Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/wLGw48VaGlp1rM244H4YgkHDrg8.roa
File: wLGw48VaGlp1rM244H4YgkHDrg8.roa (raw, json)
Hash identifier: /fs9EhXuubamkvJxqzkiASM4pcxY2xsmeVR4RxpQzcA=
Subject key identifier: C0:B1:B0:E3:C5:5A:1A:5A:75:AC:CD:B8:E0:7E:18:82:41:C3:AE:0F
Certificate issuer: /CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Certificate serial: 03B5C82A
Authority key identifier: 1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/wLGw48VaGlp1rM244H4YgkHDrg8.roa
Signing time: Sat 01 Jan 2022 08:53:57 +0000
ROA not before: Sat 01 Jan 2022 08:53:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199450
IP address blocks: 185.12.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62244906 (0x3b5c82a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Validity
Not Before: Jan 1 08:53:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0b1b0e3c55a1a5a75accdb8e07e188241c3ae0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:79:8b:3a:aa:09:38:e6:9a:04:47:86:ce:eb:
c7:a2:22:41:25:e7:cb:56:35:a6:53:3a:69:66:fd:
9e:e7:02:74:6f:94:7e:a6:fb:4d:4d:09:34:5d:33:
e0:b9:47:47:1e:19:1f:95:f6:7b:15:1f:b0:1d:47:
b5:1f:c5:c2:b7:e6:a2:70:ed:0f:a9:0c:b9:9a:77:
97:70:0c:6f:1a:5f:ca:d9:eb:cd:c9:8d:2f:93:9b:
b4:09:67:d2:3d:02:76:c6:41:0e:8e:1f:d8:40:c3:
f5:01:7d:f9:19:84:91:d7:f8:e5:29:1f:aa:53:66:
e3:50:d3:c4:e5:30:31:94:54:87:7f:3a:a8:dc:b9:
25:05:e2:7c:fb:f1:db:42:b2:ef:8c:44:b9:26:12:
4c:6c:5a:94:5c:d4:50:d8:5b:d0:a6:e4:18:38:3c:
b0:fa:11:ed:43:fc:29:36:a5:8a:d6:b2:92:d7:55:
16:a1:58:82:6e:f9:e4:4c:5c:9f:51:dd:1f:f2:a1:
ae:02:e1:70:ec:95:69:3c:a0:95:54:d3:5f:6c:ee:
6c:38:44:97:c6:6f:71:74:cd:7e:99:e8:60:50:46:
58:a7:97:af:bb:2f:7e:69:be:50:2f:22:2c:d5:2d:
da:87:28:d0:6b:b0:56:f6:b8:63:67:28:0b:24:42:
b1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:B1:B0:E3:C5:5A:1A:5A:75:AC:CD:B8:E0:7E:18:82:41:C3:AE:0F
X509v3 Authority Key Identifier:
keyid:1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/wLGw48VaGlp1rM244H4YgkHDrg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.12.10.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:b1:91:d0:ab:47:1c:3b:3c:f9:c3:71:67:d7:a4:a1:d0:c4:
57:b5:72:d1:4f:ff:36:4f:50:49:3f:d8:f3:cb:15:ac:88:d8:
39:4a:31:62:d0:e6:ec:59:bd:8d:f4:06:09:0e:d1:f1:8b:2e:
fb:e3:9d:d6:c3:22:81:3c:22:12:e8:92:f7:8b:5b:fa:ad:5d:
67:94:a1:47:2a:03:00:47:3f:e9:be:f1:3b:b2:cc:3b:78:7d:
cf:12:73:28:c2:aa:44:21:61:33:00:aa:c3:59:33:f7:9a:db:
4c:d9:8e:04:87:15:47:75:30:29:3e:d6:62:c3:fe:39:23:5d:
49:22:af:55:6c:38:76:85:06:27:8d:92:77:26:73:fd:2c:4f:
1c:04:e7:9d:dd:03:98:9e:8b:7c:79:d9:05:46:41:69:90:8b:
21:2a:45:e0:31:8d:d5:ae:83:36:fc:a7:38:a7:ab:e8:a0:e6:
bc:2e:a9:72:a9:12:ca:6a:80:e7:29:30:d8:f0:48:e3:86:77:
90:c2:c0:2a:8b:e0:7d:a1:4b:33:25:e7:fe:01:aa:32:53:86:
f3:6c:e8:33:90:49:d9:ac:fa:7e:4a:b8:29:ba:91:6a:13:c7:
ac:94:73:fc:05:ec:0c:c0:53:fb:0f:d7:e0:8e:64:5d:ab:d0:
7a:c8:1a:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:17 2023 by rpki-client on console-fra.rpki-client.org