Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/WVGNlHOzoGxQE5sgK50tM8dzdeQ.roa
File: WVGNlHOzoGxQE5sgK50tM8dzdeQ.roa (raw, json)
Hash identifier: BGDMHHSWmQ42k4FncT5icenNwAz/OfAqDY3QMmXeCs4=
Subject key identifier: 59:51:8D:94:73:B3:A0:6C:50:13:9B:20:2B:9D:2D:33:C7:73:75:E4
Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Certificate serial: 018B296A0D02F40974A3E7A7EC8CFDBE586B
Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/WVGNlHOzoGxQE5sgK50tM8dzdeQ.roa
Signing time: Fri 13 Oct 2023 14:21:37 +0000
ROA not before: Fri 13 Oct 2023 14:21:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49581
IP address blocks: 85.239.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:29:6a:0d:02:f4:09:74:a3:e7:a7:ec:8c:fd:be:58:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Validity
Not Before: Oct 13 14:21:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59518d9473b3a06c50139b202b9d2d33c77375e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:7d:eb:eb:8e:ad:45:96:8b:26:92:24:9a:e6:
eb:6d:f6:99:aa:07:cb:2c:05:d9:a5:de:cd:41:e8:
ed:6e:3e:8c:17:0c:7b:be:54:ac:b6:cf:8a:4f:8c:
83:4c:08:5d:7d:0a:0b:08:8a:fe:73:0d:2f:d7:d7:
3b:6c:ba:8a:72:1d:a6:54:2d:6c:20:a4:c3:a2:19:
84:e1:87:31:65:e3:d8:3c:5e:5e:91:29:14:38:87:
62:b4:51:ab:a0:0f:83:b7:66:c3:da:ec:eb:fb:06:
de:5c:78:29:28:21:ae:38:ce:80:9e:f7:98:37:42:
4b:41:60:cf:3e:18:34:38:e7:af:71:0f:98:33:43:
49:04:bc:f6:d2:de:02:98:0b:f1:74:a3:b9:96:0d:
62:cf:44:f0:af:be:bd:bd:1d:a6:9d:d5:02:8e:f0:
7f:bc:f3:f3:cf:7a:70:bd:e4:25:6d:5f:d7:44:66:
5f:e8:7b:52:6c:1b:0e:8e:d1:fd:4f:1a:12:a1:17:
11:c9:a9:dc:24:ed:ff:07:f3:9e:60:60:45:3b:7f:
4d:08:a9:7b:6e:56:49:cf:13:3d:df:2b:95:92:33:
c6:a1:9d:9b:e5:e6:2d:9b:73:fc:43:8b:b0:b7:4e:
c3:7a:27:dd:a0:92:3f:32:78:e6:f3:e1:43:27:2f:
62:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:51:8D:94:73:B3:A0:6C:50:13:9B:20:2B:9D:2D:33:C7:73:75:E4
X509v3 Authority Key Identifier:
keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/WVGNlHOzoGxQE5sgK50tM8dzdeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.148.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:b5:2f:f1:55:81:2b:27:dc:26:c2:67:e5:f3:a8:04:b6:b6:
22:fb:06:40:55:6b:7d:b4:45:77:7a:8f:b8:51:9f:da:99:c3:
1e:42:62:04:dc:a2:ff:a8:51:0d:47:e1:b1:a3:31:53:aa:b5:
19:55:d8:d7:8d:ae:9c:13:6d:c3:d1:19:0e:a5:65:eb:6a:61:
cc:77:88:f9:58:12:7e:8c:9b:52:3b:b9:53:b7:12:7c:42:18:
9b:ba:08:8f:79:91:c7:98:86:2b:9d:e6:91:53:85:a6:26:ed:
c9:cf:07:75:ea:b3:b3:09:e6:ec:30:8b:7a:6b:58:dc:8a:fe:
6a:2e:9d:37:5e:f2:cf:dc:ad:4a:d8:83:3a:76:7c:c3:98:8f:
7e:1c:54:80:60:71:7f:7e:9d:28:08:32:c9:a6:ef:48:92:6f:
b7:31:fe:ee:96:86:ef:86:d6:6a:8d:03:59:2a:61:5c:91:aa:
28:a2:e1:79:41:89:59:ee:c3:65:7b:dc:69:ce:89:65:6f:62:
c9:e5:d2:b6:c4:bd:d9:65:fe:cf:2d:d5:f2:e9:64:8f:72:05:
1b:38:93:70:50:d3:ba:1e:4b:ae:05:bf:fb:2b:52:17:ea:4c:
98:6a:d7:a5:96:1c:f9:7b:53:74:b8:3b:9c:7b:63:b1:08:0d:
57:e6:cf:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:56:13 2025 by rpki-client