Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/waSVMcdpTUFRQENYtle1AAdPniY.roa
File: waSVMcdpTUFRQENYtle1AAdPniY.roa (raw, json)
Hash identifier: rziH7aSJ982FTrAF3dGKyTNUOwlSTepAOide97lcO2g=
Subject key identifier: C1:A4:95:31:C7:69:4D:41:51:40:43:58:B6:57:B5:00:07:4F:9E:26
Certificate issuer: /CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de
Certificate serial: 018258DA6CDA1670CD222FE1412080CE2410
Authority key identifier: 62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/waSVMcdpTUFRQENYtle1AAdPniY.roa
Signing time: Mon 01 Aug 2022 10:01:25 +0000
ROA not before: Mon 01 Aug 2022 10:01:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60475
IP address blocks: 185.235.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:58:da:6c:da:16:70:cd:22:2f:e1:41:20:80:ce:24:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de
Validity
Not Before: Aug 1 10:01:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1a49531c7694d4151404358b657b500074f9e26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:70:df:ae:78:ea:20:4f:ff:d4:8a:f1:3b:6f:
b8:b3:3b:41:33:a6:af:1d:ea:2e:4b:7b:c5:84:f9:
3e:16:ed:8c:bc:f1:fe:24:7e:d6:d7:44:78:e2:9c:
e3:bc:35:6a:2f:16:47:61:10:f5:d8:fb:91:4c:ad:
ac:e4:da:1c:e2:ab:55:cf:2b:ee:11:3a:af:d8:90:
7d:e4:a5:0b:37:5a:63:57:6d:b0:32:a4:3e:12:18:
c4:12:14:a0:55:0f:73:46:f4:03:e0:c4:9c:8c:79:
c0:7e:f5:03:03:7f:77:19:c6:d2:62:e3:d6:65:6f:
67:8b:95:ed:1a:a3:54:c8:8c:ba:3f:01:ff:54:de:
22:f6:1d:5c:06:54:84:74:8a:60:63:fb:8a:7d:0a:
29:65:10:70:bb:4a:87:6a:2f:56:01:ac:3e:23:b8:
c9:8a:d6:8b:42:92:47:b4:51:ad:3c:1c:bd:ac:1c:
90:41:2c:c0:be:36:1a:59:a6:e6:98:fa:43:36:2e:
fb:a1:ab:56:89:31:3b:f4:41:8e:a8:77:3f:7f:73:
58:c5:60:f7:4d:42:67:a8:4b:19:41:a7:e4:3a:d3:
6e:ff:c6:c2:66:13:0a:c5:70:e9:72:af:3c:25:6c:
4c:7a:ab:af:a6:86:5a:a0:16:20:99:70:b0:4b:05:
a5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:A4:95:31:C7:69:4D:41:51:40:43:58:B6:57:B5:00:07:4F:9E:26
X509v3 Authority Key Identifier:
keyid:62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/waSVMcdpTUFRQENYtle1AAdPniY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.20.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:85:f4:82:10:21:ee:da:2c:37:1b:8e:f8:ba:34:59:16:15:
09:b4:5a:95:fd:cb:33:79:fa:20:c4:d0:03:dd:09:6d:f2:b6:
a1:fb:4f:7a:d2:24:18:5e:8d:25:51:ab:8e:4e:d8:f5:04:dd:
24:3d:90:5f:88:f2:ea:13:61:dd:dd:9d:ec:50:a6:d8:59:04:
56:e6:23:35:47:55:cc:1a:b5:75:91:67:fa:4c:21:69:2c:f9:
7a:3b:83:76:20:f6:71:fb:3d:67:d4:c9:c5:d7:03:71:60:be:
85:40:55:0a:c5:e7:2a:76:04:29:fe:65:90:a3:38:db:0a:5d:
2e:08:19:9b:b1:7e:36:91:7b:63:8c:b1:68:0e:0d:95:3e:1e:
fa:4c:ef:ac:0c:3b:3e:ee:6d:94:34:1a:34:03:82:74:20:29:
d2:06:a0:25:2f:87:d7:3c:5a:95:ac:fe:b4:ed:cb:34:ea:6b:
05:2c:98:fe:92:cc:f4:b0:5c:fd:b8:9d:87:42:7d:ab:f4:64:
48:7a:fc:2c:4f:36:f3:8d:14:5c:ed:c1:55:5a:c5:98:33:b5:
91:d8:f5:ad:c8:02:9c:e7:6c:af:e8:e0:f7:07:f2:ba:f0:d9:
33:74:12:c3:c0:7d:a9:55:60:b0:cd:e8:2b:6e:9c:d4:a2:da:
cf:47:32:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:08 2023 by rpki-client on console.sobornost.net