Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/wwfdfWXKrflj-p9Z3gOFmk6_BlI.roa
File: wwfdfWXKrflj-p9Z3gOFmk6_BlI.roa (raw, json)
Hash identifier: l+IKAsXxZO47QcS9xWme809kwt4mGWWqDNZNCmexwEA=
Subject key identifier: C3:07:DD:7D:65:CA:AD:F9:63:FA:9F:59:DE:03:85:9A:4E:BF:06:52
Certificate issuer: /CN=44c0f2a2a56007e4c45ccc71e7da092861305b20
Certificate serial: 0F77874D
Authority key identifier: 44:C0:F2:A2:A5:60:07:E4:C4:5C:CC:71:E7:DA:09:28:61:30:5B:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RMDyoqVgB-TEXMxx59oJKGEwWyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/wwfdfWXKrflj-p9Z3gOFmk6_BlI.roa
Signing time: Sat 01 Jan 2022 05:59:28 +0000
ROA not before: Sat 01 Jan 2022 05:59:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42525
IP address blocks: 185.19.232.0/22 maxlen: 22
213.146.64.0/19 maxlen: 19
2a00:4960::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 259491661 (0xf77874d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44c0f2a2a56007e4c45ccc71e7da092861305b20
Validity
Not Before: Jan 1 05:59:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c307dd7d65caadf963fa9f59de03859a4ebf0652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4c:cf:6c:7a:25:8d:ef:18:83:4c:53:8e:92:
a3:75:3d:6d:48:d6:a7:91:d9:4b:04:d3:2e:d6:a6:
cf:82:66:cb:60:fa:fc:88:31:74:e7:05:a4:f5:09:
a7:0b:45:1f:f4:ed:44:17:8c:04:c0:00:e1:c3:e5:
8c:e9:b7:02:4a:63:80:a4:6a:96:de:2e:b7:2d:fa:
b3:0e:e2:6c:14:65:17:e3:b3:f3:f8:67:1e:72:2c:
c3:d9:52:58:fb:9b:e1:3c:56:35:2f:02:6d:3c:a9:
3b:a1:b2:85:da:f5:6d:31:aa:b0:ae:5a:cd:f3:20:
60:86:7d:05:68:30:6b:33:1b:56:e6:44:2d:42:11:
61:24:2f:74:bb:10:f6:53:57:d8:7f:e4:e1:9c:81:
55:a8:61:a1:0e:1e:c5:2e:39:a1:d8:87:88:5d:c7:
d2:79:f4:b0:97:3a:dd:ea:28:73:65:fb:24:92:2c:
7d:eb:bc:1c:a8:78:5f:63:aa:a7:cb:6c:bb:e2:fc:
13:ed:2e:ac:97:0d:dd:e3:e0:c7:26:d7:59:1d:b6:
6b:79:5c:0c:e0:65:9a:81:23:dd:2d:00:45:ce:28:
dc:c4:78:e2:a8:a1:35:35:2d:2c:21:c0:e7:70:ef:
8e:b5:a4:3b:70:ab:43:9b:e0:5b:17:93:50:6e:1a:
35:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:07:DD:7D:65:CA:AD:F9:63:FA:9F:59:DE:03:85:9A:4E:BF:06:52
X509v3 Authority Key Identifier:
keyid:44:C0:F2:A2:A5:60:07:E4:C4:5C:CC:71:E7:DA:09:28:61:30:5B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RMDyoqVgB-TEXMxx59oJKGEwWyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/wwfdfWXKrflj-p9Z3gOFmk6_BlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b8058e-4eba-4cc4-8c1d-9c84f2fdd8f0/1/RMDyoqVgB-TEXMxx59oJKGEwWyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.232.0/22
213.146.64.0/19
IPv6:
2a00:4960::/32
Signature Algorithm: sha256WithRSAEncryption
8d:99:a1:c4:2d:1a:c3:0b:1e:cc:45:3c:b1:72:81:5a:b7:40:
8a:57:2b:1f:55:c1:1c:06:b5:ff:57:19:4c:61:c1:32:cf:5e:
92:26:d8:17:d6:41:90:1b:4c:60:47:49:2b:01:c3:15:f3:b3:
b7:af:79:24:1c:6d:85:1f:80:1a:a6:81:2f:b6:85:c8:1a:90:
25:20:9f:60:06:45:19:22:4a:19:fd:fc:7c:61:a9:ff:35:ab:
23:e9:34:8e:e0:f4:af:64:77:de:d8:aa:77:0c:ba:5a:bc:60:
ee:69:5f:d0:10:71:7d:b6:71:a0:9d:ee:bd:8b:30:22:c6:0b:
c4:e1:9f:b2:65:12:c1:ad:82:ca:6e:9e:e0:9e:68:de:b8:a0:
16:74:28:77:fa:87:e5:68:6c:dc:57:3e:7c:2c:e7:5a:5b:71:
f2:93:d0:14:bb:25:9b:61:1d:75:bf:ce:47:7a:59:32:11:5a:
01:e1:d3:f5:5c:a6:ec:dc:1b:b5:65:ba:3d:16:57:f3:8a:b4:
86:4a:27:b9:87:1c:6e:03:3a:8d:8d:6b:3c:12:af:f1:f3:37:
08:34:6f:53:d9:79:5b:1e:21:4f:d9:a3:cc:95:14:e7:4e:76:
66:ef:39:71:af:79:5e:db:3d:70:61:fc:92:d4:9e:e7:ec:74:
42:e6:ac:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:20 2024 by rpki-client on console-fra.rpki-client.org