Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/WQjtVhwY8xYhsDws-J_h4mgTEhM.roa
File: WQjtVhwY8xYhsDws-J_h4mgTEhM.roa (raw, json)
Hash identifier: vQJ7LLAdi/wsKWN9TX4Nz51E5GchYc96UDVk44burbY=
Subject key identifier: 59:08:ED:56:1C:18:F3:16:21:B0:3C:2C:F8:9F:E1:E2:68:13:12:13
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 07043586
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/WQjtVhwY8xYhsDws-J_h4mgTEhM.roa
Signing time: Sat 01 Jan 2022 03:54:11 +0000
ROA not before: Sat 01 Jan 2022 03:54:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202984
IP address blocks: 45.88.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117716358 (0x7043586)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 1 03:54:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5908ed561c18f31621b03c2cf89fe1e268131213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:46:9c:28:9e:18:8d:23:38:bd:ba:7c:0b:d0:
78:fb:6e:38:12:0d:be:80:00:fe:0a:05:9e:a6:dd:
7e:9b:ed:a1:9c:52:24:ca:8e:fa:c5:80:91:0e:02:
67:e3:b7:14:14:53:7f:8b:51:7e:22:42:ec:58:e8:
44:49:7e:e7:44:61:ab:28:0e:ca:0f:c9:3f:2c:51:
36:57:ed:89:f4:ac:62:d8:cf:37:30:de:8a:5e:ef:
12:5a:e6:96:65:66:76:07:c3:bf:c4:b5:03:bd:1a:
ee:fd:1f:59:fc:70:cb:84:9a:5e:1a:b8:5e:10:73:
e2:4a:32:d0:28:33:cb:eb:1c:eb:1b:5d:64:2b:83:
43:f2:14:ad:79:bf:63:71:9e:ed:18:07:4b:07:bf:
6c:24:04:6a:3f:c0:72:f9:ce:38:90:88:5e:d7:78:
6b:9a:d7:c3:d7:88:40:31:7a:82:ea:37:81:a6:91:
a7:96:b0:4f:4c:79:6f:b0:50:97:a0:14:9c:3a:00:
2e:9d:bb:3e:d9:43:52:03:01:fc:c8:e3:f4:08:c7:
5d:80:6b:62:1a:65:c4:a3:ae:f1:34:5e:89:07:3c:
65:40:f5:b6:0a:2a:9b:0f:5c:ae:bc:05:a5:36:ad:
c7:ec:11:45:7e:42:7a:72:65:95:fc:a5:09:cf:b2:
c2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:08:ED:56:1C:18:F3:16:21:B0:3C:2C:F8:9F:E1:E2:68:13:12:13
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/WQjtVhwY8xYhsDws-J_h4mgTEhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.137.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:3a:3c:6d:ac:9b:88:a4:11:00:3b:24:20:60:bb:3b:68:9f:
07:ef:2c:f2:a0:1a:db:1f:63:34:55:7b:57:e0:9c:b1:4e:83:
cf:cc:a4:38:99:16:88:44:78:bf:c2:f7:72:96:50:7d:df:21:
4f:9d:fd:cc:fc:97:3d:23:b8:c0:1d:dc:9b:8a:09:cb:8b:6b:
53:60:53:91:80:19:51:5c:f2:6e:a2:b2:5c:67:aa:41:da:ec:
3a:34:28:3a:16:2c:be:23:62:bc:37:51:17:4f:a8:c9:81:47:
72:d4:f3:15:8e:a9:f9:fb:bc:51:bf:9e:4c:15:88:43:cf:74:
e2:c9:82:8c:08:a5:6a:b1:6f:14:43:75:c3:de:7e:b0:47:2d:
c3:df:de:c4:59:7f:2f:a0:16:87:99:36:2f:8b:66:01:f2:26:
2c:63:07:6c:27:27:ed:2e:37:3a:f4:e2:92:a7:0c:18:d3:3b:
60:ef:d7:08:f2:da:93:0a:6f:b3:fe:a0:4b:66:7d:8a:8b:11:
2c:7a:cf:ff:a3:0a:48:14:c4:d7:64:c4:22:66:2a:16:e5:e9:
68:be:5d:67:ee:34:f1:6e:db:5d:ce:f6:48:7f:8c:cc:0f:c4:
9d:08:ea:90:30:d1:0f:f0:99:c0:92:6b:c9:25:76:ec:ea:54:
e6:b3:48:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-ams.rpki-client.org