Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/wflejgAejPDSCwKMPUJQs6U2XYg.roa
File: wflejgAejPDSCwKMPUJQs6U2XYg.roa (raw, json)
Hash identifier: ArYcjgjh2I1jvcaZjDDnu0Mb3NQyNrFZcGI9VXcyuKk=
Subject key identifier: C1:F9:5E:8E:00:1E:8C:F0:D2:0B:02:8C:3D:42:50:B3:A5:36:5D:88
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 019556F3
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/wflejgAejPDSCwKMPUJQs6U2XYg.roa
Signing time: Thu 07 Apr 2022 03:47:38 +0000
ROA not before: Thu 07 Apr 2022 03:47:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140812
IP address blocks: 91.221.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26564339 (0x19556f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Apr 7 03:47:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1f95e8e001e8cf0d20b028c3d4250b3a5365d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e2:58:e8:93:ab:30:48:38:55:55:56:46:05:
00:ce:24:36:bf:cd:9c:f9:23:1f:54:8b:5e:63:2b:
21:93:83:94:de:a7:06:c7:0b:6c:e5:69:03:56:60:
78:79:cf:03:f9:38:7b:f5:73:39:ac:cd:3f:4e:5e:
57:a7:64:62:90:64:c7:24:ae:b1:67:f1:c4:a9:18:
7e:3e:20:d8:24:3e:96:2d:3e:ff:01:4e:5c:56:5c:
10:7c:5f:d2:85:5f:c2:f7:10:4f:d0:b0:03:3f:9e:
63:80:63:57:ec:f8:92:49:94:67:e8:75:39:33:00:
f1:d2:52:3f:6f:ce:a1:65:f6:bf:b9:95:dd:d7:4e:
ba:f6:1e:9c:b3:b5:ac:a6:23:fa:e9:e7:81:29:d5:
8c:18:af:45:2b:09:5a:bf:ac:ff:76:d8:b9:0b:6d:
35:e5:a3:1e:45:0b:e0:7e:e8:49:f4:59:03:06:f2:
1e:5f:7b:e2:89:c6:a4:98:35:75:de:a4:51:6e:d9:
a9:8d:50:a7:cc:eb:b8:66:66:01:37:a5:24:62:8d:
05:c9:e8:42:5d:0e:30:28:3e:5b:af:c1:36:d1:88:
ef:50:29:56:88:6e:d5:2d:5d:39:7b:10:9b:ec:49:
84:a5:7a:32:fe:9b:2a:7c:bf:09:a5:a0:4b:b2:be:
f0:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F9:5E:8E:00:1E:8C:F0:D2:0B:02:8C:3D:42:50:B3:A5:36:5D:88
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/wflejgAejPDSCwKMPUJQs6U2XYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.117.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:05:38:41:ff:2f:70:80:79:b4:e5:8d:69:d4:f4:22:7d:08:
09:4b:d8:22:44:12:31:c9:4d:c9:10:6d:61:ef:4d:12:df:5f:
d6:e8:32:23:04:2e:65:c8:f2:b0:a4:3a:93:fc:e2:13:e5:98:
ee:73:fd:d9:9a:86:44:e7:f7:4e:26:79:de:68:27:52:ea:ed:
a3:bc:d0:3a:6b:22:cf:ee:f2:00:37:4e:f8:26:e0:62:a4:54:
01:e4:c3:a2:a7:26:9f:f7:31:58:00:ea:59:bc:38:07:ab:e2:
ba:a3:26:a6:2b:d0:1e:f0:68:a6:a5:ee:cf:54:27:dc:47:6e:
37:9f:1c:c4:5a:d7:30:23:69:ef:c9:b5:de:42:95:66:55:59:
79:0c:ec:34:0b:ac:a1:bf:b4:f6:81:c5:60:63:10:91:c5:05:
ff:f7:91:16:34:0c:2d:b0:9d:ad:f4:0b:9f:11:8d:23:bf:b9:
41:0a:71:36:c8:2b:21:48:b7:1a:c1:2a:aa:8b:56:89:d7:6c:
57:9d:83:da:91:86:a0:a5:90:76:5c:51:f7:86:52:ff:dc:c0:
89:c4:b2:e6:3e:a0:08:3f:00:41:a0:c5:5e:30:7b:8f:45:79:
10:4d:69:f1:f1:bf:e2:dd:bf:75:0b:59:70:cf:ad:d4:ae:82:
0d:bc:5b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:38 2024 by rpki-client on console-ams.rpki-client.org