Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/wGXhTQmQ6T4ki6MPd3R1yRCbcB8.roa
File: wGXhTQmQ6T4ki6MPd3R1yRCbcB8.roa (raw, json)
Hash identifier: LFuVW5uqUEc+YkE3Fo6twfQpiRwra6XAZT53p6woThY=
Subject key identifier: C0:65:E1:4D:09:90:E9:3E:24:8B:A3:0F:77:74:75:C9:10:9B:70:1F
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 01841DB54A39E8B593A4C4D253CCE4B4289A
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/wGXhTQmQ6T4ki6MPd3R1yRCbcB8.roa
Signing time: Fri 28 Oct 2022 08:28:51 +0000
ROA not before: Fri 28 Oct 2022 08:28:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210993
IP address blocks: 193.232.65.0/24 maxlen: 24
62.76.141.0/24 maxlen: 24
194.226.42.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1d:b5:4a:39:e8:b5:93:a4:c4:d2:53:cc:e4:b4:28:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Oct 28 08:28:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c065e14d0990e93e248ba30f777475c9109b701f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ac:d6:fd:c6:12:63:23:d2:5a:52:f6:45:aa:
e9:03:c1:0c:69:c6:11:52:3b:28:47:aa:ac:7f:be:
ff:a7:7b:38:1c:95:cf:a4:86:90:ae:d1:be:3a:17:
c6:84:e3:dd:19:6a:e4:ac:3e:c6:93:f9:78:fa:18:
d2:8a:19:46:ce:36:d0:17:e4:44:90:29:8d:06:ba:
88:69:68:47:de:a7:97:38:26:a4:b5:d0:a6:99:c5:
87:38:24:fc:27:5c:81:46:51:49:88:7f:f1:e3:26:
93:e6:b0:da:ae:ad:8f:29:36:9a:52:a0:7c:ec:57:
b1:8d:20:d0:9d:a8:79:0b:99:e9:0f:f9:c4:70:1b:
7b:1b:ba:9e:34:de:f1:3c:4d:7e:8a:aa:c4:ba:e7:
7c:f2:4f:06:14:80:f4:16:e6:53:b7:4b:54:cb:c4:
92:66:42:88:14:81:47:6a:a7:f6:28:d6:57:04:6e:
28:8b:fb:ae:e9:01:12:bd:f2:7b:92:d4:17:ed:fe:
ef:95:06:d4:6d:7d:81:8c:be:6d:48:63:71:70:37:
39:c6:d4:14:b7:dc:e0:a0:7a:2f:98:85:71:57:b4:
10:2a:7c:f2:33:2f:37:ef:26:9e:fd:34:26:92:df:
5c:3c:8c:52:63:b6:b9:e4:89:b6:35:a2:08:8c:88:
1f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:65:E1:4D:09:90:E9:3E:24:8B:A3:0F:77:74:75:C9:10:9B:70:1F
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/wGXhTQmQ6T4ki6MPd3R1yRCbcB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.141.0/24
193.232.65.0/24
194.226.42.0/24
Signature Algorithm: sha256WithRSAEncryption
62:7d:0a:b3:f2:a7:51:14:9d:2c:52:92:bc:d3:e3:a9:73:89:
e8:59:99:29:84:33:5c:15:2c:f2:3d:34:fb:73:3a:a1:29:e5:
9e:7f:3a:78:1d:2e:db:69:e5:a5:d3:6a:37:6c:95:f7:1a:ac:
ea:5f:e2:85:8b:3c:59:88:99:2d:a1:4f:d7:bc:85:0f:be:96:
f8:61:c6:da:02:f5:2a:b2:49:b8:ad:b6:ec:43:3f:ca:b4:92:
f3:a4:52:99:7e:c1:b4:8a:cf:7a:be:44:23:ae:89:59:d8:2c:
a1:34:a3:33:0b:2e:1e:2a:b5:2a:e4:ee:9b:b9:eb:f0:8f:ba:
ed:45:c3:88:28:6f:b2:34:23:f1:c5:93:b3:c4:61:b6:e4:ab:
b1:66:f7:01:0e:e8:6c:1d:bb:95:84:bf:89:47:d0:8b:7b:e4:
16:ec:50:1b:3a:70:3a:b0:95:1d:eb:e4:8a:bc:82:d1:c8:60:
c8:49:03:eb:52:d1:54:5c:43:a2:c1:83:8d:8f:57:27:1b:c2:
20:79:7a:e1:40:2e:11:e9:0d:c8:e0:43:90:68:c4:e9:a2:f4:
64:da:51:d0:bd:1f:30:20:fb:78:7d:fd:e7:aa:cc:07:10:b1:
5e:06:f0:c9:9c:77:f8:10:65:15:d1:74:c0:d6:c7:5c:12:1b:
15:45:34:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org