Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/WYLqj9Gnj6I-M1EpjoKYFnx83cA.roa
File: WYLqj9Gnj6I-M1EpjoKYFnx83cA.roa (raw, json)
Hash identifier: zpHFvoR/L1UqHYAusBVKyullGRFgj6vhTFLwVHFBAsg=
Subject key identifier: 59:82:EA:8F:D1:A7:8F:A2:3E:33:51:29:8E:82:98:16:7C:7C:DD:C0
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 01856322798A816880499126F7268A017FAB
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/WYLqj9Gnj6I-M1EpjoKYFnx83cA.roa
Signing time: Fri 30 Dec 2022 13:04:41 +0000
ROA not before: Fri 30 Dec 2022 13:04:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210906
IP address blocks: 185.47.92.0/22 maxlen: 22
185.211.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:63:22:79:8a:81:68:80:49:91:26:f7:26:8a:01:7f:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Dec 30 13:04:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5982ea8fd1a78fa23e3351298e8298167c7cddc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:9d:af:e6:36:4b:6c:5e:3f:3c:f5:3f:1d:c6:
09:d3:7e:4d:cf:2c:f8:a3:41:a7:84:68:aa:1d:13:
05:e6:73:0e:d0:71:96:97:26:4d:89:3e:c4:65:81:
a1:1f:1e:62:6f:89:6f:23:fc:10:06:2c:8e:05:da:
81:00:1c:ad:1b:5e:e6:dd:9a:65:ea:a3:f3:67:63:
7b:0b:8b:e1:fd:a3:27:c8:70:44:51:59:11:a9:bc:
9b:4e:3c:7e:22:5c:3f:07:e8:bb:57:32:30:c0:f3:
b6:2f:fa:40:40:dc:a8:9a:73:86:b0:64:d3:2d:1b:
48:46:08:33:13:61:8d:5e:14:57:01:5c:76:2e:40:
1f:04:22:89:08:70:10:af:a0:1c:2d:5d:80:d7:bb:
f6:1a:82:31:40:28:a6:cd:f4:16:f0:25:3f:c4:7c:
4f:64:99:c4:f0:42:85:20:17:66:29:d0:9d:b9:c6:
c3:dc:c8:43:24:68:4c:29:9e:86:f2:7e:05:33:89:
01:82:45:0c:74:66:69:f1:6a:5d:24:2b:92:c7:b2:
bf:cf:1d:02:ab:b7:29:d8:53:92:42:02:fa:d8:c5:
17:b4:8f:8d:09:ab:ab:88:37:95:12:09:8a:15:a9:
1c:ed:19:9c:42:cb:5f:23:61:0a:24:2f:cf:50:54:
79:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:82:EA:8F:D1:A7:8F:A2:3E:33:51:29:8E:82:98:16:7C:7C:DD:C0
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/WYLqj9Gnj6I-M1EpjoKYFnx83cA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.92.0/22
185.211.96.0/22
Signature Algorithm: sha256WithRSAEncryption
67:1b:29:ff:d7:5a:91:2a:76:74:1b:d4:bf:f3:2b:ab:27:d1:
78:88:31:22:50:34:b1:44:21:e4:56:86:96:cf:e1:96:26:df:
22:51:d9:29:aa:c1:8f:f3:13:cf:97:0a:00:3b:db:0d:80:8d:
c7:99:a6:93:18:14:63:30:fd:7c:41:fc:38:9b:98:ee:44:96:
75:07:64:ab:d0:21:0b:05:f9:27:08:52:6e:19:53:13:3f:21:
4b:89:36:8c:38:8a:36:27:d5:23:77:86:2e:23:29:df:82:b0:
59:e9:98:e4:24:be:e1:48:9c:4f:ba:64:fc:38:12:38:91:1a:
23:10:45:ae:fc:92:14:9a:1a:37:d4:c1:cb:e0:5d:a1:14:c1:
35:ba:16:53:65:15:e8:34:6e:54:da:a9:25:0f:3f:64:bd:3d:
37:c5:fa:9e:7b:30:8e:8c:97:65:88:76:49:03:a1:ea:62:ed:
2e:d4:85:ca:a2:a5:10:34:61:fe:69:5c:50:96:8b:43:98:50:
0d:6f:bd:9c:6d:04:69:64:1d:95:34:c1:84:f6:5b:40:ce:c5:
7d:67:d9:6a:25:98:ee:38:ea:99:5b:3a:f1:00:4f:44:f5:0c:
60:c7:04:35:d5:ac:e1:33:c0:b7:98:36:72:2b:d3:7b:af:8c:
5c:bb:e7:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:23 2023 by rpki-client on console.sobornost.net