Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/wm2_oBEZofTPJuxHyJgJe5QTDrs.roa
File: wm2_oBEZofTPJuxHyJgJe5QTDrs.roa (raw, json)
Hash identifier: Klv0EdaU3ZqjDsSVTaSGERbvkCjxoQT/3yp5+zT0v3c=
Subject key identifier: C2:6D:BF:A0:11:19:A1:F4:CF:26:EC:47:C8:98:09:7B:94:13:0E:BB
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0183EA829E1F1B57579F45D4ABBC7EFB1E84
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/wm2_oBEZofTPJuxHyJgJe5QTDrs.roa
Signing time: Tue 18 Oct 2022 09:52:52 +0000
ROA not before: Tue 18 Oct 2022 09:52:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50007
IP address blocks: 45.8.204.0/24 maxlen: 24
85.208.104.0/24 maxlen: 24
2a09:f180::/48 maxlen: 48
2a09:98c0::/48 maxlen: 48
2a09:9940::/48 maxlen: 48
2a09:4040::/48 maxlen: 48
2a09:1140::/48 maxlen: 48
2a06:3b00::/48 maxlen: 48
2a09:6a80::/48 maxlen: 48
2a09:40c0::/48 maxlen: 48
2a09:9740::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ea:82:9e:1f:1b:57:57:9f:45:d4:ab:bc:7e:fb:1e:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Oct 18 09:52:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c26dbfa01119a1f4cf26ec47c898097b94130ebb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e5:f5:48:50:a5:a2:ff:a3:2a:58:d4:a7:9f:
70:04:12:1a:0c:7c:c8:64:fa:89:1e:20:50:23:ad:
df:b6:f0:04:37:41:13:7a:cc:55:6d:1f:88:7e:45:
5d:40:a9:21:c4:be:c4:a4:1a:f1:84:ba:7a:d4:f1:
fa:7a:67:5c:3a:a0:b9:f6:3c:4b:92:5f:95:f4:8c:
72:cc:75:67:f9:2f:bc:bd:95:a0:b1:71:4e:db:66:
f0:87:bd:fb:28:c9:99:b0:5c:86:9b:6c:2a:83:aa:
1e:de:f9:97:b2:30:9c:06:3e:13:90:0b:49:85:c5:
61:89:09:ca:03:5b:03:63:a6:c7:75:4d:df:4c:11:
66:2a:bd:c6:64:61:08:23:28:ca:6e:df:3c:ca:25:
ac:10:eb:c5:f7:c6:fc:a0:09:b8:8e:a4:92:33:4a:
5a:92:48:5e:bd:70:27:eb:65:2e:35:d9:95:26:6b:
a5:0a:d2:d9:bb:44:9e:c5:6c:b5:72:ec:ae:fc:21:
bc:67:91:c4:8f:94:b5:53:8b:9c:35:73:01:d5:fa:
23:9a:1d:c8:fc:b2:a7:62:02:fc:1f:f4:59:94:bd:
56:03:25:a5:15:0d:a5:d4:82:74:28:61:26:9c:38:
a5:32:2c:4a:85:cf:6a:4d:cd:03:7e:33:1b:81:30:
ea:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:6D:BF:A0:11:19:A1:F4:CF:26:EC:47:C8:98:09:7B:94:13:0E:BB
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/wm2_oBEZofTPJuxHyJgJe5QTDrs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.204.0/24
85.208.104.0/24
IPv6:
2a06:3b00::/48
2a09:1140::/48
2a09:4040::/48
2a09:40c0::/48
2a09:6a80::/48
2a09:9740::/48
2a09:98c0::/48
2a09:9940::/48
2a09:f180::/48
Signature Algorithm: sha256WithRSAEncryption
1c:54:d8:4e:28:17:fd:ab:18:b7:67:81:a8:a1:aa:27:6b:13:
45:14:f9:31:17:25:ed:b0:30:53:51:5f:5d:e9:5e:05:b3:10:
d5:8f:84:09:1c:de:be:00:54:c7:c8:38:1c:87:f9:39:fb:cb:
cf:d7:92:7a:93:8c:32:1b:a4:d6:3f:cf:c0:c0:0c:19:c9:71:
83:27:2a:0d:b3:72:8e:be:64:5a:fb:1f:ec:81:f3:25:7b:1f:
0e:75:5b:c8:79:8e:c4:b4:29:db:8d:53:6c:91:0f:51:a4:1a:
41:d7:a0:81:c8:77:54:e8:15:f8:a8:71:7f:fd:b5:bd:7e:83:
a4:be:f5:29:37:51:80:2a:49:35:8d:25:60:a7:07:99:d2:a5:
bf:f0:bd:66:c9:a8:c6:fc:f1:5e:ef:08:01:05:ba:49:df:74:
0d:ec:ac:41:73:d2:c0:68:95:2d:3e:84:6d:ff:ab:b4:e5:c0:
ac:22:0b:bf:f7:1d:f7:8f:d6:25:eb:1a:8b:8b:4d:8b:b4:47:
27:4e:1a:a6:9d:29:27:58:f9:3d:23:c3:42:19:63:1f:3c:6f:
1f:a0:3e:8b:28:1d:2f:57:0a:a9:05:99:10:71:37:3b:e1:86:
ba:db:1b:f4:a5:a8:36:1b:57:b6:d0:e9:3b:2a:5a:ae:90:4f:
dd:71:5d:97
-----BEGIN CERTIFICATE-----
MIIFXDCCBESgAwIBAgISAYPqgp4fG1dXn0XUq7x++x6EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjIxMDE4MDk1MjUyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMjZkYmZhMDExMTlhMWY0Y2YyNmVjNDdjODk4MDk3Yjk0MTMwZWJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhuX1SFClov+jKljUp59wBBIaDHzI
ZPqJHiBQI63ftvAEN0ETesxVbR+IfkVdQKkhxL7EpBrxhLp61PH6emdcOqC59jxL
kl+V9IxyzHVn+S+8vZWgsXFO22bwh737KMmZsFyGm2wqg6oe3vmXsjCcBj4TkAtJ
hcVhiQnKA1sDY6bHdU3fTBFmKr3GZGEIIyjKbt88yiWsEOvF98b8oAm4jqSSM0pa
kkhevXAn62UuNdmVJmulCtLZu0SexWy1cuyu/CG8Z5HEj5S1U4ucNXMB1fojmh3I
/LKnYgL8H/RZlL1WAyWlFQ2l1IJ0KGEmnDilMixKhc9qTc0DfjMbgTDqaQIDAQAB
o4ICaDCCAmQwHQYDVR0OBBYEFMJtv6ARGaH0zybsR8iYCXuUEw67MB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvd20yX29CRVpvZlRQSnV4SHlKZ0plNVFURHJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH4GCCsGAQUFBwEHAQH/BG8wbTASBAIAATAMAwQALQjMAwQA
VdBoMFcEAgACMFEDBwAqBjsAAAADBwAqCRFAAAADBwAqCUBAAAADBwAqCUDAAAAD
BwAqCWqAAAADBwAqCZdAAAADBwAqCZjAAAADBwAqCZlAAAADBwAqCfGAAAAwDQYJ
KoZIhvcNAQELBQADggEBABxU2E4oF/2rGLdngaihqidrE0UU+TEXJe2wMFNRX13p
XgWzENWPhAkc3r4AVMfIOByH+Tn7y8/XknqTjDIbpNY/z8DADBnJcYMnKg2zco6+
ZFr7H+yB8yV7Hw51W8h5jsS0KduNU2yRD1GkGkHXoIHId1ToFfiocX/9tb1+g6S+
9Sk3UYAqSTWNJWCnB5nSpb/wvWbJqMb88V7vCAEFuknfdA3srEFz0sBolS0+hG3/
q7TlwKwiC7/3HfeP1iXrGouLTYu0RydOGqadKSdY+T0jw0IZYx88bx+gPosoHS9X
CqkFmRBxNzvhhrrbG/SlqDYbV7bQ6TsqWq6QT91xXZc=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org