Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/wfegAjVvhCh4llHlcp0JiCIaVSU.roa
File: wfegAjVvhCh4llHlcp0JiCIaVSU.roa (raw, json)
Hash identifier: cD0sm+Oa+qjyrHpuZJnHsk8fRLgzdyofdrOBck8JyKU=
Subject key identifier: C1:F7:A0:02:35:6F:84:28:78:96:51:E5:72:9D:09:88:22:1A:55:25
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 429701E4
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/wfegAjVvhCh4llHlcp0JiCIaVSU.roa
Signing time: Sat 01 Jan 2022 06:04:55 +0000
ROA not before: Sat 01 Jan 2022 06:04:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12846
IP address blocks: 90.188.0.0/20 maxlen: 20
90.188.16.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1117192676 (0x429701e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:04:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1f7a002356f8428789651e5729d0988221a5525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ba:61:9c:86:79:6e:44:c2:ac:5b:cc:bf:c6:
c5:ef:6f:a9:ae:0d:d5:b5:b8:50:c2:a9:86:93:dc:
8b:7e:c3:aa:0b:10:fa:2d:7f:52:da:3c:ac:16:b0:
c6:96:63:bf:5d:a4:81:52:28:7c:89:40:bd:2c:08:
0c:18:05:7a:91:5f:50:ee:45:73:7f:16:73:de:d9:
57:8b:75:4c:0b:c9:6f:c9:9a:4c:cf:e4:92:55:41:
fd:82:9b:d8:88:b8:6b:c0:82:3f:8c:f4:4f:5e:9f:
3f:5d:cb:63:a6:b0:58:6c:40:fb:84:93:59:f6:0c:
08:44:c5:8c:f0:0e:d4:0b:d0:2c:7a:2d:68:8f:fc:
a7:76:a5:e5:7d:2c:34:2f:7c:08:d2:c0:77:a1:c8:
3c:5c:66:0c:a8:0b:9a:5c:43:4c:39:e3:5e:ad:ef:
66:32:e6:43:f5:53:7d:8e:a1:1f:bc:ef:96:19:94:
06:9c:05:b2:cc:2a:fb:b7:de:90:60:dc:ce:26:64:
6d:63:f7:c5:56:ef:fd:3a:88:45:d5:b2:81:5f:0d:
b1:7f:a5:55:0b:c2:08:05:04:df:29:10:6d:fa:83:
56:f0:91:b1:a6:f5:f5:f2:0d:4e:9f:73:f6:01:49:
a0:b7:19:9c:c6:d5:29:83:48:c3:46:05:b6:71:e3:
5e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F7:A0:02:35:6F:84:28:78:96:51:E5:72:9D:09:88:22:1A:55:25
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/wfegAjVvhCh4llHlcp0JiCIaVSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.188.0.0/19
Signature Algorithm: sha256WithRSAEncryption
6b:bf:42:ee:01:f9:7f:3a:25:f6:59:e4:35:b1:99:91:2d:04:
59:5f:e9:01:70:1c:d9:77:40:1a:b1:92:73:75:d6:10:b4:da:
9d:83:15:9b:59:c6:f0:3b:67:07:35:d8:e9:35:ca:7e:0c:c0:
4d:85:f2:61:8c:37:0b:72:2a:db:41:4e:ba:f1:f4:5c:b9:c8:
78:dc:92:ba:83:26:14:95:43:23:af:1a:66:61:47:e5:33:67:
95:5a:ce:be:94:eb:2d:c2:2b:26:33:fb:31:c6:cd:a1:b2:e6:
83:f7:e2:47:6b:14:7c:d7:88:ec:03:13:23:37:7a:a1:6b:e8:
34:8f:11:1f:66:c0:67:11:01:64:67:52:b4:cf:e2:ba:d9:6f:
1e:8b:d1:f5:2d:08:57:e6:ae:ba:6b:f3:31:30:14:36:82:1f:
46:f3:c2:c4:a5:29:8a:e9:58:6c:e9:05:87:22:03:34:3e:89:
56:c2:f7:9a:50:87:f0:60:4a:14:36:94:80:64:f6:84:2b:ec:
63:37:90:09:14:eb:99:ba:8c:2b:df:4c:01:94:3d:cb:2f:2d:
70:5e:0a:0a:84:ea:ec:40:25:1a:32:f3:fc:05:4d:82:f1:1a:
ea:79:4d:6e:43:5f:0c:38:f0:4b:c4:c3:21:96:da:e0:56:e7:
7f:c1:c7:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:27 2024 by rpki-client on console-ams.rpki-client.org