Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/a7568f-440b-4a9e-bb3a-3ee1e6991269/1/wmgLC25Cqxa-OAtyMXWRx6Pcxk8.roa
File: wmgLC25Cqxa-OAtyMXWRx6Pcxk8.roa (raw, json)
Hash identifier: r0vMoLMniy/5agOKYqZnF0KmJ3WQF0yLYdim0SfecMk=
Subject key identifier: C2:68:0B:0B:6E:42:AB:16:BE:38:0B:72:31:75:91:C7:A3:DC:C6:4F
Certificate issuer: /CN=cc7ac47a19f66f418397eea5fef15a07ff2c0023
Certificate serial: 0DA2ABBC
Authority key identifier: CC:7A:C4:7A:19:F6:6F:41:83:97:EE:A5:FE:F1:5A:07:FF:2C:00:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zHrEehn2b0GDl-6l_vFaB_8sACM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/a7568f-440b-4a9e-bb3a-3ee1e6991269/1/wmgLC25Cqxa-OAtyMXWRx6Pcxk8.roa
Signing time: Sat 01 Jan 2022 01:56:48 +0000
ROA not before: Sat 01 Jan 2022 01:56:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62040
IP address blocks: 185.49.240.0/24 maxlen: 24
185.49.243.0/24 maxlen: 24
185.49.242.0/24 maxlen: 24
185.49.241.0/24 maxlen: 24
2a04:bb80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 228764604 (0xda2abbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc7ac47a19f66f418397eea5fef15a07ff2c0023
Validity
Not Before: Jan 1 01:56:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2680b0b6e42ab16be380b72317591c7a3dcc64f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e4:cc:ff:8b:92:0b:67:06:2e:7e:15:43:cc:
c7:bf:c9:a5:cb:61:30:36:86:34:46:23:d5:4b:9b:
09:98:a4:1f:51:f0:85:06:4f:c7:b5:dd:45:36:23:
56:54:bd:e9:50:15:1a:51:52:c2:aa:64:72:82:17:
dd:59:f0:21:0e:3e:eb:24:5f:3e:a1:f1:65:00:73:
84:42:53:91:2a:b5:c8:5c:a8:e2:12:c4:0f:77:89:
c2:42:8c:e0:c5:e3:0d:a4:6a:8a:57:aa:06:b3:f5:
d1:c1:f3:18:75:4c:6e:27:fa:fa:c8:20:06:f9:4f:
9b:bc:7a:60:f0:2c:51:54:29:e2:24:0d:3e:ef:6c:
b1:d3:21:54:db:bd:e1:f4:3f:18:f8:12:15:c6:6f:
8f:c0:da:be:80:80:97:ed:45:15:d3:9c:b6:ae:ae:
03:a1:19:69:eb:c9:30:dc:d9:04:cd:87:93:1a:95:
f2:00:59:2f:90:4d:ea:88:cc:fe:31:db:4f:b4:5e:
a0:52:95:e8:eb:36:73:b5:de:bf:9b:12:f2:3d:17:
6a:b0:14:bf:fb:6c:1f:34:22:b3:d2:ca:f5:04:95:
81:c7:6d:b4:01:a1:af:17:3a:ea:50:ff:2e:95:c9:
a6:1e:da:1b:e7:cc:e2:1d:de:66:eb:13:9b:bb:e8:
41:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:68:0B:0B:6E:42:AB:16:BE:38:0B:72:31:75:91:C7:A3:DC:C6:4F
X509v3 Authority Key Identifier:
keyid:CC:7A:C4:7A:19:F6:6F:41:83:97:EE:A5:FE:F1:5A:07:FF:2C:00:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zHrEehn2b0GDl-6l_vFaB_8sACM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/a7568f-440b-4a9e-bb3a-3ee1e6991269/1/wmgLC25Cqxa-OAtyMXWRx6Pcxk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/a7568f-440b-4a9e-bb3a-3ee1e6991269/1/zHrEehn2b0GDl-6l_vFaB_8sACM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.240.0/22
IPv6:
2a04:bb80::/29
Signature Algorithm: sha256WithRSAEncryption
5d:23:8e:05:e4:36:f4:56:e6:7b:6b:4a:de:84:7b:1f:87:13:
30:92:ac:d9:c7:63:be:1b:40:db:96:f5:78:77:fd:7a:b0:4f:
db:da:70:ab:c7:91:be:df:26:21:3b:30:39:1e:53:c7:4f:1d:
f3:7d:a3:b5:46:f9:21:e1:89:59:01:cb:a4:8d:7e:f9:0c:79:
fa:7c:16:90:78:77:0d:68:b8:72:54:58:19:66:af:d2:80:9f:
04:46:c7:4c:90:da:58:70:6a:47:a1:ae:f8:9a:52:be:22:41:
77:40:db:e5:bc:bc:09:fe:7a:6b:f0:34:54:a1:13:5b:3c:fc:
65:46:5e:3a:b4:6d:e8:1e:7b:a6:50:85:15:57:57:5b:7e:e6:
23:73:89:9a:3e:76:f5:0f:c3:42:98:b2:82:53:c2:7c:64:3c:
84:d8:68:86:80:c1:fd:73:5b:9d:f5:77:24:81:92:72:da:ca:
ed:24:8b:41:f0:cb:75:33:06:a2:37:03:ae:e4:57:54:c1:99:
cb:d6:35:84:23:2f:19:97:2b:e4:c6:3c:df:9f:22:57:85:5a:
b3:9c:ac:64:b8:f1:78:87:70:3e:8f:47:f1:f2:74:4e:e6:0e:
14:8f:bf:82:51:09:ac:cc:80:b1:b5:a0:3a:bb:20:0e:53:6f:
5b:59:1d:6b
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEDaKrvDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
YzdhYzQ3YTE5ZjY2ZjQxODM5N2VlYTVmZWYxNWEwN2ZmMmMwMDIzMB4XDTIyMDEw
MTAxNTY0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzI2ODBiMGI2ZTQy
YWIxNmJlMzgwYjcyMzE3NTkxYzdhM2RjYzY0ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMTkzP+LkgtnBi5+FUPMx7/JpcthMDaGNEYj1UubCZikH1Hw
hQZPx7XdRTYjVlS96VAVGlFSwqpkcoIX3VnwIQ4+6yRfPqHxZQBzhEJTkSq1yFyo
4hLED3eJwkKM4MXjDaRqileqBrP10cHzGHVMbif6+sggBvlPm7x6YPAsUVQp4iQN
Pu9ssdMhVNu94fQ/GPgSFcZvj8DavoCAl+1FFdOctq6uA6EZaevJMNzZBM2HkxqV
8gBZL5BN6ojM/jHbT7ReoFKV6Os2c7Xev5sS8j0XarAUv/tsHzQis9LK9QSVgcdt
tAGhrxc66lD/LpXJph7aG+fM4h3eZusTm7voQcsCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTCaAsLbkKrFr44C3IxdZHHo9zGTzAfBgNVHSMEGDAWgBTMesR6GfZvQYOX
7qX+8VoH/ywAIzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pIckVlaG4yYjBHRGwtNmxfdkZhQl84c0FDTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWEvYTc1NjhmLTQ0MGItNGE5ZS1iYjNhLTNlZTFlNjk5MTI2OS8x
L3dtZ0xDMjVDcXhhLU9BdHlNWFdSeDZQY3hrOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWEv
YTc1NjhmLTQ0MGItNGE5ZS1iYjNhLTNlZTFlNjk5MTI2OS8xL3pIckVlaG4yYjBH
RGwtNmxfdkZhQl84c0FDTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArkx8DANBAIAAjAHAwUDKgS7gDAN
BgkqhkiG9w0BAQsFAAOCAQEAXSOOBeQ29Fbme2tK3oR7H4cTMJKs2cdjvhtA25b1
eHf9erBP29pwq8eRvt8mITswOR5Tx08d832jtUb5IeGJWQHLpI1++Qx5+nwWkHh3
DWi4clRYGWav0oCfBEbHTJDaWHBqR6Gu+JpSviJBd0Db5by8Cf56a/A0VKETWzz8
ZUZeOrRt6B57plCFFVdXW37mI3OJmj529Q/DQpiyglPCfGQ8hNhohoDB/XNbnfV3
JIGSctrK7SSLQfDLdTMGojcDruRXVMGZy9Y1hCMvGZcr5MY8358iV4Vas5ysZLjx
eIdwPo9H8fJ0TuYOFI+/glEJrMyAsbWgOrsgDlNvW1kdaw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:34 2025 by rpki-client