Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/1fffbb-ff24-4fab-a763-50adbeac8cb4/1/wtDnsqcklccGxmLiGmsf2aivNZ4.roa
File: wtDnsqcklccGxmLiGmsf2aivNZ4.roa (raw, json)
Hash identifier: i3AjlPUpkNngOMDGsiXrgKeVwmt/cr2n7RlGcAip1nE=
Subject key identifier: C2:D0:E7:B2:A7:24:95:C7:06:C6:62:E2:1A:6B:1F:D9:A8:AF:35:9E
Certificate issuer: /CN=d34274c8fc397bdbc6c7585a15c83212b050221f
Certificate serial: 06B9F927
Authority key identifier: D3:42:74:C8:FC:39:7B:DB:C6:C7:58:5A:15:C8:32:12:B0:50:22:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00J0yPw5e9vGx1haFcgyErBQIh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/1fffbb-ff24-4fab-a763-50adbeac8cb4/1/wtDnsqcklccGxmLiGmsf2aivNZ4.roa
Signing time: Sat 01 Jan 2022 14:06:56 +0000
ROA not before: Sat 01 Jan 2022 14:06:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8823
IP address blocks: 195.189.174.0/23 maxlen: 24
195.189.168.0/23 maxlen: 23
2a0f:53c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112851239 (0x6b9f927)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34274c8fc397bdbc6c7585a15c83212b050221f
Validity
Not Before: Jan 1 14:06:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2d0e7b2a72495c706c662e21a6b1fd9a8af359e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:4a:d4:b2:c7:66:44:b5:45:20:cc:15:39:41:
6d:fd:9f:f7:14:e3:c3:e8:35:3c:e6:69:2e:bc:59:
5f:bf:72:84:6c:73:d1:c0:39:0d:eb:f0:7b:3b:38:
1c:6f:09:18:ad:fc:6b:f1:1f:cc:36:fb:44:ed:bc:
6a:dc:ee:bf:4b:84:bc:18:37:7a:90:01:f6:51:35:
de:9f:c8:fe:73:b4:b3:cd:49:8a:20:fd:ed:c6:87:
71:41:90:1e:79:86:71:49:c4:d8:4c:3b:77:34:16:
39:ac:66:b2:b5:5b:d5:f2:77:9b:72:6f:40:64:93:
06:53:e3:d0:ab:f2:6c:4c:40:c5:09:45:ea:ed:df:
61:b2:9d:98:d5:f0:68:60:4d:81:ae:5d:0b:fd:1f:
5d:e6:41:70:e3:95:94:09:b4:84:ea:6e:a7:fa:24:
9b:5e:23:ad:71:c7:7f:70:38:2b:85:67:31:c9:3e:
12:f4:77:00:8e:22:73:d5:46:89:db:88:ba:6b:da:
e8:74:1c:44:f2:4d:fd:a3:e5:c3:3c:2f:95:81:87:
10:60:7e:26:cc:70:53:75:b4:73:48:5e:e1:21:93:
4e:9f:00:ac:50:0d:c0:77:35:c0:b7:e4:cb:47:ed:
6f:e6:fb:a3:aa:48:0b:38:95:0b:97:44:93:4f:fd:
5c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:D0:E7:B2:A7:24:95:C7:06:C6:62:E2:1A:6B:1F:D9:A8:AF:35:9E
X509v3 Authority Key Identifier:
keyid:D3:42:74:C8:FC:39:7B:DB:C6:C7:58:5A:15:C8:32:12:B0:50:22:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00J0yPw5e9vGx1haFcgyErBQIh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1fffbb-ff24-4fab-a763-50adbeac8cb4/1/wtDnsqcklccGxmLiGmsf2aivNZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1fffbb-ff24-4fab-a763-50adbeac8cb4/1/00J0yPw5e9vGx1haFcgyErBQIh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.189.168.0/23
195.189.174.0/23
IPv6:
2a0f:53c0::/29
Signature Algorithm: sha256WithRSAEncryption
12:27:cf:b1:30:74:d7:9d:3d:c9:a0:29:99:65:02:d1:19:ae:
78:d7:cd:c0:bc:2b:f9:eb:63:dd:ad:0f:87:60:43:05:c6:9b:
cb:a5:49:19:2e:6e:a5:67:3b:33:81:2a:d9:92:a5:1d:76:58:
60:08:12:d1:64:02:29:1a:4b:c8:63:b1:3a:8b:72:91:62:03:
f5:ca:09:4c:77:95:4e:66:ce:f4:e7:d1:dc:3d:b7:81:7c:8a:
95:ba:ca:fb:3f:6f:d5:0d:98:32:55:26:c9:cb:c8:56:0e:d1:
c9:09:af:49:f4:bc:fa:7a:79:a4:c2:af:15:58:d3:04:8a:9e:
87:09:22:1a:7e:2e:08:05:b4:25:64:85:1a:3f:f0:a4:ac:7b:
e7:e2:2c:93:89:c5:cd:0d:d5:50:33:08:9b:8e:4a:af:22:5c:
f6:09:27:19:02:8b:04:1d:f8:9e:d0:37:68:4c:7e:43:62:66:
85:98:d7:0a:29:f1:5e:d8:50:d2:8d:fb:92:30:3b:1a:84:0e:
b3:5b:5c:74:34:4d:99:f5:69:50:8a:85:5d:5c:bb:11:78:f9:
be:85:40:5a:e4:8d:75:fc:3b:7b:b1:d8:70:f1:8c:90:11:85:
1a:05:fe:06:67:ac:1d:2e:53:82:0c:9b:85:70:8b:88:62:21:
c6:4e:4c:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:43 2024 by rpki-client on console-ams.rpki-client.org