Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/WH3MYKS1Al2xTEWUmQnt6Xq5hGQ.roa
File: WH3MYKS1Al2xTEWUmQnt6Xq5hGQ.roa (raw, json)
Hash identifier: KBN+eDSzmUNYkkHM8GiAZnMq33gOi8t1dS6ALQAFYKM=
Subject key identifier: 58:7D:CC:60:A4:B5:02:5D:B1:4C:45:94:99:09:ED:E9:7A:B9:84:64
Certificate issuer: /CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Certificate serial: 01831E3D669C5F8BD944AEFDF844DADA3D0A
Authority key identifier: D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/WH3MYKS1Al2xTEWUmQnt6Xq5hGQ.roa
Signing time: Thu 08 Sep 2022 17:54:43 +0000
ROA not before: Thu 08 Sep 2022 17:54:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22612
IP address blocks: 37.61.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1e:3d:66:9c:5f:8b:d9:44:ae:fd:f8:44:da:da:3d:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Validity
Not Before: Sep 8 17:54:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=587dcc60a4b5025db14c45949909ede97ab98464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4d:fd:e0:b9:54:cd:2f:bf:14:57:e6:be:d5:
f0:4c:14:0a:5e:8b:8e:e9:45:8f:f9:00:a2:16:0e:
02:e0:73:65:16:92:cf:2f:02:4a:cf:cc:a0:43:65:
fc:1a:4f:0b:3a:27:a8:fe:30:7f:57:18:b4:a7:03:
a8:ad:a2:5a:34:e0:dc:6d:64:bf:d8:b8:63:63:f8:
f4:5d:77:80:ea:e8:07:60:a9:07:c0:89:08:15:ff:
a8:7b:94:4e:9a:3d:69:5e:78:db:8d:2b:b0:22:c6:
2d:be:ab:1e:c0:c5:28:b2:ba:c5:60:62:9e:68:cc:
0d:ee:dd:cf:7d:e4:bd:3b:16:1d:83:b3:78:c0:76:
53:64:8b:23:09:b6:23:15:ed:90:88:e9:be:83:7b:
f3:b9:bc:4a:c0:97:17:7a:5b:d9:fa:6d:8d:a2:a9:
5a:ca:9e:05:90:58:8a:a2:5d:a4:0e:15:bd:9c:49:
92:18:46:62:fd:2d:78:c0:97:43:75:5f:5a:25:a4:
5e:e8:81:6c:f1:b1:0e:4a:55:8c:c4:7f:ae:70:2d:
ec:a1:c4:48:2d:bd:a2:1e:13:41:cf:84:8f:b3:51:
3c:cd:04:83:d0:21:9a:6e:c8:91:0a:24:d3:73:6e:
6f:02:fd:80:53:d6:e6:f0:d1:1c:93:37:6e:54:1b:
a9:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:7D:CC:60:A4:B5:02:5D:B1:4C:45:94:99:09:ED:E9:7A:B9:84:64
X509v3 Authority Key Identifier:
keyid:D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/WH3MYKS1Al2xTEWUmQnt6Xq5hGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/1yGexzg_oGEEgN36YsP4LEAM1W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.61.238.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:01:f1:7e:46:90:1f:66:70:cb:32:e3:08:c0:51:37:cb:fa:
38:37:15:64:1a:77:1c:82:a0:93:61:e0:e4:d2:44:8d:b6:d5:
a1:50:a2:4d:ac:04:74:e3:24:9d:ad:12:21:82:1f:bb:ef:b4:
65:ab:12:fd:e0:7d:e6:8e:ed:09:08:fa:94:b8:e0:5c:5e:0a:
16:7d:66:14:4c:88:b7:6d:89:fe:c7:e6:de:f0:a6:1d:7e:37:
93:2b:c8:45:2e:20:8f:d2:4a:28:2b:d9:74:ad:9c:a1:39:00:
b5:ee:f7:f0:3f:33:ca:d4:a6:b2:ce:44:87:79:ad:9f:82:6d:
f9:1a:ce:72:80:e5:99:49:ee:5b:6c:f6:2e:f9:47:3f:3e:89:
24:2f:ef:f3:49:49:85:d2:01:10:f2:33:3c:97:20:eb:38:8a:
80:34:51:d0:b8:30:ef:ab:84:6b:c5:f4:05:56:d5:0c:5e:1e:
76:23:7a:01:69:21:78:db:e8:13:03:2f:1b:95:1b:f7:78:b7:
3f:6b:63:d5:8b:8d:59:fb:73:64:e2:ae:92:35:98:fb:71:a7:
3b:da:a6:aa:c5:24:8a:2b:80:2b:ba:8d:75:f2:ec:e5:65:e0:
dd:71:9e:fc:38:a6:fc:63:8c:44:0d:36:5b:f8:7c:ab:fa:1e:
39:a2:31:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:23 2023 by rpki-client on console-fra.rpki-client.org