Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/WiS_9iM7eQ88gMr0toqOLNV4cXM.roa
File: WiS_9iM7eQ88gMr0toqOLNV4cXM.roa (raw, json)
Hash identifier: Y697djDqANZwrg58U2AQTRhdi9tnJux73k3Zg9KAen0=
Subject key identifier: 5A:24:BF:F6:23:3B:79:0F:3C:80:CA:F4:B6:8A:8E:2C:D5:78:71:73
Certificate issuer: /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial: 0502F6CD
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/WiS_9iM7eQ88gMr0toqOLNV4cXM.roa
Signing time: Sat 01 Jan 2022 04:56:08 +0000
ROA not before: Sat 01 Jan 2022 04:56:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1836
IP address blocks: 2001:678:810::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84080333 (0x502f6cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
Validity
Not Before: Jan 1 04:56:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a24bff6233b790f3c80caf4b68a8e2cd5787173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7c:29:6b:2c:b7:51:15:eb:a8:71:de:7d:a6:
37:69:ef:9e:bc:65:35:18:d8:8f:fc:62:dd:16:2f:
7e:e2:02:01:90:6a:f6:71:78:0d:12:25:f7:94:d3:
42:1d:60:1f:90:1e:92:8e:45:0a:13:d9:b1:ac:cc:
27:35:4e:ed:aa:a1:9f:d9:f8:fb:16:58:90:99:7d:
52:58:4f:21:c6:93:11:2d:d0:3a:5d:ff:1e:74:b5:
cf:a3:15:60:40:23:6b:ad:29:5d:5e:df:2f:9c:df:
48:37:84:7b:e3:4d:17:2b:70:18:91:70:1c:e7:11:
ba:49:4e:6d:ce:a6:ec:9a:65:11:da:9d:c3:0b:cd:
82:d9:1a:b3:36:01:6a:3f:5a:ff:5d:2d:8d:d9:35:
c5:58:5f:60:a7:85:70:3b:f7:97:b0:fd:12:3f:ff:
fc:24:ed:21:fb:63:21:9b:9f:60:c7:0a:47:e5:f3:
92:db:e6:ea:84:4d:bd:5b:f2:87:6d:ff:1f:9b:c7:
71:26:62:5a:d1:59:18:c3:5d:90:79:17:9a:d6:0e:
d2:cb:47:19:f9:e3:82:9f:06:5b:aa:72:d0:28:6e:
c3:d3:1d:51:16:22:5f:18:24:bf:f6:5c:25:84:d0:
76:4f:0f:61:42:a7:93:24:0c:68:6f:ea:4d:e7:69:
f8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:24:BF:F6:23:3B:79:0F:3C:80:CA:F4:B6:8A:8E:2C:D5:78:71:73
X509v3 Authority Key Identifier:
keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/WiS_9iM7eQ88gMr0toqOLNV4cXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:810::/48
Signature Algorithm: sha256WithRSAEncryption
1a:78:7e:14:83:a4:c2:ce:0d:88:03:a8:9e:e7:a7:4b:01:96:
fd:6e:1d:0c:7c:a6:97:dc:7b:0c:0c:10:ed:5c:fc:d7:50:a4:
a5:4d:77:3e:da:ad:52:6f:c9:61:c8:a5:3b:70:23:4e:9b:18:
f8:2d:47:69:23:d3:14:7a:e8:c6:74:58:03:05:ba:a7:8a:32:
c0:80:4e:42:bf:76:0e:7f:39:37:b1:51:ed:b1:5a:7b:3f:8a:
03:06:31:39:9b:6e:40:7a:28:81:57:78:69:9d:5d:52:5f:33:
ad:80:5e:c8:86:bf:0f:90:04:d4:78:ab:01:45:16:81:d5:5e:
b1:6f:33:dd:27:9f:33:75:3c:67:2f:90:2e:b0:5f:73:9b:14:
fd:14:7d:d4:65:6e:3e:55:1f:a9:7f:66:53:6f:d1:cb:01:bc:
4a:6f:9f:82:09:2e:4a:ce:df:09:bc:34:1d:39:61:06:2f:bd:
a4:14:dc:56:9b:19:6d:dd:03:75:a5:60:ca:d1:b7:61:0f:c2:
de:75:1f:9d:e8:5d:86:50:4a:6e:fa:2d:ca:88:fe:6e:10:6b:
f3:25:80:76:66:1d:2e:f2:c2:08:18:ec:1a:86:45:e8:3a:94:
64:fd:06:b4:65:6f:36:dc:f5:cb:ea:db:91:2a:fb:75:ba:06:
af:87:65:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:36:23 2025 by rpki-client