Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wyiohwTI8oxW8icwBIU59Td8WgQ.roa
File: wyiohwTI8oxW8icwBIU59Td8WgQ.roa (raw, json)
Hash identifier: IhpcLH0ux1Q6WdoJI6wAPkRKbLr3DHcz41IQ8lRehFg=
Subject key identifier: C3:28:A8:87:04:C8:F2:8C:56:F2:27:30:04:85:39:F5:37:7C:5A:04
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0901DD8F
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wyiohwTI8oxW8icwBIU59Td8WgQ.roa
Signing time: Wed 13 Apr 2022 11:54:37 +0000
ROA not before: Wed 13 Apr 2022 11:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.241.176.0/21 maxlen: 24
91.186.196.0/22 maxlen: 24
91.186.194.0/23 maxlen: 24
94.241.136.0/21 maxlen: 24
91.186.200.0/22 maxlen: 24
91.186.212.0/22 maxlen: 24
91.186.216.0/22 maxlen: 24
91.186.220.0/22 maxlen: 24
94.241.160.0/21 maxlen: 24
94.241.168.0/21 maxlen: 24
178.253.12.0/23 maxlen: 24
83.147.216.0/23 maxlen: 24
83.147.222.0/23 maxlen: 24
178.253.32.0/23 maxlen: 24
83.147.232.0/22 maxlen: 24
83.147.240.0/22 maxlen: 24
178.253.52.0/23 maxlen: 24
178.253.55.0/24 maxlen: 24
83.147.244.0/22 maxlen: 24
83.147.252.0/22 maxlen: 24
83.147.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151117199 (0x901dd8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Apr 13 11:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c328a88704c8f28c56f22730048539f5377c5a04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fa:82:d3:7a:d5:8f:36:51:10:bf:b8:dc:5a:
6d:dd:d9:90:1b:1a:0d:81:0b:2b:11:5c:9d:64:62:
70:d8:b6:5d:8d:f1:7a:a2:b8:24:bb:cb:8f:0d:54:
f5:4c:39:54:0c:f6:fb:fa:8c:db:bc:a3:b4:9a:5e:
b1:54:7e:82:53:5e:c2:2a:a7:dc:b0:45:07:2b:81:
e7:d4:10:fe:0a:88:d4:5c:cc:3b:be:ad:fc:30:bb:
b4:16:61:9a:e8:cc:c7:f6:dd:85:e5:9f:2c:24:37:
ff:91:ec:c7:2a:75:dc:fe:4e:d4:74:28:1c:8a:40:
7b:fc:85:4e:16:5e:b5:a9:55:2b:43:4a:38:8e:77:
e1:a8:3a:d3:f5:cd:0a:2b:c7:b0:fc:73:b3:5c:95:
2c:28:b6:be:29:6a:3d:93:a7:30:8e:85:f5:2f:30:
0c:8a:1a:60:f2:fe:bc:73:5e:95:04:b4:ac:76:49:
65:70:9e:b6:2d:b5:59:1d:57:2e:f3:bf:14:89:e3:
b8:c6:9d:01:02:f4:03:40:ce:a1:2e:c8:d2:5f:8e:
64:6f:f2:4c:e8:0f:0e:9e:1a:a3:7b:d2:2e:25:23:
77:80:f7:91:30:2f:02:7e:2a:3f:84:50:51:e8:d7:
9f:e4:8b:12:54:90:a8:1d:ed:57:97:fa:73:e5:d2:
9a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:28:A8:87:04:C8:F2:8C:56:F2:27:30:04:85:39:F5:37:7C:5A:04
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wyiohwTI8oxW8icwBIU59Td8WgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.216.0/23
83.147.222.0/23
83.147.232.0/22
83.147.240.0/20
91.186.194.0-91.186.203.255
91.186.212.0-91.186.223.255
94.241.136.0/21
94.241.160.0-94.241.183.255
178.253.12.0/23
178.253.32.0/23
178.253.52.0/23
178.253.55.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:fa:21:f5:fa:cb:28:d1:59:6a:88:6c:37:56:13:fe:4b:60:
dd:aa:e4:11:e3:a8:cb:06:9d:83:e9:54:33:d5:bc:99:0a:88:
33:6b:c8:31:a5:60:69:d1:c7:f2:ac:2d:a5:8b:89:31:46:c2:
4c:81:dc:61:14:f6:00:ff:f6:c1:5d:7c:73:5a:55:c9:67:4b:
2a:93:d5:64:7c:cf:35:21:dc:f8:2a:48:30:95:53:b4:91:0c:
b8:66:80:e2:9a:8b:d4:54:fb:24:6d:58:08:35:fe:1e:f5:59:
42:d4:3b:bd:aa:f3:c9:b2:d0:91:a5:0d:de:df:2f:f7:a6:f6:
06:4c:87:c9:81:27:da:bd:57:ec:16:24:64:d1:bd:ac:f5:00:
08:e2:57:e5:c7:2f:cb:b6:2f:35:7d:23:e5:fa:98:0d:f5:b0:
fc:3b:1f:29:4a:44:42:cc:a5:40:eb:86:b6:a7:71:12:98:19:
ee:4f:f8:c2:e9:29:1d:e5:8e:52:31:33:6c:6d:e0:84:07:6f:
cd:59:37:60:f3:91:94:7e:c3:8e:86:33:5d:1a:67:9d:5b:2c:
06:e3:9c:eb:1d:9a:76:74:a6:09:b7:5b:3f:e1:7e:f7:b6:82:
df:a4:d6:c6:f3:f1:d5:7e:72:e5:04:a0:f5:a6:f9:ea:e3:b5:
26:80:d4:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:10 2024 by rpki-client on console-fra.rpki-client.org