Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/WGHtteV7gw6TuYilHaYukruEYTQ.roa
File: WGHtteV7gw6TuYilHaYukruEYTQ.roa (raw, json)
Hash identifier: Hnb0aeFUpVCiGVo+Hf9ek5aREBdNUy1sEVgiJXZEzyU=
Subject key identifier: 58:61:ED:B5:E5:7B:83:0E:93:B9:88:A5:1D:A6:2E:92:BB:84:61:34
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 447915F4
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/WGHtteV7gw6TuYilHaYukruEYTQ.roa
Signing time: Sat 01 Jan 2022 03:58:24 +0000
ROA not before: Sat 01 Jan 2022 03:58:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16071
IP address blocks: 212.234.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1148786164 (0x447915f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5861edb5e57b830e93b988a51da62e92bb846134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:13:a6:7c:cf:92:51:7d:99:19:5f:d9:09:35:
a1:08:ae:7e:cb:8e:85:80:11:ef:5e:5c:92:a5:f1:
0e:3e:96:e0:de:9f:b4:d2:39:41:c4:a9:fc:e3:2b:
d6:0e:3c:f7:4b:fb:e8:d0:ac:c1:76:5c:29:25:b3:
89:7d:88:bb:99:30:5b:c5:8b:3c:51:bf:98:35:80:
08:ce:55:e7:46:e9:d9:f5:10:de:19:47:70:ce:08:
e5:d7:69:38:56:50:27:73:db:7b:b1:14:d4:b8:fd:
0b:c5:ab:0c:4d:85:b6:21:27:d7:51:59:41:c8:14:
1d:86:ac:39:50:cb:52:0e:c5:0b:e1:9b:6b:0e:54:
34:85:11:e1:c4:2a:74:c6:63:1e:35:c4:3c:e8:be:
15:ab:c2:dc:9d:69:e9:98:fe:80:ac:ab:22:ee:0c:
22:21:85:5b:fe:2b:fa:6f:66:5c:e9:85:e9:12:5a:
46:7a:ca:9b:3e:ac:86:61:d1:5f:a4:23:b2:59:65:
1c:9c:c1:f9:b2:c4:aa:47:9a:90:c2:9b:4a:02:f6:
8e:56:c3:a0:3c:c2:b0:6f:84:cc:bc:ed:5e:58:b2:
b8:38:7d:d2:1a:07:a6:2e:cb:e8:0a:af:7e:b2:69:
9f:b4:75:c1:72:97:d2:77:19:c6:60:47:55:56:c0:
9e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:61:ED:B5:E5:7B:83:0E:93:B9:88:A5:1D:A6:2E:92:BB:84:61:34
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/WGHtteV7gw6TuYilHaYukruEYTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.234.194.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:54:42:9a:14:77:70:4e:1a:24:d2:44:af:11:44:84:51:f3:
e8:ca:80:f9:78:d8:8e:62:c3:72:ed:80:42:a5:e6:e5:d1:4a:
ec:bf:36:7a:6c:3f:50:30:3e:70:f1:c0:8e:23:d3:33:f3:d0:
a2:f3:ea:7e:40:8c:04:03:91:4a:0b:85:97:21:8b:6d:37:7c:
bb:50:2e:2b:87:a0:6f:e7:9a:a8:6e:a7:08:8f:e9:0f:a6:ac:
81:b5:25:a1:1e:12:4e:07:aa:ba:63:eb:f8:8e:8e:d2:22:1c:
be:78:fa:74:b0:1d:1d:92:1a:56:48:21:01:54:47:7e:ec:87:
f8:b8:e5:a8:72:40:b9:86:0e:88:82:01:3e:88:2d:4e:fe:4a:
7b:52:4a:c3:d5:bb:60:f7:e9:0d:59:8d:ae:b3:c2:65:21:c2:
fd:69:11:35:81:75:9b:b4:0f:dd:c7:fe:f9:df:e8:da:78:63:
1e:50:65:62:a1:25:c4:9b:7d:91:f6:84:52:e1:91:66:f3:43:
6f:8f:03:29:d4:8e:01:e9:be:db:84:57:d8:44:a4:94:ba:87:
c5:34:c5:ba:75:dc:fc:ef:01:b8:80:b5:d0:c2:dc:f2:4e:95:
5a:da:5a:50:8a:a0:ea:91:a2:8c:88:ed:10:36:a4:9d:e9:ff:
e5:69:32:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:19 2024 by rpki-client on console-ams.rpki-client.org