Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WPuru6e9tKy4GIBkn0gQK8seeWE.roa
File: WPuru6e9tKy4GIBkn0gQK8seeWE.roa (raw, json)
Hash identifier: ynqExYLdybHjSRKTw5tK88shcSg9E+mQ2PjfajZsaTo=
Subject key identifier: 58:FB:AB:BB:A7:BD:B4:AC:B8:18:80:64:9F:48:10:2B:CB:1E:79:61
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01840A26ABB3D3612D6682361311F446B55A
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WPuru6e9tKy4GIBkn0gQK8seeWE.roa
Signing time: Mon 24 Oct 2022 13:20:17 +0000
ROA not before: Mon 24 Oct 2022 13:20:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 195.133.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0a:26:ab:b3:d3:61:2d:66:82:36:13:11:f4:46:b5:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 24 13:20:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58fbabbba7bdb4acb81880649f48102bcb1e7961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a6:3a:61:6e:7d:6b:bb:bb:ab:db:f0:5c:84:
7a:4a:c3:58:b3:a9:b2:65:4c:ce:fd:23:ff:2a:a3:
e6:4f:d3:ee:c0:db:f0:e0:7e:a5:8b:28:03:0f:c1:
a0:a0:0d:bf:22:f5:6c:98:2f:59:a0:8e:39:da:8f:
93:58:d2:12:9e:4a:6d:94:82:f5:0f:91:ec:18:49:
af:06:bf:c2:dd:14:ff:c6:2b:4a:ce:a4:e1:7e:8c:
91:a6:3a:21:71:25:3a:c8:fc:6c:81:2c:00:68:f2:
be:2c:19:0a:04:4c:a4:28:7b:b5:4d:fe:ec:44:7d:
19:e3:cc:b6:8f:cc:e1:59:96:6d:5b:71:48:16:2f:
57:d5:88:4f:a8:a8:69:61:41:54:dc:f1:94:84:4a:
d7:8f:af:09:42:2b:a3:b7:c1:85:fa:c8:2c:bf:a5:
3b:01:53:08:84:4b:23:c0:d6:77:63:ae:18:f9:30:
42:81:f5:e1:db:75:9f:84:78:9f:45:6e:62:37:1f:
df:fb:d5:33:09:47:56:f2:49:aa:21:e2:32:1e:67:
8b:b9:fe:25:89:77:d5:fc:9f:69:25:9d:b6:cb:a2:
d3:32:18:17:a4:93:de:74:b7:c4:ad:48:2b:d6:aa:
3f:11:98:65:36:4b:ed:65:96:bb:3f:61:02:48:ba:
e8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:FB:AB:BB:A7:BD:B4:AC:B8:18:80:64:9F:48:10:2B:CB:1E:79:61
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WPuru6e9tKy4GIBkn0gQK8seeWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.94.0/24
Signature Algorithm: sha256WithRSAEncryption
30:7f:76:79:5d:0d:32:64:f0:53:bd:dc:32:fd:65:4d:50:56:
a1:8c:10:b0:7b:6c:aa:f4:49:6a:91:6a:fe:c1:ba:34:26:d4:
90:e8:65:26:fe:99:14:27:8b:0a:b5:20:88:8f:0f:dd:51:b9:
f9:c9:8d:cc:05:c9:a7:31:08:69:91:07:3a:3c:b6:78:56:8e:
f3:7b:f5:47:4d:6d:4b:4e:a7:cd:d9:57:a3:a6:2c:30:a0:94:
3f:37:23:b6:08:15:02:45:c5:10:43:2d:11:91:bc:65:ea:f2:
7e:2a:db:2b:30:b4:46:33:86:2c:7e:63:c2:78:27:af:ef:5c:
15:90:8e:9a:a6:16:f9:0e:ea:51:a1:58:3f:ee:fd:46:84:13:
b0:01:79:fd:3a:12:58:b7:74:1e:99:55:69:85:b9:16:83:1f:
27:ff:74:47:c1:60:53:7b:4b:f8:d7:8c:f9:a7:63:29:87:da:
10:01:c0:b4:ba:3d:05:d7:5d:8b:3e:35:dc:fa:23:f7:cb:6a:
08:e1:b8:c4:04:58:d7:d3:73:31:25:09:31:01:20:2f:7c:c2:
7c:89:d7:79:70:db:e2:58:4e:3b:57:8e:9c:18:a5:49:ab:e7:
e8:36:87:be:6e:36:29:69:92:b3:ce:ad:e2:1e:09:8f:eb:1d:
6c:79:76:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:18 2024 by rpki-client on console-fra.rpki-client.org