Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/WLqeZv60rtzR2ut7sXJt65g2HRc.roa
File: WLqeZv60rtzR2ut7sXJt65g2HRc.roa (raw, json)
Hash identifier: BG9HV/sha7daXjHnjEOKWuBVjI1EeVT+xsYMVpPYyGc=
Subject key identifier: 58:BA:9E:66:FE:B4:AE:DC:D1:DA:EB:7B:B1:72:6D:EB:98:36:1D:17
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 0478D990
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/WLqeZv60rtzR2ut7sXJt65g2HRc.roa
Signing time: Wed 02 Mar 2022 10:29:11 +0000
ROA not before: Wed 02 Mar 2022 10:29:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35275
IP address blocks: 195.187.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75028880 (0x478d990)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 2 10:29:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58ba9e66feb4aedcd1daeb7bb1726deb98361d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ac:37:18:2d:a6:14:70:93:a5:c9:d0:85:2e:
db:d1:58:6e:8c:b1:81:89:f8:4d:77:01:8c:bc:3f:
2f:6d:e3:5e:5a:8a:e6:45:13:78:d8:fc:6b:c3:a3:
68:7a:b6:fa:4a:ea:b9:2c:12:fd:8e:0d:07:dc:d5:
10:6f:8d:25:3c:43:a7:cb:84:03:e5:67:d7:b4:99:
1c:5a:47:24:85:ac:7b:e6:95:2b:b5:42:b0:84:be:
0e:a9:9d:1a:fc:f2:05:21:91:68:f4:c0:1e:0a:c4:
1c:dd:39:b8:7b:e3:99:62:01:75:58:6d:77:08:ad:
10:2d:95:fa:14:af:fa:db:60:04:2c:0e:e4:ac:0b:
90:f3:96:04:33:4f:cc:52:11:6d:2f:10:37:1f:21:
39:7e:38:6e:30:8f:d1:57:af:b7:82:2e:cd:c2:76:
74:fe:b8:6d:e6:ed:24:bb:38:9e:5e:94:ef:b5:40:
7e:37:4e:c6:68:83:62:39:ea:7d:15:66:95:e6:e7:
2a:cb:1b:4f:e0:cf:ff:2a:01:2d:34:7e:8d:70:a7:
c4:a0:8c:6c:45:f6:ab:b8:d1:49:ab:e7:95:10:0b:
62:50:2c:51:7a:2a:a2:08:e7:a4:6e:43:28:59:59:
3c:ef:00:fd:70:82:1f:b8:42:77:9e:f3:0f:52:8d:
30:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:BA:9E:66:FE:B4:AE:DC:D1:DA:EB:7B:B1:72:6D:EB:98:36:1D:17
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/WLqeZv60rtzR2ut7sXJt65g2HRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.154.0/24
Signature Algorithm: sha256WithRSAEncryption
24:74:c8:37:9a:e3:4c:47:13:0a:35:9e:22:0d:9e:1a:08:34:
52:3e:55:ac:5e:d8:3a:49:4f:cd:09:69:f8:3c:64:7d:97:be:
7f:cd:d1:71:00:fa:cb:32:e9:6c:16:43:ad:fe:b6:e3:d4:e4:
1f:62:b4:f3:47:96:55:55:ac:20:07:f6:84:48:32:4b:d0:80:
52:cd:04:51:45:9d:b3:75:5c:4a:b8:65:a1:03:c8:17:bb:2f:
7e:0d:ef:1d:ab:50:19:ee:1f:8b:71:65:84:f7:eb:a9:24:51:
84:bc:2c:4f:da:6e:c5:5f:dd:35:8b:01:f5:36:58:ad:84:26:
92:88:88:bb:6c:3b:03:92:00:57:21:ba:ac:77:43:d8:5d:2c:
03:22:95:9c:c1:6d:6f:6f:80:a2:9b:3d:57:6e:c7:93:0f:62:
dc:0d:93:11:bd:26:f9:2a:f6:e2:3f:b9:a4:1f:4c:f4:64:a8:
91:0b:f2:ae:e6:01:82:24:25:3a:14:fa:70:2e:27:4c:64:5c:
62:6f:0f:25:da:7f:44:7b:96:85:63:79:c0:9b:f2:e7:99:64:
7f:52:f9:d6:94:b4:b1:4b:d3:ae:e4:89:de:e1:12:5f:76:a0:
c8:3a:98:a2:dd:68:aa:a1:75:aa:f3:1b:40:9d:4e:fb:cc:55:
5f:23:b3:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:05 2024 by rpki-client on console-ams.rpki-client.org