Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/546c7e-d840-4e54-9223-534ebeef3389/1/WEXPaaQL32i-C4RK1ikxg2vyWCE.roa
File: WEXPaaQL32i-C4RK1ikxg2vyWCE.roa (raw, json)
Hash identifier: 2h4sNVTnZvkG6U3LBuibBsNHQcuq2XR/BP3KdqcMC6E=
Subject key identifier: 58:45:CF:69:A4:0B:DF:68:BE:0B:84:4A:D6:29:31:83:6B:F2:58:21
Certificate issuer: /CN=10eedc33aa442907189f0b3c563836951fb185bb
Certificate serial: 092A26FE
Authority key identifier: 10:EE:DC:33:AA:44:29:07:18:9F:0B:3C:56:38:36:95:1F:B1:85:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EO7cM6pEKQcYnws8Vjg2lR-xhbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/546c7e-d840-4e54-9223-534ebeef3389/1/WEXPaaQL32i-C4RK1ikxg2vyWCE.roa
Signing time: Sat 01 Jan 2022 13:54:37 +0000
ROA not before: Sat 01 Jan 2022 13:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207094
IP address blocks: 185.165.220.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153757438 (0x92a26fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10eedc33aa442907189f0b3c563836951fb185bb
Validity
Not Before: Jan 1 13:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5845cf69a40bdf68be0b844ad62931836bf25821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:28:27:43:5d:97:77:7c:a1:8c:64:5c:bb:b3:
5d:54:b8:d8:b3:7e:09:ec:da:2a:d5:90:30:34:f4:
36:e7:4e:1c:96:69:03:ba:19:d1:64:98:97:53:4b:
75:23:4e:e8:5c:47:36:e0:e1:ff:af:91:1a:ce:d5:
3d:1a:ab:af:ff:6d:c2:1b:62:9e:b6:be:cd:65:fd:
59:b5:b0:74:0d:d4:08:c1:2e:31:d4:c7:44:db:cd:
01:82:12:cf:88:df:4b:c7:24:ae:41:fb:cc:04:db:
e4:74:c2:4f:f7:e2:dd:19:96:4e:47:5d:b7:f9:1e:
3e:5e:bc:3d:41:61:4e:13:d4:4a:a8:02:c8:24:f5:
b1:81:9a:78:71:1e:f9:ef:2f:4c:5b:14:3e:4d:bf:
4e:f0:1d:cd:18:ed:bd:3e:2c:d4:c3:ce:b4:01:3f:
eb:4c:a2:b5:00:3c:01:d5:1e:c9:42:4e:f3:77:9b:
1f:de:4f:a5:45:6b:f3:f4:5e:7a:7e:a7:1f:ab:ce:
ce:e0:b8:21:ef:32:49:c8:0a:98:d2:13:5e:9c:b2:
c9:ca:1d:cc:5f:c3:ca:85:cd:5e:ab:15:f6:70:35:
1b:07:75:56:7e:30:b7:3f:d9:f8:f1:12:64:6d:7c:
52:db:7d:06:0f:6a:45:21:fe:1a:17:ad:c0:db:52:
7d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:45:CF:69:A4:0B:DF:68:BE:0B:84:4A:D6:29:31:83:6B:F2:58:21
X509v3 Authority Key Identifier:
keyid:10:EE:DC:33:AA:44:29:07:18:9F:0B:3C:56:38:36:95:1F:B1:85:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EO7cM6pEKQcYnws8Vjg2lR-xhbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/546c7e-d840-4e54-9223-534ebeef3389/1/WEXPaaQL32i-C4RK1ikxg2vyWCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/546c7e-d840-4e54-9223-534ebeef3389/1/EO7cM6pEKQcYnws8Vjg2lR-xhbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.220.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:5e:df:29:17:9c:f9:12:22:5c:4c:13:5d:4c:d4:4a:fc:ec:
ed:4a:11:fe:9b:39:b5:30:09:00:a9:ca:14:7d:a2:ec:9f:62:
c5:2a:30:90:2b:d3:ea:2e:c9:b3:38:65:f7:d2:27:46:ea:93:
32:8a:40:a3:67:90:dd:e0:3e:1c:6c:01:9c:4c:dc:7e:4c:5b:
5a:56:62:a6:08:4d:2b:1f:42:23:6d:55:a3:e3:69:c3:9c:c7:
63:83:3b:65:d3:8e:96:a3:1a:be:15:00:8a:fe:e3:5c:5e:cf:
9f:0b:0a:28:bb:a1:91:e7:15:d8:7a:29:a8:ae:dd:69:f7:85:
3b:28:6f:74:54:50:ac:6a:76:d1:bb:08:41:73:72:32:97:bc:
fe:a0:45:ca:05:d7:ba:62:c6:06:6b:71:7f:b2:9a:f3:a1:d3:
c9:a3:d3:1e:fc:16:78:b8:bd:67:fd:67:1b:38:ef:24:6a:34:
97:75:53:c5:10:88:bf:0f:a7:cc:42:70:66:04:52:d9:63:18:
65:5c:ed:a4:a2:1b:5a:2a:76:64:38:0d:af:50:4b:47:27:99:
71:c6:3c:9a:42:8c:0d:39:2a:82:97:bb:bd:c1:d6:fa:78:72:
40:71:d4:4c:c4:a1:cd:f3:3d:3d:0c:43:cc:97:9b:78:a5:41:
4d:19:9a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:21 2023 by rpki-client on console-ams.rpki-client.org