Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/whXFANUc_vOT46GIJblUvtzAKXg.roa
File: whXFANUc_vOT46GIJblUvtzAKXg.roa (raw, json)
Hash identifier: lZAR+GE2eJSrqLdKe2hLihqDenpx0WltPEucmCzET1s=
Subject key identifier: C2:15:C5:00:D5:1C:FE:F3:93:E3:A1:88:25:B9:54:BE:DC:C0:29:78
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 04719FBF
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/whXFANUc_vOT46GIJblUvtzAKXg.roa
Signing time: Wed 02 Mar 2022 10:06:08 +0000
ROA not before: Wed 02 Mar 2022 10:06:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199648
IP address blocks: 194.181.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74555327 (0x4719fbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 2 10:06:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c215c500d51cfef393e3a18825b954bedcc02978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a0:33:89:56:9a:49:43:8f:57:bd:9c:d7:0e:
2e:d0:e7:94:ae:cc:64:70:94:d2:49:ce:63:e2:56:
6e:b5:32:0d:02:c9:d4:31:2a:48:5b:23:7b:79:b6:
b5:4d:39:1e:e2:87:79:30:c5:b7:46:99:a9:68:f5:
00:05:fd:f5:54:8e:9f:94:39:e5:27:0a:ff:f0:42:
2c:b3:f6:27:df:9f:bd:f8:ce:9c:f0:80:71:c3:78:
ef:8a:43:81:b3:72:30:76:94:48:56:cc:e0:45:2b:
c1:50:c7:44:7f:76:3c:ee:3c:41:c5:85:25:cd:47:
83:d3:ac:df:ec:68:a3:6e:9a:35:3b:35:f0:25:2b:
93:0d:80:0e:8f:2f:ad:2a:5d:a5:77:83:6c:a4:9c:
18:8a:b8:a1:8f:0d:26:95:a6:02:9b:e2:6a:35:76:
28:90:1a:a1:e2:8d:3e:3f:d7:a4:03:60:b1:0c:ab:
ff:7a:31:28:64:31:cb:67:18:18:c6:93:c9:0e:5b:
91:bf:a6:fb:55:09:1b:37:ca:41:93:1a:b0:9b:ad:
b7:09:4f:3a:77:57:03:00:c7:e0:7a:6e:cb:be:d6:
33:26:0f:fe:e1:d5:87:96:ea:c1:f2:7e:cd:31:0c:
50:c0:64:cb:84:33:19:c3:46:23:0b:b0:49:59:ba:
0f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:15:C5:00:D5:1C:FE:F3:93:E3:A1:88:25:B9:54:BE:DC:C0:29:78
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/whXFANUc_vOT46GIJblUvtzAKXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.181.177.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:55:7f:d7:76:3c:f1:b3:8d:45:9a:c0:77:e0:33:69:a4:23:
8d:31:b9:b7:e9:43:0b:57:ff:35:94:f2:6b:81:09:d1:ff:85:
52:0a:e7:6c:e8:8e:61:d1:5a:ab:07:1e:58:b2:80:8c:a5:09:
f3:14:e5:30:6f:62:3c:8b:4e:ef:0c:4d:cd:3a:61:c3:34:17:
08:1b:26:d4:3f:60:4f:5a:e9:4c:2f:8e:86:b4:1d:9d:75:b0:
a8:0c:03:3d:62:17:82:b9:5f:5f:9e:8d:61:05:99:66:21:f4:
1d:b1:fd:65:9c:43:9e:c1:4c:f4:43:e8:e1:36:1e:43:26:73:
d4:a1:f2:1d:92:97:c6:84:2c:92:2a:79:8b:73:47:e7:ea:e3:
1a:c1:14:6d:db:9e:c2:dd:2a:03:96:e9:08:04:f0:b8:52:37:
34:6b:03:6c:6f:fc:79:81:61:3d:f9:db:3d:8d:4e:fd:f5:8e:
eb:33:7f:70:3d:e3:b3:38:6f:60:5f:28:e8:9e:0a:9e:cd:17:
07:66:0d:56:bf:89:7e:d7:1e:dc:02:c8:29:8a:c3:7e:56:91:
bc:8f:77:05:04:66:6d:28:ec:b3:ad:d0:2b:30:80:40:fc:ba:
2d:d3:a9:c0:82:fd:f3:d4:28:69:9d:3f:57:dd:c5:e2:08:d6:
50:f8:cc:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org