Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/WAcJ6KKj8R3vbOGjUX9SMpBppQY.roa
File: WAcJ6KKj8R3vbOGjUX9SMpBppQY.roa (raw, json)
Hash identifier: +1uIhNjp8PwYoxPT5VCMfAmU+Tw5F3TnOcRM0mprTEQ=
Subject key identifier: 58:07:09:E8:A2:A3:F1:1D:EF:6C:E1:A3:51:7F:52:32:90:69:A5:06
Certificate issuer: /CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06
Certificate serial: 025952
Authority key identifier: 09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/WAcJ6KKj8R3vbOGjUX9SMpBppQY.roa
Signing time: Wed 22 Jun 2022 16:03:32 +0000
ROA not before: Wed 22 Jun 2022 16:03:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2611
IP address blocks: 185.182.132.0/22 maxlen: 24
2a10:8280::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153938 (0x25952)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06
Validity
Not Before: Jun 22 16:03:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=580709e8a2a3f11def6ce1a3517f52329069a506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e7:56:40:2e:27:01:21:a6:b8:86:0a:70:80:
55:7f:b6:78:31:1e:b6:21:cd:9b:5e:61:09:6c:e0:
fe:8c:11:26:c3:31:91:21:37:cb:df:e1:c5:b7:d4:
6a:28:dc:3a:9e:8b:6c:e3:79:fb:47:87:f7:e0:24:
6f:ae:5a:12:2c:23:da:4a:22:da:47:4c:50:1e:4d:
ca:3d:7f:3c:0d:88:13:4c:49:0d:cd:b0:3f:d1:a0:
6c:24:a4:1c:e3:c6:f1:57:3e:2a:f8:bb:02:2f:d1:
fe:0f:1d:4a:41:6a:42:7f:fc:ea:c4:e4:30:9c:c0:
01:40:7f:07:33:82:fa:8a:b1:61:22:bb:4b:db:9f:
47:99:ae:c9:40:06:12:9f:28:13:3d:35:a3:a3:3e:
03:b1:27:03:af:73:c2:7f:2d:5b:f8:82:e6:75:bb:
ff:f5:b5:da:0d:a7:1a:48:20:40:cd:78:a5:1e:8c:
96:fb:85:c4:aa:f0:c9:8e:86:5a:67:4b:cb:07:3a:
2a:ed:a5:72:1a:ac:fe:c3:9c:8f:61:4d:89:7b:f2:
1c:ed:44:90:9c:fc:48:9b:22:b7:da:bd:5b:f9:cd:
f8:a3:f2:29:df:c4:8d:f6:20:6f:04:fb:3e:27:f8:
69:00:97:1f:06:5d:61:70:ea:42:93:da:03:65:3a:
9c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:07:09:E8:A2:A3:F1:1D:EF:6C:E1:A3:51:7F:52:32:90:69:A5:06
X509v3 Authority Key Identifier:
keyid:09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/WAcJ6KKj8R3vbOGjUX9SMpBppQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.132.0/22
IPv6:
2a10:8280::/32
Signature Algorithm: sha256WithRSAEncryption
7a:39:df:de:0d:ac:2c:8b:cb:34:1f:5c:a3:5a:49:7d:fe:f1:
fe:f9:78:85:64:8b:75:7d:b7:7f:24:f7:06:1c:2f:4c:c8:02:
4b:6e:16:3d:d9:ba:34:80:fd:63:c6:37:40:c9:c6:7b:0b:a7:
43:41:93:ef:0f:ab:65:2c:f1:10:3a:7b:d0:04:47:94:a9:51:
71:24:e3:d6:25:e0:0f:fd:5a:0d:0a:52:2d:b4:4d:ca:02:9a:
b6:17:8a:6d:86:7b:68:fc:8a:45:0d:d1:69:8d:42:15:52:ee:
e7:36:42:8b:88:f3:63:39:87:e6:ed:e8:e9:2b:3f:26:2d:48:
26:f1:91:76:50:f5:67:58:a2:f4:b1:45:39:50:32:f6:f0:e1:
42:92:11:eb:b8:f0:35:f4:6b:d8:86:86:a4:a3:24:24:5c:6f:
50:28:6d:7e:a1:c4:92:60:d9:ef:6c:4a:61:40:98:77:aa:a6:
09:af:6f:82:18:43:f6:c6:b7:63:3d:40:90:b4:0d:d3:c0:67:
46:8a:df:dc:f4:78:e7:80:d7:67:1e:6e:b0:46:0a:43:61:d5:
82:ab:4d:45:50:e9:36:c6:8f:45:22:14:9a:39:2a:76:b1:14:
c7:36:9f:79:ef:e9:b8:d3:7f:53:76:23:27:39:02:41:90:40:
7c:3f:ab:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:57 2023 by rpki-client on console-ams.rpki-client.org