Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/wFyhuPyg-2djv7RZag0X8Y8_5ag.roa
File: wFyhuPyg-2djv7RZag0X8Y8_5ag.roa (raw, json)
Hash identifier: NpAc20+0tDbTSlIQbtYntxdmZfTKNY2xRVRuiD2IeDk=
Subject key identifier: C0:5C:A1:B8:FC:A0:FB:67:63:BF:B4:59:6A:0D:17:F1:8F:3F:E5:A8
Certificate issuer: /CN=854bb7aa3908c998de3c42f7e1849538b0592617
Certificate serial: 0182EE4C74C3F118ABF77E5F3D6BE5050D01
Authority key identifier: 85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/wFyhuPyg-2djv7RZag0X8Y8_5ag.roa
Signing time: Tue 30 Aug 2022 10:29:24 +0000
ROA not before: Tue 30 Aug 2022 10:29:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39522
IP address blocks: 193.36.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:4c:74:c3:f1:18:ab:f7:7e:5f:3d:6b:e5:05:0d:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854bb7aa3908c998de3c42f7e1849538b0592617
Validity
Not Before: Aug 30 10:29:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c05ca1b8fca0fb6763bfb4596a0d17f18f3fe5a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0c:10:88:44:71:69:b5:82:84:48:fd:55:c4:
bd:9a:2a:c8:05:50:31:86:94:e0:13:38:3f:dc:21:
a0:e0:b6:af:2d:99:60:b6:e2:21:49:ef:42:32:54:
c6:0c:37:28:32:a1:31:56:1d:52:13:94:18:05:24:
38:0a:ef:22:09:69:4b:a3:94:2d:78:f5:0a:e9:01:
49:11:c5:83:7c:fa:4a:1b:00:5c:fb:61:00:da:41:
fa:96:fb:b0:bf:19:47:86:d0:68:cf:78:80:84:61:
2d:e9:bb:93:65:6d:b0:f8:1b:2d:cd:29:2a:e1:73:
84:31:77:f3:60:b9:4b:16:ff:67:db:34:50:0e:20:
99:23:2c:b3:b6:f3:87:9b:a1:48:ad:4c:79:ac:87:
95:cd:ad:be:f3:1d:ff:92:70:ce:4a:1d:74:51:81:
11:a1:6d:de:22:35:d6:05:de:f5:23:d0:37:e1:91:
f6:5e:df:44:12:fa:d3:8b:ed:46:64:65:11:be:15:
43:f4:e2:3a:09:d3:ec:e1:12:7d:f5:e1:cc:09:98:
0d:9f:d2:56:3d:2d:59:2d:42:26:2a:18:5d:11:ba:
72:a8:1e:75:b2:30:24:3f:27:bb:c4:ab:a7:0e:27:
db:f9:ca:a6:cc:8d:f8:1e:1a:45:3e:9d:aa:fb:eb:
1d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:5C:A1:B8:FC:A0:FB:67:63:BF:B4:59:6A:0D:17:F1:8F:3F:E5:A8
X509v3 Authority Key Identifier:
keyid:85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/wFyhuPyg-2djv7RZag0X8Y8_5ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.33.0/24
Signature Algorithm: sha256WithRSAEncryption
51:19:06:27:10:b3:ac:dd:54:bf:d7:03:cb:1f:6c:19:53:77:
09:54:38:2b:fc:fb:25:6d:0f:eb:71:a7:6d:20:96:ad:f9:98:
a4:d9:a3:17:8f:41:7e:b8:04:d9:0f:04:78:31:50:12:fd:a2:
b6:83:8f:96:95:84:52:dc:11:2e:17:a0:bf:2a:31:bf:8a:ca:
73:9c:3a:d4:04:94:5e:08:20:a0:7c:35:8b:90:aa:2e:ee:5a:
ff:00:33:b7:9a:42:85:78:f4:b8:23:71:c0:5a:b8:82:64:ec:
c9:4f:b5:60:41:3f:96:40:57:71:3d:9e:1e:06:8b:43:8e:cc:
0b:0d:e2:0b:5f:ea:44:6f:d6:f4:2b:cc:a8:ae:a4:1d:81:45:
b3:66:a7:63:cf:f3:7f:91:be:d8:cc:10:32:49:40:cb:cc:dc:
d6:d9:88:cd:a7:ea:8b:2c:60:5a:09:13:8b:47:e9:25:eb:ae:
82:b7:f0:7c:59:0c:8a:71:c0:41:4a:cc:3a:a2:b1:c0:8c:e7:
33:b5:1f:18:a5:dd:ea:c7:3c:8d:df:cc:5d:3a:08:77:db:07:
d3:7c:d5:75:2f:37:ae:c6:37:f8:43:21:26:8a:25:ab:34:13:
56:43:43:32:e9:c5:9c:30:10:b5:f4:ad:42:2a:c3:23:69:69:
d2:2d:ea:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:10 2024 by rpki-client on console-ams.rpki-client.org