Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/WbjSQ8irYtMbFeG9CGHS-34BNtg.roa
File: WbjSQ8irYtMbFeG9CGHS-34BNtg.roa (raw, json)
Hash identifier: b2H5wDuAfjFJ7ZMZ8C3mYzhXKA9sla4hm1Hwxc1WugA=
Subject key identifier: 59:B8:D2:43:C8:AB:62:D3:1B:15:E1:BD:08:61:D2:FB:7E:01:36:D8
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 01842E94BA8DA51871BC23AA6ED7B04F3F28
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/WbjSQ8irYtMbFeG9CGHS-34BNtg.roa
Signing time: Mon 31 Oct 2022 15:06:49 +0000
ROA not before: Mon 31 Oct 2022 15:06:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202960
IP address blocks: 178.175.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2e:94:ba:8d:a5:18:71:bc:23:aa:6e:d7:b0:4f:3f:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: Oct 31 15:06:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59b8d243c8ab62d31b15e1bd0861d2fb7e0136d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d3:61:1f:08:4b:8f:d9:c6:98:af:fd:14:03:
5f:ed:79:c2:2b:00:58:b7:10:a8:fb:76:63:18:35:
c2:2b:2a:9a:01:39:36:d3:fc:ba:e1:5f:95:c6:f8:
00:8c:8d:6f:c9:7d:6a:86:93:4a:a3:bf:5f:e4:86:
59:4a:f0:5a:41:6a:8b:b2:7a:45:a3:06:f1:05:ac:
6c:7a:48:25:fb:89:b7:33:e9:1c:9b:f3:d3:8d:5c:
1f:e4:29:1f:a7:5a:03:b8:01:a4:45:7b:77:e8:36:
76:a4:cb:ab:03:51:56:e5:44:aa:cd:a0:2c:b2:b3:
cf:5f:c0:38:e6:d3:3c:eb:41:68:8d:0c:46:5b:08:
85:40:2a:32:24:3c:af:5e:b4:53:a3:1c:61:81:45:
47:99:36:76:c1:32:f3:f0:86:ae:28:ec:00:39:3e:
04:de:2f:0b:b1:19:05:3e:34:0b:7b:80:56:ae:b4:
4b:2b:fe:ac:bf:86:0c:31:1d:e7:b2:50:e1:7f:48:
25:a0:1d:80:76:ec:92:de:88:b5:d7:a8:9a:45:dd:
77:f2:2b:94:24:b4:09:d3:c6:42:57:f2:5a:8f:fa:
1c:11:3c:d2:59:55:c7:0d:5c:83:67:06:ac:64:b4:
2c:71:59:ec:13:16:26:e5:bf:36:c6:cf:71:9e:df:
0e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B8:D2:43:C8:AB:62:D3:1B:15:E1:BD:08:61:D2:FB:7E:01:36:D8
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/WbjSQ8irYtMbFeG9CGHS-34BNtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.152.0/24
Signature Algorithm: sha256WithRSAEncryption
91:ef:75:fd:21:8e:d1:a6:30:49:92:ef:92:5d:10:82:0a:c3:
e4:64:80:0c:b7:2d:48:d7:10:9e:d0:81:67:2d:92:57:78:ec:
cf:69:ff:be:4d:5b:27:83:02:04:3a:b8:0d:a9:97:d4:15:d0:
c8:53:97:89:17:8f:88:74:7f:e8:a5:00:78:20:a9:33:c1:72:
a2:4c:68:56:96:5a:19:da:f5:09:44:26:55:95:96:4c:6f:08:
d4:9a:0d:ff:f5:dc:b0:fb:3f:1f:36:29:ea:9f:87:1a:f0:8c:
4e:bb:98:93:6f:39:6e:de:a0:a3:d7:5a:60:2a:df:29:eb:20:
58:4e:dc:ed:7f:10:fe:4d:bc:97:83:79:ed:28:16:bb:4f:a9:
5f:01:a5:35:32:ae:1c:8c:63:a1:83:29:e9:9c:80:c2:1f:2d:
31:49:a5:82:a0:ab:f9:d1:26:ba:4a:25:49:c8:e6:03:75:4f:
4a:98:3e:c9:f0:28:e2:8c:7e:2d:3e:80:67:1a:d7:29:72:d4:
df:ba:f4:e0:77:49:c3:b0:91:b9:e0:5d:06:a4:48:5f:da:32:
70:05:55:ce:89:f4:e7:a1:10:09:a0:9d:f7:2b:20:cb:60:77:
17:c8:47:0b:09:da:5e:81:2c:b1:15:64:1c:93:58:86:1e:07:
f0:59:df:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:29:20 2025 by rpki-client