Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/w5PKR2fTn16-0QglseA9am1LSks.roa
File: w5PKR2fTn16-0QglseA9am1LSks.roa (raw, json)
Hash identifier: TGPzu3HIIyEz99lgOrAJXLq4OwNHcC5dT4kdAD3fvCA=
Subject key identifier: C3:93:CA:47:67:D3:9F:5E:BE:D1:08:25:B1:E0:3D:6A:6D:4B:4A:4B
Certificate issuer: /CN=217b491dccb5632216d80b48f8d6286b1effd8d7
Certificate serial: 02694993
Authority key identifier: 21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/w5PKR2fTn16-0QglseA9am1LSks.roa
Signing time: Sat 01 Jan 2022 03:57:54 +0000
ROA not before: Sat 01 Jan 2022 03:57:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212203
IP address blocks: 185.244.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40454547 (0x2694993)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=217b491dccb5632216d80b48f8d6286b1effd8d7
Validity
Not Before: Jan 1 03:57:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c393ca4767d39f5ebed10825b1e03d6a6d4b4a4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:4b:56:40:aa:77:d8:b0:d6:f1:db:ba:23:d1:
70:33:23:8b:2f:0c:87:76:77:ff:2d:64:d4:8e:c4:
02:81:ba:6f:46:ff:65:ed:8b:27:85:c1:07:d3:23:
c5:ea:a6:a9:5b:81:d9:2a:5e:f9:49:5b:84:58:dd:
a5:78:5e:3f:8e:cf:41:a8:97:08:42:f4:c4:65:51:
f9:eb:01:08:a7:30:cd:91:27:fb:b5:70:2c:98:e2:
73:85:2e:18:70:b3:ef:0e:36:5a:18:35:5e:a3:5e:
0a:a2:32:2c:21:e9:af:f7:fc:3e:cc:95:2a:cd:23:
7b:ec:b9:9c:f5:1d:04:36:39:91:03:b6:de:17:a8:
0d:cb:60:ce:55:14:4e:0c:c9:d0:2b:9e:ac:08:2c:
6e:5e:81:e7:42:cd:26:58:41:33:0e:fd:c2:f5:ad:
72:cf:10:98:a8:f9:65:05:42:4c:5f:5e:95:9c:41:
30:15:99:51:85:74:f5:0b:5e:52:54:26:d3:77:02:
ae:70:7d:a7:62:7a:3b:44:61:e1:d1:ba:50:c6:21:
f0:64:50:35:a1:53:8a:9f:bc:0d:96:bf:82:ee:de:
b4:d0:38:23:8d:6b:1e:81:75:fe:a4:07:3a:18:fd:
24:f3:86:88:07:c1:e9:ea:85:5f:2f:5c:34:8f:5c:
dd:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:93:CA:47:67:D3:9F:5E:BE:D1:08:25:B1:E0:3D:6A:6D:4B:4A:4B
X509v3 Authority Key Identifier:
keyid:21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/w5PKR2fTn16-0QglseA9am1LSks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.176.0/24
Signature Algorithm: sha256WithRSAEncryption
38:cc:7d:27:01:38:09:6f:02:36:cc:9a:5c:72:22:12:b4:35:
93:bb:05:d4:f0:fd:d2:3c:a0:f4:b0:e1:27:d4:1e:92:74:19:
2d:5b:70:2c:5d:ca:dd:85:ec:ab:fc:aa:2e:b0:e6:6a:7f:1a:
4d:ae:30:d5:2b:ca:bd:c2:2f:0d:0e:4a:cd:f3:0b:32:05:c6:
ff:72:95:1c:ac:f5:c3:c9:ab:bc:64:57:f5:30:2f:84:3a:c7:
41:31:e3:f2:71:48:45:8e:af:7d:89:75:2d:bd:aa:90:25:7d:
d2:37:82:a4:dc:f9:85:b2:57:b0:4d:dd:d4:1c:e1:97:e5:0c:
ca:7c:98:9a:e4:bd:83:37:1f:29:fb:39:27:1f:5b:35:78:d2:
59:2f:1f:8f:79:83:86:1e:d6:ec:9c:a7:8f:54:b5:d4:92:59:
8e:f3:62:62:4e:7b:b2:18:f6:83:41:0a:f1:a7:95:ab:aa:e0:
de:b1:a7:92:69:85:c0:cb:4d:b8:7f:60:dd:4e:3f:83:95:d0:
18:b5:e5:11:8c:f2:f7:d2:c2:0c:d4:15:8a:e7:ae:92:49:31:
ce:bd:a4:f8:0f:2e:fb:47:15:d3:e9:ad:81:8b:85:67:17:33:
fa:6f:48:4e:35:ca:0b:ad:5b:e3:47:11:04:6e:36:da:45:b1:
e0:0d:50:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:38 2023 by rpki-client on console-fra.rpki-client.org