Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/c309ec-3254-4200-9a5e-ab42b4c93ed9/1/WCBqvgnQ-i3Q1ZSEfRZdLlRV6E0.roa
File: WCBqvgnQ-i3Q1ZSEfRZdLlRV6E0.roa (raw, json)
Hash identifier: 8lPK+37PebU6nuO5NzYONJcpDjHSjCMw7w2fp0XyGik=
Subject key identifier: 58:20:6A:BE:09:D0:FA:2D:D0:D5:94:84:7D:16:5D:2E:54:55:E8:4D
Certificate issuer: /CN=d20542a6135524142194caa708e7db2cca6b4e63
Certificate serial: 01856FC2746B2963D07889E8C348BDEAD672
Authority key identifier: D2:05:42:A6:13:55:24:14:21:94:CA:A7:08:E7:DB:2C:CA:6B:4E:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0gVCphNVJBQhlMqnCOfbLMprTmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/c309ec-3254-4200-9a5e-ab42b4c93ed9/1/WCBqvgnQ-i3Q1ZSEfRZdLlRV6E0.roa
Signing time: Sun 01 Jan 2023 23:54:52 +0000
ROA not before: Sun 01 Jan 2023 23:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204565
IP address blocks: 185.242.37.0/24 maxlen: 24
185.242.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:74:6b:29:63:d0:78:89:e8:c3:48:bd:ea:d6:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d20542a6135524142194caa708e7db2cca6b4e63
Validity
Not Before: Jan 1 23:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58206abe09d0fa2dd0d594847d165d2e5455e84d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:eb:de:2d:c7:53:46:a1:51:a8:25:2d:de:49:
7c:a4:e6:94:1e:37:04:09:dc:ee:42:ff:33:0c:58:
c2:24:22:d4:c8:54:4e:64:83:cb:d3:f5:26:4a:3e:
3a:b7:ba:85:c2:3f:e6:b0:b8:26:56:c3:49:5c:3f:
a8:03:e1:4b:2e:73:5a:cf:10:a5:a8:c6:b5:36:2a:
6a:a4:07:a7:07:60:c9:a5:16:13:1e:89:8f:96:b2:
f2:de:9d:08:34:d1:14:b2:34:9e:82:ed:92:4d:c8:
eb:0c:32:fe:42:43:ec:d3:f2:9d:89:39:a2:02:73:
f3:ae:db:78:e3:4d:a8:13:8a:c3:a8:8e:fe:84:0c:
91:ce:0b:ca:53:92:cb:25:7f:b8:e7:2d:d5:cb:20:
95:71:f7:8e:71:5e:2e:be:c9:e9:45:cc:3e:d8:7d:
8d:29:dc:11:6d:10:2e:12:77:eb:4b:73:a5:96:27:
5a:b3:0d:b0:39:b9:d9:27:c3:f9:49:19:34:e5:bc:
fa:65:81:e0:2b:72:0b:4e:ec:74:12:6b:ae:57:14:
66:1b:65:a8:50:1b:cf:ad:65:1f:5c:21:22:55:b0:
ad:39:f9:6e:bc:26:c1:50:7a:87:e5:71:1d:0a:5d:
7f:d2:7c:68:13:26:f4:a5:af:4a:2a:6d:14:b6:d1:
5a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:20:6A:BE:09:D0:FA:2D:D0:D5:94:84:7D:16:5D:2E:54:55:E8:4D
X509v3 Authority Key Identifier:
keyid:D2:05:42:A6:13:55:24:14:21:94:CA:A7:08:E7:DB:2C:CA:6B:4E:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0gVCphNVJBQhlMqnCOfbLMprTmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c309ec-3254-4200-9a5e-ab42b4c93ed9/1/WCBqvgnQ-i3Q1ZSEfRZdLlRV6E0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c309ec-3254-4200-9a5e-ab42b4c93ed9/1/0gVCphNVJBQhlMqnCOfbLMprTmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.36.0/23
Signature Algorithm: sha256WithRSAEncryption
96:0b:f5:c1:06:bd:19:61:ba:bf:ab:25:42:c1:f2:18:bc:4d:
9f:00:9b:93:43:6b:a0:11:07:77:a5:47:e1:59:c2:71:d8:02:
c5:ee:f5:03:d3:f4:c9:b0:74:49:b8:77:55:60:88:50:0e:54:
39:6b:45:46:36:11:04:7a:23:f5:10:7c:cb:f9:d1:d2:1e:70:
23:e9:66:bc:bb:ba:76:ec:1a:33:1f:5e:76:c8:61:76:34:31:
17:ca:77:ba:af:1f:e7:9b:5a:fc:72:61:68:4a:01:e8:62:b0:
10:31:0e:b7:ed:a7:26:96:eb:97:f2:15:75:b7:3c:5a:8b:9d:
49:27:84:cc:79:a1:31:11:a3:8f:94:6f:9b:e4:18:26:52:ee:
cf:1d:e9:31:0b:2a:80:43:55:32:af:3c:e9:7e:d2:82:ba:e2:
2b:02:e0:ad:20:25:b4:47:6a:8f:cc:8c:8c:51:bf:de:a3:80:
23:3e:42:85:30:a8:1b:f1:04:14:e1:1a:e6:c0:41:e8:79:9b:
0a:ac:42:88:c6:a1:d8:ff:60:b6:d5:75:c3:3b:7b:17:21:68:
0f:6d:39:88:c5:11:05:58:17:c8:79:94:36:19:5d:47:82:34:
29:80:e2:71:98:3a:6f:40:01:a0:5b:09:8e:f9:8f:3d:14:b9:
ee:59:dc:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:25:22 2025 by rpki-client