Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3334f8-dace-497f-a5a3-814e80904be4/1/kWdWebZgZGfzE5fwzzGmOWjNs9c.roa
File: kWdWebZgZGfzE5fwzzGmOWjNs9c.roa (raw, json)
Hash identifier: YEuv2+AGJelsH1gONokGQkzDv8o4y6LFDrllygl0MiE=
Subject key identifier: 91:67:56:79:B6:60:64:67:F3:13:97:F0:CF:31:A6:39:68:CD:B3:D7
Certificate issuer: /CN=5bea2b884c7067f58fff040a1f06e0df1e80ab3e
Certificate serial: 11A96195
Authority key identifier: 5B:EA:2B:88:4C:70:67:F5:8F:FF:04:0A:1F:06:E0:DF:1E:80:AB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-oriExwZ_WP_wQKHwbg3x6Aqz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3334f8-dace-497f-a5a3-814e80904be4/1/kWdWebZgZGfzE5fwzzGmOWjNs9c.roa
Signing time: Tue 18 Jan 2022 08:20:20 +0000
ROA not before: Tue 18 Jan 2022 08:20:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9050
IP address blocks: 92.87.0.0/16 maxlen: 16
92.87.11.0/24 maxlen: 24
92.80.0.0/16 maxlen: 16
109.97.0.0/16 maxlen: 16
92.84.0.0/16 maxlen: 16
92.87.128.0/23 maxlen: 23
92.87.133.0/24 maxlen: 24
109.101.0.0/16 maxlen: 16
89.121.0.0/18 maxlen: 18
89.121.0.0/16 maxlen: 16
92.86.38.0/24 maxlen: 24
92.86.36.0/24 maxlen: 24
92.86.48.0/24 maxlen: 24
109.103.0.0/16 maxlen: 16
92.86.50.0/24 maxlen: 24
109.99.184.0/24 maxlen: 24
109.99.185.0/24 maxlen: 24
109.99.189.0/24 maxlen: 24
109.99.192.0/24 maxlen: 24
109.96.0.0/16 maxlen: 16
89.123.0.0/17 maxlen: 17
89.123.0.0/16 maxlen: 16
92.86.0.0/16 maxlen: 16
86.35.128.0/17 maxlen: 17
185.133.64.0/22 maxlen: 22
109.100.0.0/16 maxlen: 16
92.86.90.0/24 maxlen: 24
89.120.0.0/16 maxlen: 16
109.99.214.0/24 maxlen: 24
92.83.0.0/19 maxlen: 19
109.99.216.0/24 maxlen: 24
92.83.0.0/16 maxlen: 16
89.123.128.0/17 maxlen: 17
109.98.192.0/24 maxlen: 24
109.98.192.0/23 maxlen: 23
109.98.193.0/24 maxlen: 24
92.82.0.0/18 maxlen: 18
92.82.0.0/16 maxlen: 16
109.102.0.0/16 maxlen: 16
86.35.64.0/18 maxlen: 18
109.102.163.0/24 maxlen: 24
109.102.161.0/24 maxlen: 24
217.115.208.0/20 maxlen: 20
86.35.0.0/21 maxlen: 21
86.35.10.0/24 maxlen: 24
86.35.9.0/24 maxlen: 24
109.99.0.0/16 maxlen: 16
86.35.15.0/24 maxlen: 24
86.35.16.0/20 maxlen: 20
86.35.13.0/24 maxlen: 24
86.35.14.0/24 maxlen: 24
86.35.12.0/24 maxlen: 24
86.35.32.0/19 maxlen: 19
89.121.128.0/17 maxlen: 17
92.87.214.0/23 maxlen: 23
92.87.232.0/24 maxlen: 24
86.34.0.0/16 maxlen: 16
109.98.0.0/16 maxlen: 16
92.87.244.0/24 maxlen: 24
86.34.0.0/15 maxlen: 15
92.87.245.0/24 maxlen: 24
89.121.64.0/18 maxlen: 18
92.87.175.0/24 maxlen: 24
92.87.173.0/24 maxlen: 24
92.87.174.0/24 maxlen: 24
92.81.0.0/16 maxlen: 16
92.81.128.0/17 maxlen: 17
84.243.64.0/18 maxlen: 18
109.98.113.0/24 maxlen: 24
89.122.0.0/16 maxlen: 16
109.98.117.0/24 maxlen: 24
109.98.115.0/24 maxlen: 24
109.98.119.0/24 maxlen: 24
109.98.123.0/24 maxlen: 24
109.98.121.0/24 maxlen: 24
109.98.126.0/24 maxlen: 24
92.85.0.0/16 maxlen: 16
2a02:d10:800:1::/64 maxlen: 64
2a02:d10::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 296313237 (0x11a96195)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bea2b884c7067f58fff040a1f06e0df1e80ab3e
Validity
Not Before: Jan 18 08:20:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91675679b6606467f31397f0cf31a63968cdb3d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:82:62:5b:5d:25:30:80:65:a0:ef:ce:8d:ce:
0f:75:cf:50:50:6f:a5:03:0c:13:d4:6b:f3:cc:18:
4a:32:25:d2:d7:e6:02:a1:5f:71:5b:ca:08:e6:45:
21:5e:05:5e:43:ca:cc:d1:22:ed:56:1a:10:ac:49:
55:86:54:dc:48:e0:a9:7a:9c:11:54:da:f7:93:ec:
d7:f6:ca:c7:c3:2a:41:ee:a6:c0:0c:72:b8:67:b0:
1b:79:f1:fa:41:6d:8d:38:a8:62:58:5e:25:38:4e:
8c:3d:c6:11:1c:8b:ea:29:96:45:9e:ef:11:f0:4e:
cf:4b:a9:28:74:15:4e:9f:9b:a2:a3:59:b3:1f:27:
01:4c:c0:70:a3:9b:40:89:89:b2:ae:0a:0b:d1:26:
f1:2b:35:47:ac:75:74:54:a3:c8:53:7a:93:47:1b:
bd:c8:02:c9:47:03:35:36:d2:38:41:95:78:1f:51:
34:3e:cd:c4:7f:bd:15:d7:5a:8b:ba:fd:96:78:0c:
80:49:ed:32:8e:7d:86:65:9f:f3:11:97:a2:1d:9b:
ae:2d:56:f2:a0:42:ab:c7:66:85:6d:09:8a:c0:3d:
8e:92:4d:c3:b7:10:bc:d4:54:b7:dd:4d:31:dc:91:
a1:c6:a1:9a:58:84:10:72:2a:5b:89:bd:5f:ba:bb:
27:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:67:56:79:B6:60:64:67:F3:13:97:F0:CF:31:A6:39:68:CD:B3:D7
X509v3 Authority Key Identifier:
keyid:5B:EA:2B:88:4C:70:67:F5:8F:FF:04:0A:1F:06:E0:DF:1E:80:AB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-oriExwZ_WP_wQKHwbg3x6Aqz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3334f8-dace-497f-a5a3-814e80904be4/1/kWdWebZgZGfzE5fwzzGmOWjNs9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3334f8-dace-497f-a5a3-814e80904be4/1/W-oriExwZ_WP_wQKHwbg3x6Aqz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.243.64.0/18
86.34.0.0/15
89.120.0.0/14
92.80.0.0/13
109.96.0.0/13
185.133.64.0/22
217.115.208.0/20
IPv6:
2a02:d10::/32
Signature Algorithm: sha256WithRSAEncryption
60:1d:6c:43:e7:07:51:ef:80:0e:09:09:6d:24:a3:5a:ef:47:
c9:dc:df:6e:c1:e7:2a:3e:d5:94:37:72:1c:9d:97:d0:f0:71:
56:00:ee:3f:0c:24:a4:17:e7:62:8c:10:27:8f:8d:1b:29:f7:
28:cd:cf:bf:eb:10:fc:5e:25:c5:38:76:b8:38:8b:ef:f8:ab:
33:74:c7:3e:0a:2e:04:e4:34:0d:03:df:28:37:8e:c6:03:16:
81:64:37:cf:f9:b9:71:92:66:ce:20:a1:b4:65:fd:00:93:d9:
bc:f5:d3:ab:55:90:2c:3d:27:10:84:19:32:9a:4b:0e:4a:16:
b0:8d:08:57:82:5c:9f:a3:7d:9a:73:80:1b:81:07:2b:3a:87:
c4:97:77:0c:4e:cb:0c:5d:2e:51:92:77:9f:d6:ce:c0:80:15:
dd:0d:82:3b:f7:a0:89:9d:30:01:86:52:f7:c4:ab:bc:c4:a9:
bb:b3:99:f2:f2:d1:e2:8d:40:28:2d:a2:6d:0b:97:e6:79:d5:
c3:06:7e:ea:23:db:1c:45:63:ba:e0:ff:23:c0:e2:49:28:a4:
e9:2d:56:85:7f:03:a9:4e:44:d4:0a:0b:90:c1:33:8f:55:82:
f0:15:24:16:7f:5c:19:13:a6:01:eb:3e:fb:80:73:07:2b:10:
b7:44:e2:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:38 2024 by rpki-client on console-fra.rpki-client.org