Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/WIzML6rYO006EblOKGoruTpES-M.roa
File: WIzML6rYO006EblOKGoruTpES-M.roa (raw, json)
Hash identifier: 4zW8lU55gTc1cO+974hkIsepOzQGe9IwgUQiDMqpcmc=
Subject key identifier: 58:8C:CC:2F:AA:D8:3B:4D:3A:11:B9:4E:28:6A:2B:B9:3A:44:4B:E3
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0185362B15024A7BD3CCA9E3C3A58C11B02D
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/WIzML6rYO006EblOKGoruTpES-M.roa
Signing time: Wed 21 Dec 2022 19:31:10 +0000
ROA not before: Wed 21 Dec 2022 19:31:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200367
IP address blocks: 2a0c:9a40:8ca0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:36:2b:15:02:4a:7b:d3:cc:a9:e3:c3:a5:8c:11:b0:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Dec 21 19:31:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=588ccc2faad83b4d3a11b94e286a2bb93a444be3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cf:48:fb:38:52:e9:42:fc:6f:0a:64:ac:67:
54:40:6b:d3:29:93:19:48:05:78:a0:dd:52:6a:cd:
0f:51:11:67:18:25:24:37:60:91:94:2b:23:6e:cc:
9b:38:fa:1d:68:89:ea:be:e0:45:c6:b4:6d:bc:bd:
f7:23:4b:fb:10:f9:ec:f8:3b:26:32:4a:df:89:4d:
c2:ef:02:48:f9:f4:cd:38:ad:66:93:ad:0e:13:c7:
8a:c8:68:a1:04:6e:56:60:f1:fd:18:37:85:77:06:
5a:0b:2e:57:09:dc:3a:2b:8f:a4:ec:1f:5b:94:e4:
6b:ba:8a:b3:e1:16:11:a0:fa:fa:c6:6d:39:86:0e:
f7:09:58:8a:0f:ac:13:ff:09:25:84:cd:b3:06:14:
bf:f4:73:9b:66:47:5e:31:d0:94:d3:d6:72:18:b7:
0d:f4:70:ea:89:69:10:ea:24:9a:d4:ff:68:e0:c3:
d7:32:fd:29:4c:c0:9c:41:ef:bb:bc:3b:81:a5:86:
8f:9d:9e:21:6f:cc:0f:5a:ca:91:b5:80:50:e6:5b:
fb:39:ff:a9:bd:b5:29:ec:03:5d:0f:41:14:38:a8:
4f:e4:e6:11:88:87:c4:60:61:31:67:0b:50:62:ce:
f9:4b:92:76:99:29:5c:d2:87:ae:f1:89:9a:53:f4:
d0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:8C:CC:2F:AA:D8:3B:4D:3A:11:B9:4E:28:6A:2B:B9:3A:44:4B:E3
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/WIzML6rYO006EblOKGoruTpES-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8ca0::/44
Signature Algorithm: sha256WithRSAEncryption
52:71:c6:4c:cc:c6:72:3b:9c:58:9d:7e:26:84:ff:3d:37:41:
1f:ad:07:01:4b:c3:eb:28:e3:70:92:78:fa:ac:ef:a2:4f:c9:
06:7e:ce:22:6b:31:ff:67:7d:ca:6d:f0:a7:c4:61:35:d9:f3:
6b:19:45:be:3d:9f:b1:c4:39:a5:ea:28:39:58:78:37:de:27:
6f:ad:7c:c7:7f:59:3c:97:89:ad:0a:4b:02:ed:d8:be:3c:d0:
af:64:73:4f:28:5a:f7:ba:15:ba:68:46:a5:f4:2d:64:2d:29:
15:4d:19:57:61:f4:1a:67:b2:6f:31:18:0f:1d:62:f1:18:9c:
c3:a3:b9:8c:a0:ec:4f:22:a8:e4:34:a1:bc:69:cf:26:d0:91:
09:af:87:c1:f7:22:41:f9:89:7f:6f:34:16:39:76:cc:c2:6f:
7c:73:f6:59:8a:61:56:d8:89:a6:1f:50:1c:49:21:da:1f:6b:
a0:44:59:45:5e:ad:58:4b:3a:6f:bf:22:a4:40:d4:09:b2:22:
7b:e1:0f:87:28:e8:e8:c8:64:74:81:b4:70:d7:c3:64:e9:01:
92:0f:98:1b:00:4a:0e:b4:72:48:20:54:9e:89:05:7b:be:0b:
ad:51:0e:07:a7:fc:b3:30:b3:09:80:65:c1:32:58:72:2f:f6:
52:fd:08:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:34 2023 by rpki-client on console-fra.rpki-client.org