Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/71c5fd-e36f-42f6-926b-58a2457c6fd5/1/Wc3_g20h6BcO9HgzcFSz_alupcQ.roa
File: Wc3_g20h6BcO9HgzcFSz_alupcQ.roa (raw, json)
Hash identifier: jP8Eu2Iq5l6DJ7N7DLnkAv6LgPHoRodkV0cXagQEM2E=
Subject key identifier: 59:CD:FF:83:6D:21:E8:17:0E:F4:78:33:70:54:B3:FD:A9:6E:A5:C4
Certificate issuer: /CN=4e259d806139f953e47c350904aaceec6cc39a1f
Certificate serial: 01EF297C
Authority key identifier: 4E:25:9D:80:61:39:F9:53:E4:7C:35:09:04:AA:CE:EC:6C:C3:9A:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TiWdgGE5-VPkfDUJBKrO7GzDmh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/71c5fd-e36f-42f6-926b-58a2457c6fd5/1/Wc3_g20h6BcO9HgzcFSz_alupcQ.roa
Signing time: Tue 12 Apr 2022 06:05:57 +0000
ROA not before: Tue 12 Apr 2022 06:05:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 178.255.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32450940 (0x1ef297c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e259d806139f953e47c350904aaceec6cc39a1f
Validity
Not Before: Apr 12 06:05:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59cdff836d21e8170ef478337054b3fda96ea5c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c8:14:02:42:65:19:f7:be:bf:63:3c:6c:6b:
97:87:01:f2:28:36:c6:fb:e0:2b:12:54:23:97:5f:
8c:1e:c3:3f:99:22:85:79:b1:15:8a:39:43:df:a5:
6e:0d:8a:12:fb:04:92:56:be:aa:d4:7d:e9:ba:61:
67:5d:d2:f3:a5:23:a5:cf:7d:82:17:cd:bf:87:1b:
59:d0:d6:7f:c1:ca:1e:19:fb:57:83:b9:81:46:a1:
f5:d1:1f:cf:b0:80:73:4a:af:ca:0a:cf:5f:44:b1:
bc:a0:06:01:04:fa:64:26:58:e4:7c:11:76:04:9e:
1c:08:80:7f:d6:13:d6:32:66:ce:fd:1a:ab:08:98:
82:60:3b:a3:71:0e:d4:78:92:e6:67:93:95:1c:db:
13:c2:5c:23:38:9f:66:75:ea:61:8f:5f:1c:cd:5e:
d0:d8:b4:5b:54:eb:70:2e:f2:e4:5c:45:c3:ff:a6:
b1:71:89:c5:48:95:d8:96:df:a7:c3:5a:c3:b3:99:
f6:7d:af:e9:9d:54:6f:2e:ff:4a:9a:23:ff:2c:a3:
ba:a5:48:a5:ce:7b:07:9d:cb:16:9a:c0:46:06:ab:
1c:53:2b:c0:37:ba:79:1c:3c:5a:6e:ec:52:7d:ff:
4e:df:51:55:5a:b9:59:46:a6:8a:ab:08:90:42:37:
d0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:CD:FF:83:6D:21:E8:17:0E:F4:78:33:70:54:B3:FD:A9:6E:A5:C4
X509v3 Authority Key Identifier:
keyid:4E:25:9D:80:61:39:F9:53:E4:7C:35:09:04:AA:CE:EC:6C:C3:9A:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TiWdgGE5-VPkfDUJBKrO7GzDmh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/71c5fd-e36f-42f6-926b-58a2457c6fd5/1/Wc3_g20h6BcO9HgzcFSz_alupcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/71c5fd-e36f-42f6-926b-58a2457c6fd5/1/TiWdgGE5-VPkfDUJBKrO7GzDmh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.221.0/24
Signature Algorithm: sha256WithRSAEncryption
15:ed:ab:38:51:10:a9:0a:a4:b0:fa:83:58:02:4a:7e:42:9e:
c0:a7:6f:49:30:ed:dc:ab:f0:27:0c:74:43:16:e4:5a:13:b5:
ba:c6:8e:1d:4e:bb:6c:14:7a:dc:1c:69:09:cc:43:4c:6b:89:
b2:df:20:62:15:6f:9a:9e:1e:6a:3e:e4:4f:0a:a0:f6:78:f4:
ae:9d:7c:ec:97:69:7e:13:19:87:43:c6:9c:80:f7:a4:ab:8a:
99:a2:49:bb:b9:ed:e3:d1:1c:43:44:61:ae:fd:85:8d:b4:8a:
c5:0a:aa:9f:20:0a:5d:73:a7:c3:6b:b6:d8:05:80:a1:fa:b4:
82:e7:20:61:4d:9f:3c:bf:d8:cf:2e:0f:92:df:78:15:fa:a9:
1d:18:cc:b5:b3:ff:5f:3f:52:7e:fe:2f:63:0e:63:05:eb:26:
f8:93:03:16:cf:c9:1a:19:28:59:32:d1:3d:51:23:7b:72:8a:
87:10:d2:db:4a:06:10:90:de:12:c2:0e:ee:72:3e:e4:2b:68:
f6:78:6b:51:42:1d:42:62:77:3f:45:c5:33:c4:c9:97:4a:fc:
44:68:6d:a4:68:f7:90:a6:c8:57:a5:1a:99:70:48:5e:d8:4f:
af:53:a6:30:bd:ed:be:4a:4f:f8:be:8e:85:3f:1c:03:d1:98:
26:17:83:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:06 2023 by rpki-client on console-fra.rpki-client.org