Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/W6xy0ALmi0cT8u2fsoObegqgVbA.roa
File: W6xy0ALmi0cT8u2fsoObegqgVbA.roa (raw, json)
Hash identifier: asZDjkCaUQwUZHid2uRUAjC28GV25zEVmkO4JTR+1k8=
Subject key identifier: 5B:AC:72:D0:02:E6:8B:47:13:F2:ED:9F:B2:83:9B:7A:0A:A0:55:B0
Certificate issuer: /CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Certificate serial: 03B280FD
Authority key identifier: 1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/W6xy0ALmi0cT8u2fsoObegqgVbA.roa
Signing time: Sat 01 Jan 2022 08:53:56 +0000
ROA not before: Sat 01 Jan 2022 08:53:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13032
IP address blocks: 185.12.8.0/23 maxlen: 23
2a03:5dc0:6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62030077 (0x3b280fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Validity
Not Before: Jan 1 08:53:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bac72d002e68b4713f2ed9fb2839b7a0aa055b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f8:d2:e0:aa:cc:5b:6c:23:46:4a:5d:2b:36:
60:76:4c:89:64:a2:6b:72:5d:a7:e1:90:23:28:6e:
7b:ec:5f:56:95:e6:0d:e8:bd:f0:96:a6:68:db:8c:
1b:ee:04:93:4a:fe:e6:00:c8:79:38:14:b9:3e:07:
06:0f:a2:60:ae:71:3f:ad:e3:81:9d:75:ab:54:f9:
ab:c4:6f:84:9b:4c:87:70:2e:89:a9:34:d3:70:01:
50:f4:b1:e3:02:09:ab:99:cf:d1:c9:ee:3c:3f:19:
32:f3:23:e7:bb:a0:73:7d:48:2c:1d:4c:3b:1e:6a:
05:56:df:c8:0f:35:15:87:3c:dc:d1:1e:b2:d4:91:
da:f6:01:34:2b:1d:01:57:5f:b1:a6:56:81:0e:4c:
d7:fd:a8:0c:e3:17:00:d1:f6:1d:62:2b:7f:b8:3d:
a6:3c:76:09:c1:21:ea:46:67:6d:17:ea:0e:36:4b:
c3:72:e9:45:3c:59:41:4b:a8:55:57:c2:62:e9:d0:
83:ee:a2:73:ea:76:f8:71:6f:0a:08:bb:ef:e6:67:
02:4f:bb:06:5b:3a:e0:64:2b:40:70:1b:5e:04:ce:
d9:26:61:c4:08:7d:00:d5:24:28:33:06:9c:b7:d0:
aa:61:26:dd:37:fb:e2:cd:03:b5:f7:8d:c2:99:b0:
7d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:AC:72:D0:02:E6:8B:47:13:F2:ED:9F:B2:83:9B:7A:0A:A0:55:B0
X509v3 Authority Key Identifier:
keyid:1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/W6xy0ALmi0cT8u2fsoObegqgVbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.12.8.0/23
IPv6:
2a03:5dc0:6::/48
Signature Algorithm: sha256WithRSAEncryption
3a:d3:9c:58:22:61:92:6c:f2:b7:36:93:d1:0c:45:21:83:f8:
f0:76:dd:a4:7f:1d:f1:74:6f:71:32:a5:5e:5e:e1:af:dd:a0:
f7:c6:0a:fc:00:cc:fe:f8:b1:24:17:cf:6d:2d:f4:2c:26:6a:
1a:98:d1:30:43:c0:92:32:ef:e7:b9:d7:c1:77:45:d1:c5:87:
56:fc:64:99:8a:c6:e8:14:cf:42:64:1e:cb:37:4c:af:94:8c:
89:2c:74:8e:85:67:72:6b:3d:6f:35:8a:7f:a7:4a:82:bc:58:
b4:64:72:d7:83:2b:e5:86:fd:a1:33:4f:6a:02:da:f8:7b:9c:
78:6a:13:0f:54:d3:83:b2:d8:8a:f1:fd:5b:9a:b8:79:2b:f2:
ba:83:54:00:b6:ea:87:c6:2e:25:df:4a:77:6d:c7:8e:d5:48:
bc:55:e2:7d:42:da:08:d0:2c:9e:1b:e7:85:95:aa:0d:5c:f8:
46:f2:12:3e:33:78:c9:4c:95:a7:ee:98:3c:a3:cd:ef:6c:65:
30:e6:53:4c:81:3f:d5:3a:2f:36:4a:59:92:3f:44:94:b9:3e:
ef:96:34:7d:15:c0:2a:82:42:32:69:38:53:8b:18:ac:13:ab:
21:c5:b3:c1:82:30:c7:06:26:7d:be:f0:5a:00:41:2f:c5:e1:
69:2e:62:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:06 2023 by rpki-client on console-ams.rpki-client.org