Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/whcztdPW77FvBVov1MEvytyTTXA.roa
File: whcztdPW77FvBVov1MEvytyTTXA.roa (raw, json)
Hash identifier: 1M/4ZxmnTOFcKeSkeF34/uQZWiFnN8lTZ3XW9S1K/yA=
Subject key identifier: C2:17:33:B5:D3:D6:EF:B1:6F:05:5A:2F:D4:C1:2F:CA:DC:93:4D:70
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 08F18F65
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/whcztdPW77FvBVov1MEvytyTTXA.roa
Signing time: Sat 01 Jan 2022 11:59:42 +0000
ROA not before: Sat 01 Jan 2022 11:59:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208266
IP address blocks: 2a0e:800:ff40::/42 maxlen: 48
2a0e:800:ff20::/48 maxlen: 48
2a0e:800:ff21::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150048613 (0x8f18f65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: Jan 1 11:59:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c21733b5d3d6efb16f055a2fd4c12fcadc934d70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b0:19:55:4a:8e:8b:1f:c3:bd:36:b7:3e:42:
0f:94:7f:7f:a8:42:4e:1a:6a:f7:ef:28:9b:aa:f6:
a0:1b:fa:31:5e:b3:73:27:93:66:9d:57:b7:f2:7c:
c6:18:10:9d:a3:51:6a:e6:64:59:98:43:24:88:d1:
d6:d5:37:f9:ba:53:d3:46:6a:57:f7:94:cd:3e:71:
ba:53:f6:73:dc:9e:25:a5:c6:aa:01:36:21:3e:f2:
0f:f5:33:5f:b8:d8:c8:e9:03:44:15:9c:b8:c7:0e:
71:12:af:83:2d:d9:e8:be:ed:c8:2a:a0:ef:8a:c1:
59:c4:d7:c1:72:34:fb:7b:d5:ec:d5:c5:0a:9d:08:
23:81:36:e9:dd:02:91:40:64:1f:65:fa:bc:d3:64:
22:ef:14:5f:ff:99:26:f2:64:dd:be:23:c8:b4:c2:
c5:5b:eb:fc:dd:6c:a9:e8:50:46:be:b3:33:5c:00:
8e:06:a3:de:33:ff:55:0c:6e:3d:a1:cb:6f:bf:a6:
b4:1b:d5:df:f8:3e:dc:7e:06:4a:b7:e3:ec:a1:4e:
77:f9:f6:f1:25:67:02:a0:45:bf:55:ea:6b:33:70:
ab:57:41:b7:4b:ae:e7:39:07:5c:09:23:67:e7:4a:
43:34:cc:cd:1f:2f:39:4e:72:61:e3:c4:6d:c9:1d:
fe:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:17:33:B5:D3:D6:EF:B1:6F:05:5A:2F:D4:C1:2F:CA:DC:93:4D:70
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/whcztdPW77FvBVov1MEvytyTTXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:800:ff20::/47
2a0e:800:ff40::/42
Signature Algorithm: sha256WithRSAEncryption
29:c4:a8:d7:f6:52:57:53:1e:4d:1e:54:31:cb:ed:4e:e9:a5:
99:b1:01:7d:f6:5c:9c:56:2b:4c:92:83:9b:d0:81:6f:60:2e:
ae:3f:07:42:ee:55:75:a3:7f:97:fc:3b:bb:09:46:7a:df:4b:
c4:14:fc:5c:08:fb:7b:62:9b:dc:1b:c8:b0:e5:c5:99:93:ea:
c1:1d:7c:9d:b7:19:b1:58:20:2e:d4:62:cf:38:91:e0:8c:61:
07:1f:9f:ff:e2:aa:ba:7f:7c:2c:00:e4:0c:56:1e:5d:cf:e4:
54:1d:1c:0b:e8:11:22:03:6b:ce:c5:07:9c:df:72:92:20:f4:
26:64:d6:37:c8:17:c0:dc:2b:ca:76:48:39:b5:72:91:41:08:
12:bc:e0:c5:c7:e9:c6:cc:e7:bb:ad:b9:db:fd:35:cf:7b:14:
71:09:cc:fd:78:24:8e:0b:b3:1b:47:10:94:f8:46:32:16:31:
5a:78:c7:c8:7c:8c:56:e9:3c:cf:5d:1e:12:f4:0a:90:cd:95:
c8:34:b7:d2:bd:63:69:ba:86:28:59:32:a8:33:e7:b2:04:9a:
32:7c:1d:63:27:db:1d:74:3e:5a:a3:fe:fc:74:73:ca:0b:c7:
06:1f:90:a6:c7:b7:6d:ef:2d:fd:0a:76:e2:07:fd:61:09:d0:
28:98:90:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org