Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/f916bc-29b1-4f09-83de-d544ac062d1f/1/wfRkE6Ve05ldDLxR1Hl-XfezW5E.roa
File: wfRkE6Ve05ldDLxR1Hl-XfezW5E.roa (raw, json)
Hash identifier: 0jfQWucwYJjI/6MDzYcbAvIf1ippNB9yg0xvGysQcak=
Subject key identifier: C1:F4:64:13:A5:5E:D3:99:5D:0C:BC:51:D4:79:7E:5D:F7:B3:5B:91
Certificate issuer: /CN=c2e24a6e3b375e827ebd6e288d9e5532b3a1b684
Certificate serial: 05A459CE
Authority key identifier: C2:E2:4A:6E:3B:37:5E:82:7E:BD:6E:28:8D:9E:55:32:B3:A1:B6:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wuJKbjs3XoJ-vW4ojZ5VMrOhtoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/f916bc-29b1-4f09-83de-d544ac062d1f/1/wfRkE6Ve05ldDLxR1Hl-XfezW5E.roa
Signing time: Sat 01 Jan 2022 08:02:03 +0000
ROA not before: Sat 01 Jan 2022 08:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33915
IP address blocks: 193.176.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94656974 (0x5a459ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2e24a6e3b375e827ebd6e288d9e5532b3a1b684
Validity
Not Before: Jan 1 08:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1f46413a55ed3995d0cbc51d4797e5df7b35b91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:23:cf:c3:03:ca:24:3f:5f:8a:4b:28:9a:48:
74:6b:b8:55:a1:d0:af:8b:d5:68:f6:89:ac:01:8b:
90:be:9f:25:02:c8:f4:06:85:72:7b:ad:c6:fc:2a:
31:9d:f8:fe:bc:08:86:d4:70:af:4a:17:39:5a:ed:
43:17:0d:9c:1a:cd:f9:18:b4:23:e6:85:a6:1c:35:
84:b0:7e:40:d0:6f:a2:e3:fc:40:30:cb:9d:90:85:
6d:f7:98:f1:38:2b:8f:bb:07:6e:9d:a9:e4:ac:53:
2e:3a:74:27:ca:0e:f5:5f:48:f1:a3:ed:c8:06:be:
0f:22:e0:dc:ed:b4:d3:f8:44:42:cf:c6:a1:bc:fc:
13:12:38:c6:ef:3a:c0:ea:cc:f5:a8:d3:95:97:1e:
30:bd:33:33:6a:03:65:7d:93:ce:36:f4:b5:03:ee:
c2:76:6f:0a:f6:c1:c9:93:50:ee:66:46:b6:48:2e:
a4:17:a8:50:65:28:35:d5:db:2a:da:6e:cb:55:66:
96:e5:95:98:d7:70:19:bd:06:95:9b:ac:5a:58:89:
d1:db:9c:87:6a:2b:38:aa:5d:6b:97:7f:09:1a:14:
d4:a9:ca:7e:da:d8:cd:4b:88:17:6f:5f:74:3a:f0:
ca:bf:f1:06:8d:3f:25:c9:85:03:49:e5:c6:10:55:
f5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F4:64:13:A5:5E:D3:99:5D:0C:BC:51:D4:79:7E:5D:F7:B3:5B:91
X509v3 Authority Key Identifier:
keyid:C2:E2:4A:6E:3B:37:5E:82:7E:BD:6E:28:8D:9E:55:32:B3:A1:B6:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wuJKbjs3XoJ-vW4ojZ5VMrOhtoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/f916bc-29b1-4f09-83de-d544ac062d1f/1/wfRkE6Ve05ldDLxR1Hl-XfezW5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/f916bc-29b1-4f09-83de-d544ac062d1f/1/wuJKbjs3XoJ-vW4ojZ5VMrOhtoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.191.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:e1:c5:a9:04:17:b5:87:34:d8:ff:b2:ef:b0:09:df:cc:12:
78:a8:05:cf:77:7e:47:aa:ec:39:87:78:cb:e9:28:e6:ae:e2:
3e:c2:30:16:f2:09:cc:25:13:b4:ae:6d:3f:4d:a4:ca:a1:c7:
bc:dc:d7:18:82:8a:61:3c:c7:fa:3f:8e:59:35:24:18:45:df:
66:d8:a4:e0:a2:2f:73:d1:40:81:85:d6:97:9d:75:f9:58:84:
19:50:99:78:42:f1:3e:d7:30:e1:9a:69:e7:a9:9c:1d:6d:73:
3c:da:f2:91:0f:4e:3a:74:c8:ce:b0:cf:cf:8a:88:55:3c:7e:
67:fc:49:6c:73:92:92:21:59:93:77:ab:bb:00:29:1c:aa:9c:
51:b6:f2:08:d6:3f:0a:64:e8:d0:e9:c7:93:09:8d:a1:69:4c:
e6:75:e1:36:e8:cb:c2:cd:89:95:e0:62:89:36:fd:e7:10:a5:
62:22:94:cd:4e:58:b1:c2:4f:75:e4:3d:18:25:50:14:00:15:
19:2f:09:23:8c:1c:ed:99:38:56:5f:7a:f8:a0:95:71:ec:cf:
c3:c5:91:b4:dd:63:ce:ca:b3:01:2b:c5:e2:a9:04:4a:a9:01:
4e:e3:88:0f:2a:b2:fb:1c:6d:61:ae:56:85:7a:69:75:65:90:
50:f3:90:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:40 2024 by rpki-client on console-fra.rpki-client.org