Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9068a5-7979-4f8c-bf82-cfe2a9657c26/1/wgVCcnKDXlCphCk32svMgRQ9NQE.roa
File: wgVCcnKDXlCphCk32svMgRQ9NQE.roa (raw, json)
Hash identifier: 4iW2jc+6l0E1qvoRSdXR3A8JiBSMSte+CtM1qVHE0mk=
Subject key identifier: C2:05:42:72:72:83:5E:50:A9:84:29:37:DA:CB:CC:81:14:3D:35:01
Certificate issuer: /CN=f5daf0ba21e90202597ee47e09f6877fe23c2a9f
Certificate serial: 0C8FAECC
Authority key identifier: F5:DA:F0:BA:21:E9:02:02:59:7E:E4:7E:09:F6:87:7F:E2:3C:2A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9drwuiHpAgJZfuR-CfaHf-I8Kp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9068a5-7979-4f8c-bf82-cfe2a9657c26/1/wgVCcnKDXlCphCk32svMgRQ9NQE.roa
Signing time: Tue 29 Mar 2022 09:07:07 +0000
ROA not before: Tue 29 Mar 2022 09:07:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206262
IP address blocks: 185.171.60.0/24 maxlen: 24
185.171.60.0/22 maxlen: 22
185.171.62.0/24 maxlen: 24
185.171.61.0/24 maxlen: 24
185.171.63.0/24 maxlen: 24
37.26.70.0/24 maxlen: 24
37.26.65.0/24 maxlen: 24
37.26.69.0/24 maxlen: 24
185.191.164.0/24 maxlen: 24
185.191.164.0/22 maxlen: 22
185.191.166.0/24 maxlen: 24
185.191.165.0/24 maxlen: 24
87.238.208.0/24 maxlen: 24
185.174.208.0/24 maxlen: 24
87.238.208.0/21 maxlen: 21
185.174.208.0/22 maxlen: 22
185.191.167.0/24 maxlen: 24
87.238.210.0/24 maxlen: 24
185.174.210.0/24 maxlen: 24
185.174.211.0/24 maxlen: 24
87.238.209.0/24 maxlen: 24
185.174.209.0/24 maxlen: 24
87.238.212.0/24 maxlen: 24
87.238.213.0/24 maxlen: 24
87.238.211.0/24 maxlen: 24
87.238.215.0/24 maxlen: 24
87.238.214.0/24 maxlen: 24
185.186.81.0/24 maxlen: 24
185.186.80.0/22 maxlen: 22
185.186.80.0/24 maxlen: 24
185.186.83.0/24 maxlen: 24
185.186.82.0/24 maxlen: 24
5.206.232.0/21 maxlen: 21
5.206.232.0/24 maxlen: 24
5.206.233.0/24 maxlen: 24
5.206.234.0/24 maxlen: 24
5.206.236.0/24 maxlen: 24
5.206.235.0/24 maxlen: 24
5.206.238.0/24 maxlen: 24
5.206.237.0/24 maxlen: 24
5.206.239.0/24 maxlen: 24
185.179.28.0/22 maxlen: 22
185.179.29.0/24 maxlen: 24
185.179.28.0/24 maxlen: 24
185.179.30.0/24 maxlen: 24
185.179.31.0/24 maxlen: 24
2a0c:b340::/32 maxlen: 32
2a0c:b342::/32 maxlen: 32
2a0c:b343::/32 maxlen: 32
2a0c:b344::/32 maxlen: 32
2a0c:b340::/29 maxlen: 29
2a0c:b341::/32 maxlen: 32
2a0c:b340::/48 maxlen: 48
2a0c:b340:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210742988 (0xc8faecc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5daf0ba21e90202597ee47e09f6877fe23c2a9f
Validity
Not Before: Mar 29 09:07:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c205427272835e50a9842937dacbcc81143d3501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3d:43:ca:74:6e:0a:aa:6a:48:1c:4a:09:20:
cc:81:d1:8c:65:60:f8:38:3b:8a:c8:c0:07:62:b2:
09:a4:ab:7e:f8:0c:51:29:06:bd:b5:3e:b4:f2:4d:
e1:fc:96:2a:51:9a:15:ab:c3:71:53:5e:c5:bc:77:
19:71:0f:05:d6:74:02:27:14:07:e0:fc:ab:99:48:
0f:3d:5b:1c:96:75:1d:58:f2:c0:57:d9:d8:26:50:
2d:e8:a1:1d:31:d0:25:01:b0:0d:e5:cc:13:73:59:
72:08:0d:a1:8f:39:b4:27:e6:46:b1:da:4e:1e:c7:
e8:ca:22:06:e8:90:1d:45:4c:85:d1:d8:fa:a6:59:
1d:17:69:9e:48:34:48:93:4e:f4:64:eb:e6:58:a6:
6b:29:f5:37:9b:da:c1:28:cf:55:4a:b3:ea:4e:5e:
8e:3d:c4:4c:c9:38:df:f1:f0:b8:dd:60:93:0c:48:
8e:d4:fe:3a:c4:78:f1:ba:d3:69:46:d5:05:c4:98:
07:ab:6a:97:f6:45:50:f1:c5:82:9a:06:3f:b0:7f:
e8:c4:8b:a6:e4:b2:a4:23:62:1c:46:62:f9:88:05:
4b:71:f2:81:30:e4:33:b5:3b:79:6d:88:47:e8:09:
dd:7b:cb:ab:93:08:45:4d:a1:b9:15:1c:a4:ec:80:
97:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:05:42:72:72:83:5E:50:A9:84:29:37:DA:CB:CC:81:14:3D:35:01
X509v3 Authority Key Identifier:
keyid:F5:DA:F0:BA:21:E9:02:02:59:7E:E4:7E:09:F6:87:7F:E2:3C:2A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9drwuiHpAgJZfuR-CfaHf-I8Kp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9068a5-7979-4f8c-bf82-cfe2a9657c26/1/wgVCcnKDXlCphCk32svMgRQ9NQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9068a5-7979-4f8c-bf82-cfe2a9657c26/1/9drwuiHpAgJZfuR-CfaHf-I8Kp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.206.232.0/21
37.26.65.0/24
37.26.69.0-37.26.70.255
87.238.208.0/21
185.171.60.0/22
185.174.208.0/22
185.179.28.0/22
185.186.80.0/22
185.191.164.0/22
IPv6:
2a0c:b340::/29
Signature Algorithm: sha256WithRSAEncryption
35:6b:40:76:59:80:f0:d4:4d:f2:f5:eb:eb:4b:3c:44:36:92:
17:dc:e0:ab:00:4e:5d:a5:cf:68:5b:47:14:d3:e3:85:8b:51:
2a:74:9a:fd:4b:ab:50:8e:46:9f:e6:70:c8:bc:e5:a3:3e:20:
3c:a2:5a:16:1e:59:e4:ee:1b:60:3d:5b:2e:82:58:a0:96:75:
0e:e9:35:9a:56:f4:56:fa:4f:e4:7b:95:4a:a6:53:87:50:cd:
f3:34:67:13:c9:c7:43:3f:31:db:da:a2:4c:83:8c:4d:15:6a:
2a:e4:20:62:f0:79:42:67:3b:38:f0:e8:4e:6a:35:a3:40:30:
8c:d5:80:1b:cb:79:9b:24:0e:83:8a:db:15:95:eb:6c:ca:68:
cf:13:f1:9d:27:5a:da:2d:63:53:b1:e0:31:45:e5:46:3b:c8:
cc:11:ad:0b:2b:cb:ea:fd:07:17:f9:fa:4f:7b:d3:74:e6:0c:
76:56:92:b7:27:91:b9:cd:7d:3e:d1:8d:4d:5c:4e:16:1f:7e:
1c:ee:d5:fc:cf:87:7d:84:0d:45:9d:48:fd:8c:72:15:14:57:
36:b1:54:dd:e4:32:a0:f8:eb:41:ac:bb:29:9c:23:a9:2a:ad:
98:5e:d2:9c:28:a9:3f:e2:59:89:ca:7a:9b:97:b1:ee:9a:fa:
fd:fb:51:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:11 2023 by rpki-client on console-ams.rpki-client.org