Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/WwQtM-mJyzjzNoHFMNj9fzUqBu4.roa
File: WwQtM-mJyzjzNoHFMNj9fzUqBu4.roa (raw, json)
Hash identifier: 0WsC6TltaYlnp+9LVBrdvbK5ljZGsLo3nSOxAm+GoQc=
Subject key identifier: 5B:04:2D:33:E9:89:CB:38:F3:36:81:C5:30:D8:FD:7F:35:2A:06:EE
Certificate issuer: /CN=838ec3942813d3f3536c127e1a821bfbef6db2a4
Certificate serial: 023387D9
Authority key identifier: 83:8E:C3:94:28:13:D3:F3:53:6C:12:7E:1A:82:1B:FB:EF:6D:B2:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g47DlCgT0_NTbBJ-GoIb--9tsqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/WwQtM-mJyzjzNoHFMNj9fzUqBu4.roa
Signing time: Sat 01 Jan 2022 15:05:13 +0000
ROA not before: Sat 01 Jan 2022 15:05:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211416
IP address blocks: 193.56.134.0/24 maxlen: 24
2a10:e840::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36931545 (0x23387d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=838ec3942813d3f3536c127e1a821bfbef6db2a4
Validity
Not Before: Jan 1 15:05:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b042d33e989cb38f33681c530d8fd7f352a06ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0f:2b:bb:5e:9e:ff:df:1d:d4:e5:4c:5f:f3:
e6:d5:ba:8b:9d:e9:f3:04:c0:0e:67:56:84:e8:03:
9a:30:7d:92:2d:76:71:13:49:7f:fe:29:7e:09:43:
90:60:c6:a9:b0:1b:96:94:f2:c9:12:19:ea:12:38:
6d:74:d6:97:e3:60:4e:e2:cf:af:e2:b9:6a:6d:f8:
7f:41:1a:e7:3e:16:7c:0d:86:e2:77:43:36:ec:26:
29:c4:18:2f:a4:93:cf:62:a1:a2:1f:b4:b0:4a:3d:
a1:b4:84:c9:e8:b6:92:22:4c:06:ed:16:eb:ee:f3:
80:3f:e2:2c:3c:4c:e9:b4:df:7e:c6:72:79:4b:1b:
ba:01:19:c1:cc:41:db:61:34:bd:f3:c2:73:d8:72:
b3:cc:68:a0:2b:22:14:a4:d8:10:a8:24:e4:ad:79:
c0:bd:aa:03:8c:e4:f2:e7:2d:72:ef:e3:da:1d:df:
74:df:05:e9:c4:b0:f6:ca:2c:d6:98:71:82:c1:0e:
22:95:7d:d3:78:f0:55:46:78:42:42:f2:fa:5b:db:
b5:10:74:e4:17:2e:a2:c1:0f:ac:4a:db:11:ab:7b:
e3:90:03:03:d9:2c:cc:84:7b:04:94:4d:10:08:94:
82:1f:7a:73:a3:84:40:50:f8:a8:71:5c:c3:c4:06:
42:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:04:2D:33:E9:89:CB:38:F3:36:81:C5:30:D8:FD:7F:35:2A:06:EE
X509v3 Authority Key Identifier:
keyid:83:8E:C3:94:28:13:D3:F3:53:6C:12:7E:1A:82:1B:FB:EF:6D:B2:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g47DlCgT0_NTbBJ-GoIb--9tsqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/WwQtM-mJyzjzNoHFMNj9fzUqBu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/g47DlCgT0_NTbBJ-GoIb--9tsqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.134.0/24
IPv6:
2a10:e840::/32
Signature Algorithm: sha256WithRSAEncryption
8c:ca:de:1c:72:0f:45:ed:2a:ee:ac:bc:c0:3d:70:4b:48:e1:
53:9e:0c:8a:73:8e:d0:ed:67:51:a9:9a:9c:61:76:c7:91:3c:
81:9c:c8:6d:b6:0b:ef:4a:8f:52:95:9e:4d:50:41:e4:92:fd:
7a:45:a1:63:cb:1e:c4:8b:e2:ad:9c:0c:eb:8b:c5:c5:bc:fd:
d7:5d:db:49:75:22:73:0e:a6:b2:1a:49:77:11:2d:06:ea:9f:
d5:c4:a2:6e:32:b9:57:27:68:d8:c9:d5:40:89:85:69:c5:f7:
b5:2a:9a:f6:7c:25:64:c7:0e:f1:ba:f7:e7:5e:23:3d:56:07:
7e:33:b9:91:25:c0:28:19:f7:fb:87:37:87:a3:0a:36:29:ae:
52:62:01:a0:cb:6d:08:bc:21:03:f1:5b:ec:0a:f6:0c:75:37:
c9:7b:f6:47:db:2b:22:b0:d1:3c:31:03:ab:5a:70:5a:0d:de:
6c:54:07:b8:90:c1:fd:f1:49:4a:72:0c:cb:7f:c6:f6:b5:57:
90:fd:7c:97:64:31:0b:d7:04:d2:63:99:79:f8:ba:be:48:3c:
89:80:19:bc:0a:c4:be:b7:a0:00:e3:41:54:af:5d:5e:0d:3a:
30:d0:c3:27:8e:be:86:44:2e:4f:52:95:73:2d:d9:7b:1d:48:
6d:64:0d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:21 2024 by rpki-client on console-fra.rpki-client.org