Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/WuBgQ7M22DrQyaTdamkSEru4eJc.roa
File: WuBgQ7M22DrQyaTdamkSEru4eJc.roa (raw, json)
Hash identifier: EpOxmIhh+YuQhCLXDmqlqadfpsSAM6JGNvjK0r+qbVM=
Subject key identifier: 5A:E0:60:43:B3:36:D8:3A:D0:C9:A4:DD:6A:69:12:12:BB:B8:78:97
Certificate issuer: /CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Certificate serial: 0BBA8961
Authority key identifier: D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/WuBgQ7M22DrQyaTdamkSEru4eJc.roa
Signing time: Wed 23 Feb 2022 13:34:34 +0000
ROA not before: Wed 23 Feb 2022 13:34:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56910
IP address blocks: 185.36.232.0/22 maxlen: 24
185.4.236.0/22 maxlen: 24
31.177.56.0/21 maxlen: 24
185.109.16.0/22 maxlen: 24
185.106.36.0/22 maxlen: 24
188.214.127.0/24 maxlen: 24
2a04:3e00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196774241 (0xbba8961)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Validity
Not Before: Feb 23 13:34:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ae06043b336d83ad0c9a4dd6a691212bbb87897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:80:b0:58:53:fa:90:ce:25:65:54:f7:d8:c6:
bc:d3:18:32:f2:7f:13:90:2a:23:18:2c:e3:d1:a7:
95:7f:20:22:77:ba:43:27:e4:7d:c2:ac:14:b9:38:
87:24:bb:45:ae:02:fc:fd:55:33:62:20:d9:db:65:
4a:c4:1e:02:6d:97:16:f7:61:ba:4a:47:5f:c3:c1:
00:01:12:13:ca:22:1a:5e:eb:1c:4f:aa:26:31:43:
47:a7:bc:d3:1a:0d:34:b3:2e:60:84:3d:e7:6b:9d:
a6:85:65:2d:7b:f0:68:49:07:4b:58:85:ad:ac:fe:
38:d7:d7:0d:76:03:ee:b9:39:80:f8:06:3c:dd:fd:
5d:bc:28:5b:de:ce:c5:7b:08:82:d8:27:d9:ce:16:
87:02:96:fa:30:49:c5:65:b9:ed:88:ea:52:f7:8d:
b6:81:8b:7a:fd:5b:1b:96:c0:63:64:44:30:c1:f3:
49:93:08:c0:1b:1a:e4:e4:5c:b3:9b:c2:06:bb:42:
46:34:90:d5:81:82:7d:02:6e:71:bb:5d:37:2b:b6:
75:ea:f0:b5:36:61:3c:73:bd:55:0e:87:9d:cf:3e:
4d:cf:40:9e:4a:e3:86:30:63:f0:f6:e7:8f:4e:c2:
83:33:33:16:90:64:1b:b9:70:e4:a2:cc:31:0b:af:
7b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:E0:60:43:B3:36:D8:3A:D0:C9:A4:DD:6A:69:12:12:BB:B8:78:97
X509v3 Authority Key Identifier:
keyid:D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/WuBgQ7M22DrQyaTdamkSEru4eJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.177.56.0/21
185.4.236.0/22
185.36.232.0/22
185.106.36.0/22
185.109.16.0/22
188.214.127.0/24
IPv6:
2a04:3e00::/29
Signature Algorithm: sha256WithRSAEncryption
5a:cc:8d:92:54:fc:37:58:0e:35:7e:7f:2f:49:c0:d9:58:dd:
de:27:a8:f1:ea:b1:ba:da:74:3a:b5:c7:36:b5:db:03:78:7f:
e3:66:c4:4a:d0:92:70:b4:62:47:1f:0e:d3:3c:27:23:ed:c9:
fa:4b:5a:08:cb:c2:51:fd:2e:12:be:cd:07:11:b2:e4:48:20:
76:ff:33:35:65:27:87:b2:15:cc:65:15:7b:d7:19:d2:89:65:
2a:79:4e:7f:64:8b:e7:3b:5f:04:c1:8e:2f:4d:97:1f:61:9c:
90:c2:f5:0d:09:8a:6c:a5:ba:9d:28:31:92:c4:ac:c9:0a:1c:
2b:8f:35:39:ce:51:bf:95:47:ca:35:48:c3:9d:44:9f:11:d8:
d6:27:8f:43:60:2d:1f:f7:1b:c3:fd:71:cb:ce:8a:68:f9:c6:
ed:5b:ec:96:e0:2a:03:17:c8:a8:cd:44:0e:25:7c:23:c8:d9:
b7:6f:f2:74:70:f1:d0:0b:3c:9c:33:72:24:fa:d6:31:13:4f:
73:db:dd:a4:3f:25:a2:db:58:6d:c1:62:9c:08:f4:b7:15:a4:
5b:90:d8:32:37:46:e0:4f:c4:05:85:c7:83:d6:d3:72:ba:bc:
1f:06:7e:0a:6d:7d:06:34:2a:93:74:b0:39:ba:29:6d:a6:a9:
15:98:bf:47
-----BEGIN CERTIFICATE-----
MIIFHDCCBASgAwIBAgIEC7qJYTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MzYwMGNiYWZkMjZmZWU1MDY0ZmM4OWYzMDFkZmM4ZTNjMWQzY2E1MB4XDTIyMDIy
MzEzMzQzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWFlMDYwNDNiMzM2
ZDgzYWQwYzlhNGRkNmE2OTEyMTJiYmI4Nzg5NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANaAsFhT+pDOJWVU99jGvNMYMvJ/E5AqIxgs49GnlX8gIne6
QyfkfcKsFLk4hyS7Ra4C/P1VM2Ig2dtlSsQeAm2XFvdhukpHX8PBAAESE8oiGl7r
HE+qJjFDR6e80xoNNLMuYIQ952udpoVlLXvwaEkHS1iFraz+ONfXDXYD7rk5gPgG
PN39XbwoW97OxXsIgtgn2c4WhwKW+jBJxWW57YjqUveNtoGLev1bG5bAY2REMMHz
SZMIwBsa5ORcs5vCBrtCRjSQ1YGCfQJucbtdNyu2derwtTZhPHO9VQ6Hnc8+Tc9A
nkrjhjBj8Pbnj07CgzMzFpBkG7lw5KLMMQuvez8CAwEAAaOCAjYwggIyMB0GA1Ud
DgQWBBRa4GBDszbYOtDJpN1qaRISu7h4lzAfBgNVHSMEGDAWgBTTYAy6/Sb+5QZP
yJ8wHfyOPB08pTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzAyQU11djBtX3VVR1Q4aWZNQjM4amp3ZFBLVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvYjcwNjU4LWUxZGMtNDk0NC1hMDZiLTFjNjgwYWRmN2EyNi8x
L1d1QmdRN00yMkRyUXlhVGRhbWtTRXJ1NGVKYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
YjcwNjU4LWUxZGMtNDk0NC1hMDZiLTFjNjgwYWRmN2EyNi8xLzAyQU11djBtX3VV
R1Q4aWZNQjM4amp3ZFBLVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBM
BggrBgEFBQcBBwEB/wQ9MDswKgQCAAEwJAMEAx+xOAMEArkE7AMEArkk6AMEArlq
JAMEArltEAMEALzWfzANBAIAAjAHAwUDKgQ+ADANBgkqhkiG9w0BAQsFAAOCAQEA
WsyNklT8N1gONX5/L0nA2Vjd3ieo8eqxutp0OrXHNrXbA3h/42bEStCScLRiRx8O
0zwnI+3J+ktaCMvCUf0uEr7NBxGy5Eggdv8zNWUnh7IVzGUVe9cZ0ollKnlOf2SL
5ztfBMGOL02XH2GckML1DQmKbKW6nSgxksSsyQocK481Oc5Rv5VHyjVIw51EnxHY
1iePQ2AtH/cbw/1xy86KaPnG7VvsluAqAxfIqM1EDiV8I8jZt2/ydHDx0As8nDNy
JPrWMRNPc9vdpD8lottYbcFinAj0txWkW5DYMjdG4E/EBYXHg9bTcrq8HwZ+Cm19
BjQqk3SwObopbaapFZi/Rw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:30 2024 by rpki-client on console-fra.rpki-client.org