Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/WdBu8qtFBdQb6QZCqNSOTnBhfs4.roa
File: WdBu8qtFBdQb6QZCqNSOTnBhfs4.roa (raw, json)
Hash identifier: bxmR/2pKbb+4+ak2esPJ5eseElOvowRxEDw4tSZUf38=
Subject key identifier: 59:D0:6E:F2:AB:45:05:D4:1B:E9:06:42:A8:D4:8E:4E:70:61:7E:CE
Certificate issuer: /CN=ddceb08a4b40f1f85e4eba17cdc7c83e47bb597d
Certificate serial: 0182EE7A3DAB36F1BFBF4DA3987F2FE31C30
Authority key identifier: DD:CE:B0:8A:4B:40:F1:F8:5E:4E:BA:17:CD:C7:C8:3E:47:BB:59:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3c6wiktA8fheTroXzcfIPke7WX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/WdBu8qtFBdQb6QZCqNSOTnBhfs4.roa
Signing time: Tue 30 Aug 2022 11:19:24 +0000
ROA not before: Tue 30 Aug 2022 11:19:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49407
IP address blocks: 91.212.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:7a:3d:ab:36:f1:bf:bf:4d:a3:98:7f:2f:e3:1c:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddceb08a4b40f1f85e4eba17cdc7c83e47bb597d
Validity
Not Before: Aug 30 11:19:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59d06ef2ab4505d41be90642a8d48e4e70617ece
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3d:e2:b7:cd:63:89:97:40:94:b4:c6:72:6f:
c3:a7:60:65:80:51:b9:ac:fe:7c:26:40:8b:f6:a6:
ec:58:dd:f7:f3:64:05:dc:fb:65:0e:39:4e:2f:92:
fd:11:5d:7d:2b:28:b3:e8:43:ea:51:1f:07:42:9f:
18:53:ab:cc:ff:6a:a5:05:ae:3d:07:94:20:fc:6f:
a8:bf:20:77:99:3f:06:01:70:cc:23:ea:7b:a9:72:
f4:d1:3a:e8:24:bc:0a:cf:0b:d2:b2:fc:42:43:b5:
5f:dd:b8:b9:12:51:4c:01:ee:4b:35:a9:fb:17:36:
d3:1c:ad:f1:4f:54:06:0b:6a:98:1d:78:f9:5c:fc:
e7:3c:a0:ec:62:55:eb:79:76:8f:8c:82:6b:38:b5:
04:c0:3d:8e:64:ee:44:86:7b:d8:5c:89:e4:2a:4e:
93:6f:f0:37:8d:63:e1:d1:2f:0e:f0:22:a6:c7:54:
26:0f:42:17:e4:8b:e2:e0:30:04:cc:f9:16:4c:40:
bd:b3:11:0e:9f:69:c9:da:c1:36:3e:b5:50:a7:8e:
c8:d4:ec:90:f0:2f:34:37:b6:b1:f1:e5:e3:97:af:
58:5e:ee:60:58:37:c4:d0:5d:dd:01:2b:f1:e9:25:
b7:b8:a7:23:2a:df:e9:db:07:78:50:f0:9e:f7:62:
f9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D0:6E:F2:AB:45:05:D4:1B:E9:06:42:A8:D4:8E:4E:70:61:7E:CE
X509v3 Authority Key Identifier:
keyid:DD:CE:B0:8A:4B:40:F1:F8:5E:4E:BA:17:CD:C7:C8:3E:47:BB:59:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c6wiktA8fheTroXzcfIPke7WX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/WdBu8qtFBdQb6QZCqNSOTnBhfs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.208.0/24
Signature Algorithm: sha256WithRSAEncryption
22:96:bf:c3:83:68:39:b4:61:a3:7d:bb:13:e3:d3:20:2b:c7:
7e:84:a6:b8:bb:41:28:6a:5f:dd:21:79:18:43:aa:8f:e3:29:
f1:cf:10:b1:d8:02:d3:de:2a:b0:3a:67:a1:fd:8b:4a:83:d1:
97:47:6e:b9:37:07:5d:f6:8a:f0:7b:dc:8c:33:3a:e6:de:fc:
6a:cb:5d:85:2a:f0:72:71:fc:dc:39:57:e5:4e:db:93:42:62:
5b:34:34:64:ac:f2:9b:c6:2a:0e:ac:3b:c2:b8:5d:44:43:e9:
c5:a9:6d:1d:46:85:e5:42:72:17:4d:7a:dd:45:b4:61:3b:a0:
87:5b:af:0e:f6:27:d0:fe:f3:15:d4:82:60:86:7f:c5:2b:8a:
fd:dc:4f:63:76:8a:c2:29:6b:91:ab:0d:e5:c9:a8:2f:19:cb:
00:d1:d7:b4:0d:34:f8:c0:d0:e6:24:5e:f8:4b:74:65:92:c4:
f2:f4:76:2e:ed:2d:c0:a5:dc:be:8d:b7:dc:be:bf:62:04:da:
f7:8a:16:07:fa:b8:14:8f:a7:1a:de:65:e4:79:3e:72:2e:3c:
1a:de:d3:8c:a0:4c:dd:f3:8a:65:99:e9:11:c8:a0:fd:e2:d6:
8b:bf:2c:8a:16:29:f1:b0:42:74:f3:12:ec:fb:56:dc:0b:83:
06:29:2b:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:32 2024 by rpki-client on console-fra.rpki-client.org