9355b9-73d4-4c4c-9601-f01a2f58ef88/1/WJ60M4JGVWY_YFZyElvLfPEm5Mo.roa
File: WJ60M4JGVWY_YFZyElvLfPEm5Mo.roa (raw, json)
Hash identifier: YiOBUTQNxmRdSJi2331FkAhnKlbkMXmgfX20spgvUO8=
Subject key identifier: 58:9E:B4:33:82:46:55:66:3F:60:56:72:12:5B:CB:7C:F1:26:E4:CA
Certificate issuer: /CN=8ad47baa9aa6e0a20ad995a79c2a8de604f9aa37
Certificate serial: 05732026
Authority key identifier: 8A:D4:7B:AA:9A:A6:E0:A2:0A:D9:95:A7:9C:2A:8D:E6:04:F9:AA:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itR7qpqm4KIK2ZWnnCqN5gT5qjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/9355b9-73d4-4c4c-9601-f01a2f58ef88/1/WJ60M4JGVWY_YFZyElvLfPEm5Mo.roa
Signing time: Sat 01 Jan 2022 13:07:00 +0000
ROA not before: Sat 01 Jan 2022 13:07:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199143
IP address blocks: 5.158.217.0/24 maxlen: 24
5.158.216.0/24 maxlen: 24
5.158.219.0/24 maxlen: 24
5.158.218.0/24 maxlen: 24
5.158.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91430950 (0x5732026)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad47baa9aa6e0a20ad995a79c2a8de604f9aa37
Validity
Not Before: Jan 1 13:07:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=589eb433824655663f605672125bcb7cf126e4ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:43:54:48:af:55:4a:7d:b7:cb:32:57:b0:51:
08:1d:65:24:4b:d3:3a:e3:62:4b:49:09:fe:b0:f0:
d1:23:54:15:ca:84:1f:29:71:c5:4d:c6:5c:7f:0d:
57:3d:56:05:3c:dc:9d:92:aa:49:1e:59:fe:f0:8b:
0f:9d:bc:77:9b:48:a9:6d:be:86:94:75:34:d0:89:
22:b2:f8:b8:96:6b:3f:f9:e9:7f:e1:a7:d9:8f:1d:
e3:0f:ef:10:7b:b7:69:ce:dd:ea:d9:55:f9:ee:d6:
30:d0:51:72:a4:c8:c4:16:89:5f:d4:86:93:9d:dc:
57:dc:1d:d9:98:ae:b8:cc:7c:40:e3:bb:c6:02:f7:
2f:72:4b:c3:67:e6:c2:d3:7f:aa:92:c5:9d:c0:4c:
92:16:a7:bf:fe:14:88:3e:6a:44:9d:63:1f:48:4e:
cd:0b:d9:fc:67:77:63:e4:74:3a:e0:94:c9:75:c1:
43:f5:0b:ae:b9:67:bf:d3:28:5e:33:ec:81:24:40:
2c:25:2d:de:40:61:91:c0:02:6a:b8:64:68:94:fb:
be:ce:58:29:a0:2e:fa:22:47:79:1a:26:be:17:b4:
aa:5e:ca:1a:ce:63:18:93:0f:fc:6d:2e:b3:e5:01:
db:64:7c:75:eb:f6:bb:56:02:58:76:2f:5d:2d:30:
1b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:9E:B4:33:82:46:55:66:3F:60:56:72:12:5B:CB:7C:F1:26:E4:CA
X509v3 Authority Key Identifier:
keyid:8A:D4:7B:AA:9A:A6:E0:A2:0A:D9:95:A7:9C:2A:8D:E6:04:F9:AA:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itR7qpqm4KIK2ZWnnCqN5gT5qjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/9355b9-73d4-4c4c-9601-f01a2f58ef88/1/WJ60M4JGVWY_YFZyElvLfPEm5Mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/9355b9-73d4-4c4c-9601-f01a2f58ef88/1/itR7qpqm4KIK2ZWnnCqN5gT5qjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.158.216.0-5.158.220.255
Signature Algorithm: sha256WithRSAEncryption
7b:c7:13:4f:09:9c:29:9c:d8:6f:68:d8:b9:0a:8f:3e:5f:77:
75:87:17:a9:4a:be:5d:38:aa:5d:1b:e0:9e:a7:16:f1:fa:3b:
46:a2:83:7f:7d:81:a2:d6:8f:6e:bf:e7:55:9f:63:06:a8:df:
fd:91:c3:1d:d8:97:43:f5:4a:47:ec:b1:b2:3f:35:2c:6a:d2:
6f:6c:12:9d:ab:ec:6e:8d:aa:ba:b8:43:13:9a:66:79:fe:9d:
8a:7d:3d:17:83:d5:78:98:a6:f0:e6:b9:c3:b7:6b:3a:c8:92:
a6:a7:a5:e6:d9:42:c9:f2:98:94:46:46:84:7f:1b:f2:68:42:
90:d1:91:07:9a:33:4e:56:0a:17:62:42:a4:66:35:97:7d:26:
fa:85:be:f6:a4:5a:87:6a:44:28:20:11:80:36:a6:0c:1d:42:
ef:ef:8d:33:c2:de:f7:17:13:2a:83:09:44:41:d5:9e:c8:71:
b3:7a:a5:f9:e0:b0:5d:c3:62:c6:9a:ac:7f:ac:b4:fe:62:f4:
c6:96:01:98:a0:7a:ee:bc:5d:3d:2f:79:2c:c5:b7:75:9e:f6:
86:a6:71:55:10:41:56:2b:e9:10:08:cb:2b:88:aa:ca:3a:59:
d9:57:49:37:45:af:23:f2:10:47:a3:d6:51:25:d3:3f:e5:2b:
55:f1:58:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:17 2024 by rpki-client on console-fra.rpki-client.org