Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/WG7QCjPnlDys7T9QSSD9-mv1GNQ.roa
File: WG7QCjPnlDys7T9QSSD9-mv1GNQ.roa (raw, json)
Hash identifier: 3m909Qjwm8Wi/bC0kthEkLLykWWAX/Dvq7LNZDQT0Hs=
Subject key identifier: 58:6E:D0:0A:33:E7:94:3C:AC:ED:3F:50:49:20:FD:FA:6B:F5:18:D4
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 0A5B898A
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/WG7QCjPnlDys7T9QSSD9-mv1GNQ.roa
Signing time: Tue 28 Jun 2022 08:30:02 +0000
ROA not before: Tue 28 Jun 2022 08:30:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 45.86.156.0/22 maxlen: 24
2a09:ff00:102::/48 maxlen: 48
2a0d:ecc0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173771146 (0xa5b898a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jun 28 08:30:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=586ed00a33e7943caced3f504920fdfa6bf518d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b3:10:c5:07:90:74:67:5b:68:72:0b:c5:7b:
1e:ef:4e:d2:4d:52:d7:c8:29:a7:f4:f8:ae:7e:a6:
a6:0f:eb:46:c2:4d:cd:b7:6b:ac:32:56:fa:98:da:
16:60:54:33:65:d8:02:8d:8b:47:15:45:68:54:62:
eb:01:0f:95:5a:6f:9c:57:21:c1:68:db:54:12:e2:
1e:2d:68:ad:67:ba:ad:e6:b3:56:7a:40:80:33:79:
55:01:8d:ef:83:91:eb:06:15:8b:9f:3e:c1:9c:a4:
b4:0b:62:a1:02:35:84:55:10:3c:59:ba:19:c7:a0:
75:1a:38:f1:f0:04:f2:9d:2b:fe:77:81:35:4d:97:
2a:05:72:05:72:9e:b2:64:e7:a0:59:96:f5:6a:5c:
53:f9:5c:3c:a4:f2:7a:fa:f0:cd:63:40:92:d6:8b:
76:7a:ff:3f:29:89:c0:17:49:e6:15:ca:d3:87:94:
29:aa:c3:d3:67:b0:61:c7:f2:49:61:e7:a5:c7:8b:
66:48:8d:1c:58:20:1b:4c:5e:4d:3d:c9:0e:af:d4:
06:11:41:ae:e6:97:9f:53:e2:08:5b:ff:57:ad:a9:
4b:85:c9:ff:a1:5b:cb:8d:57:f1:c7:ff:06:53:b1:
f4:94:a1:58:40:f8:55:ca:fc:37:dd:58:0c:b9:4f:
ff:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:6E:D0:0A:33:E7:94:3C:AC:ED:3F:50:49:20:FD:FA:6B:F5:18:D4
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/WG7QCjPnlDys7T9QSSD9-mv1GNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.156.0/22
IPv6:
2a09:ff00:102::/48
2a0d:ecc0::/29
Signature Algorithm: sha256WithRSAEncryption
9d:b8:f5:b3:6a:fd:fd:d6:a7:8f:7a:7a:90:a9:e9:46:de:a1:
e4:06:4c:a2:6e:a2:8e:c4:9d:3a:1c:66:0d:d8:41:ae:90:1e:
f7:f9:39:f5:b6:6d:39:10:21:ac:b5:fe:27:b5:74:f2:35:25:
42:73:14:1a:36:0f:57:ba:d3:bc:a7:9f:8b:5a:5e:21:88:c2:
07:9e:94:28:7d:64:67:18:de:6b:85:a9:bc:b0:81:94:85:ce:
be:d9:50:f4:7d:eb:a2:6f:f4:f7:fa:73:3e:99:99:68:a6:f6:
c7:31:5f:df:98:7c:a4:6f:de:d7:54:fa:ad:7c:55:0d:02:cd:
74:54:ea:b8:a2:58:5e:05:fe:b1:f4:2b:cb:ff:f1:bc:ea:8c:
49:97:8d:ce:85:76:3e:8e:7b:a5:0c:90:85:06:19:09:19:4a:
32:9b:be:95:5a:f7:55:74:9d:b2:94:1c:58:57:a3:c1:d9:75:
29:2d:9b:d0:0d:af:ed:29:eb:d0:ee:32:d0:fb:e9:da:04:93:
96:e4:7e:f9:9c:6e:24:2f:ff:ca:ae:ea:ad:bd:ec:78:cc:25:
6a:41:82:cb:fb:53:80:2f:90:b0:39:cd:d7:bd:94:9b:d7:b5:
e8:66:9b:6e:7e:83:45:a6:0f:b1:f0:c8:ae:4b:98:1f:0a:95:
a0:dc:f4:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:34 2023 by rpki-client on console-fra.rpki-client.org