Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/WbSGU-ClQGJjDd5uu9o6H_Bk1S0.roa
File: WbSGU-ClQGJjDd5uu9o6H_Bk1S0.roa (raw, json)
Hash identifier: pgyqX2b0P0ME7uWjk8UdHK9OL4JiPNVJWx6QvpSWeic=
Subject key identifier: 59:B4:86:53:E0:A5:40:62:63:0D:DE:6E:BB:DA:3A:1F:F0:64:D5:2D
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 039011D7
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/WbSGU-ClQGJjDd5uu9o6H_Bk1S0.roa
Signing time: Tue 05 Apr 2022 22:49:48 +0000
ROA not before: Tue 05 Apr 2022 22:49:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 89.37.216.0/23 maxlen: 24
89.37.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59773399 (0x39011d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Apr 5 22:49:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59b48653e0a54062630dde6ebbda3a1ff064d52d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cc:12:8a:13:94:81:e3:b3:ad:7b:7c:2e:6d:
7d:a3:58:f8:2c:79:74:b2:ef:ce:ef:94:9a:33:92:
37:3b:a9:7b:31:cb:fc:85:0d:82:b2:d1:d7:53:11:
6e:b3:21:7c:4d:f5:cf:d1:57:57:e8:54:55:28:0b:
9c:9a:37:fd:30:45:9c:94:c8:6b:dc:14:65:88:49:
df:52:c4:03:79:13:22:0f:ff:34:7d:56:9f:b1:a5:
6f:d4:a1:a8:6f:c8:da:21:48:44:d7:80:f1:78:7c:
03:85:df:0f:cd:67:fe:18:45:51:80:3c:79:04:ca:
09:40:a4:95:d3:73:6b:49:2d:89:76:f8:b0:b9:0e:
e1:0d:5c:3b:66:1f:a0:bf:ce:d3:df:cc:d2:11:01:
6b:87:69:a2:f7:bd:22:63:d4:4d:90:46:56:30:25:
eb:ac:01:25:fa:42:d3:bb:31:fd:bd:55:66:ac:4e:
31:d6:4b:e1:85:34:d5:70:16:5a:a2:5e:4a:33:15:
e3:67:3b:fb:17:fa:e8:c0:34:33:7b:ed:f3:05:5a:
66:b5:b5:32:e7:ff:a2:be:c0:b5:94:f9:76:e0:11:
20:f0:e7:67:c0:27:d2:26:1b:12:ab:e9:54:7c:81:
ba:77:f0:7d:4e:1f:ca:26:52:81:e9:82:1b:c8:f5:
26:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B4:86:53:E0:A5:40:62:63:0D:DE:6E:BB:DA:3A:1F:F0:64:D5:2D
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/WbSGU-ClQGJjDd5uu9o6H_Bk1S0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.216.0/23
89.37.236.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:a2:85:3c:1f:81:6e:2c:c7:b1:1a:41:c0:f9:42:c9:37:0a:
32:e7:e7:6d:86:29:62:d3:50:5c:43:3a:a9:98:6d:d0:e1:f0:
f4:66:e7:e4:23:34:ab:f5:d4:51:40:e9:9a:1c:62:ed:c0:85:
54:56:52:06:9c:8a:1b:26:94:37:23:ea:77:a2:83:d2:3d:bb:
4d:d4:ad:f5:db:db:b0:d9:e1:24:ea:af:54:e8:16:e0:e8:b3:
f0:75:c0:9c:67:ff:95:a4:0a:2d:3e:ed:66:29:7d:bd:de:23:
47:bb:80:dc:a4:62:d6:96:5b:03:26:f7:60:a1:fd:b8:73:cf:
f2:54:e4:c5:bf:37:be:ae:d0:10:f0:f5:51:23:87:61:fd:7e:
4e:d6:fb:19:89:fa:42:b5:f1:9e:75:3f:25:dc:71:ea:eb:da:
78:83:82:c9:91:4f:e1:02:c9:74:57:98:77:ca:ce:f8:00:32:
66:61:c1:03:66:c2:05:1f:8d:44:96:9f:02:b8:ff:8e:ee:c8:
04:52:f3:4b:34:d4:6e:60:23:67:0e:d7:55:12:5a:10:7b:af:
ca:8f:90:83:91:81:03:15:3a:a8:59:d6:28:67:57:03:84:58:
6e:bd:eb:7f:b0:71:ab:61:db:c7:90:51:08:e6:af:7d:16:76:
30:9d:7e:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:05 2023 by rpki-client on console-fra.rpki-client.org