Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/wjwY7XXf0CIXTAU_nvFn2ZMbAGk.roa
File: wjwY7XXf0CIXTAU_nvFn2ZMbAGk.roa (raw, json)
Hash identifier: wKIaSl8J8VR1koyakwYMNvDOctzKpgjX/+un0gewoFI=
Subject key identifier: C2:3C:18:ED:75:DF:D0:22:17:4C:05:3F:9E:F1:67:D9:93:1B:00:69
Certificate issuer: /CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Certificate serial: 0419E530
Authority key identifier: C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/wjwY7XXf0CIXTAU_nvFn2ZMbAGk.roa
Signing time: Sat 01 Jan 2022 07:01:07 +0000
ROA not before: Sat 01 Jan 2022 07:01:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212649
IP address blocks: 194.152.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68805936 (0x419e530)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Validity
Not Before: Jan 1 07:01:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c23c18ed75dfd022174c053f9ef167d9931b0069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3f:f1:5c:c4:f2:bf:55:05:e7:c2:4e:9b:79:
eb:85:bc:7c:15:e2:c0:a0:1f:13:ea:cc:c4:95:08:
fe:4b:2f:d5:61:a6:f6:bd:3a:0c:39:e3:de:48:c4:
8d:70:85:45:9c:f1:00:c3:db:10:a6:de:1c:79:25:
1b:6c:21:28:99:fe:5e:43:a3:d3:8b:96:f5:da:67:
c7:77:69:02:9b:0d:c7:44:87:56:39:5d:77:0a:bf:
fb:8b:e7:e7:db:8e:02:e4:b7:cc:3a:59:41:ac:41:
e2:30:cd:d2:21:f2:f3:64:21:63:41:77:2f:da:b9:
5c:ca:7c:b9:a4:4a:85:45:ce:d2:4d:c3:4f:bf:09:
b8:c1:6b:59:ad:f7:7f:97:6a:d1:96:f4:de:74:4f:
8f:48:84:4c:d7:f9:53:1b:c1:67:a4:c4:4e:1b:17:
fa:25:7e:0b:c7:2a:58:f6:d3:88:92:3f:f4:da:f3:
a3:28:c9:c5:ad:ff:83:55:70:24:8d:eb:3f:39:57:
6a:58:7a:55:36:0d:e8:f2:04:e1:74:30:da:70:12:
27:ac:64:0e:bf:e5:0e:48:61:ac:ce:24:9e:d5:b2:
6a:66:20:c0:0f:3c:f4:e2:5a:5a:47:bb:2f:6a:0e:
0e:3d:af:a4:8c:c1:25:84:cb:89:a3:7f:08:07:6d:
4d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:3C:18:ED:75:DF:D0:22:17:4C:05:3F:9E:F1:67:D9:93:1B:00:69
X509v3 Authority Key Identifier:
keyid:C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/wjwY7XXf0CIXTAU_nvFn2ZMbAGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.152.45.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:15:7c:e0:cb:5d:f4:b1:aa:33:39:6a:80:45:a3:6f:af:45:
71:9a:09:1f:ab:d6:a3:ac:1a:a7:a1:1c:e4:68:d1:73:ed:eb:
7f:6e:19:df:af:d6:7f:3f:cf:5b:66:7e:59:4d:e0:fa:22:59:
cb:78:9a:fa:0f:2f:c3:73:fd:79:81:36:57:70:d3:38:d2:88:
d0:d3:e9:ad:cd:f9:c3:f7:43:7f:f4:a3:a0:2a:f7:89:97:96:
1a:cd:f0:db:54:49:a1:ff:30:c2:b2:8e:00:5a:7b:c6:61:13:
ba:c3:06:20:db:20:dc:93:a0:64:d5:5f:28:33:62:50:76:23:
98:f2:12:f4:f0:e3:32:75:51:35:3d:b8:91:6c:9e:98:6d:ca:
c7:61:56:35:d7:58:df:6b:0e:39:1b:1c:4f:ec:77:13:61:9d:
92:cd:13:f2:66:d7:da:22:fd:7d:18:96:b7:8c:4d:dd:8d:37:
6c:f4:fb:4c:22:3a:38:12:77:22:cf:0f:bf:78:6c:ab:1e:58:
bf:b3:a2:5c:61:76:b0:f8:a8:9f:1a:0b:af:ab:82:ce:9c:ba:
c6:6f:1c:91:46:cf:b0:f9:40:6d:00:8d:24:36:5f:d5:07:bf:
86:77:14:02:aa:87:95:7c:93:b9:14:5b:ad:07:bc:b6:62:83:
3f:e1:fa:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:35 2024 by rpki-client on console-fra.rpki-client.org