Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WHFVHEaznpkCfR7CrgCRgWxBRyo.roa
File: WHFVHEaznpkCfR7CrgCRgWxBRyo.roa (raw, json)
Hash identifier: 1dwUlX0XE75rHw45qOU7ox41WtU+UgiIxt7o/pfsxdg=
Subject key identifier: 58:71:55:1C:46:B3:9E:99:02:7D:1E:C2:AE:00:91:81:6C:41:47:2A
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0E269CFE
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WHFVHEaznpkCfR7CrgCRgWxBRyo.roa
Signing time: Sat 01 Jan 2022 01:58:25 +0000
ROA not before: Sat 01 Jan 2022 01:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212025
IP address blocks: 193.108.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 237411582 (0xe269cfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 01:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5871551c46b39e99027d1ec2ae0091816c41472a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d2:a4:30:e3:1c:1c:40:02:0a:51:91:3c:b5:
75:68:e5:a3:d0:58:7c:a9:c1:29:64:44:27:de:13:
cd:41:a0:87:e1:c4:78:ab:c2:39:de:54:f6:c8:46:
78:fa:f2:55:d2:14:e1:3b:48:e9:05:a5:c2:c6:7d:
ea:e1:d7:70:8f:2d:2a:ad:af:7a:34:13:00:8b:f2:
b2:18:5d:2d:13:ff:08:c0:1d:6a:43:0f:43:2d:24:
04:97:c3:65:10:83:ea:a6:48:b9:d2:33:54:45:fe:
4f:a4:e7:bb:bc:64:e9:f5:1d:70:df:6a:b4:09:bb:
fe:86:03:6b:50:4e:e6:b8:0f:bd:97:60:a2:c3:53:
27:6c:7e:7f:f0:b1:c7:50:0d:18:9e:83:7f:90:bf:
8c:49:1a:71:dd:c8:f9:8d:c5:db:00:e2:76:29:ad:
6b:42:a4:0d:0f:a3:49:f4:8c:0e:63:56:b7:92:c9:
3c:50:7c:a9:13:6c:4e:4a:39:53:5d:3b:c4:35:1a:
8b:a6:44:4b:da:27:01:be:27:b1:30:d0:c0:0b:9e:
27:60:0d:e0:a0:37:5b:96:c7:09:d5:44:80:bb:9c:
98:a3:ec:ca:1f:e4:f5:8c:c9:0a:a1:b3:22:b5:63:
d7:a7:cc:a5:40:2a:97:3f:7f:85:65:47:bc:29:a6:
c9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:71:55:1C:46:B3:9E:99:02:7D:1E:C2:AE:00:91:81:6C:41:47:2A
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WHFVHEaznpkCfR7CrgCRgWxBRyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.115.0/24
Signature Algorithm: sha256WithRSAEncryption
22:3a:15:60:4e:9f:ec:4e:b4:b5:0b:d2:6e:93:71:d6:6b:75:
e7:17:84:0e:5c:26:c4:f8:f9:89:77:02:22:61:00:65:03:cc:
4b:6d:67:be:41:c3:05:6c:aa:e7:f6:25:0e:18:8a:63:45:46:
69:b3:fb:69:11:c3:ce:f3:db:19:7a:93:ec:e6:de:b9:94:fe:
4d:83:53:7e:33:6e:ee:49:6b:5c:7e:e6:d9:7d:3c:e7:0b:40:
a1:67:ca:f6:e3:e0:23:5f:c3:24:b2:80:54:c8:06:4b:92:fe:
92:5e:81:88:c0:8c:64:2e:5f:a5:e9:cc:c3:9a:fc:3a:e6:81:
39:76:1d:df:3c:53:ed:37:59:19:92:78:26:ff:f7:bc:f0:b8:
94:da:58:bd:d4:b2:7c:ea:2d:3a:b0:2a:3e:af:97:19:ab:ae:
d4:c6:ff:d7:16:89:d9:66:c1:be:28:a7:55:70:33:e9:e8:78:
32:ab:49:c8:f9:2d:f9:d1:a7:94:f1:c2:f4:c8:1e:d0:d5:ac:
b9:d1:db:35:ea:9f:67:8b:b4:88:d4:41:29:12:e1:de:64:05:
c5:67:9a:45:7b:29:eb:90:79:a5:44:e1:b2:31:99:f6:50:9e:
2b:fe:c8:70:57:1b:fc:06:af:5c:67:9e:46:77:48:5a:d5:fa:
91:82:14:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:05 2023 by rpki-client on console-fra.rpki-client.org