Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/wTdsiMThVWIHfDJSYF_iYY1MEbc.roa
File: wTdsiMThVWIHfDJSYF_iYY1MEbc.roa (raw, json)
Hash identifier: lolosIPMA+RA3WOssFrrsBAcwEz0wmvk03GHR6a7yec=
Subject key identifier: C1:37:6C:88:C4:E1:55:62:07:7C:32:52:60:5F:E2:61:8D:4C:11:B7
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0BA4B897
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/wTdsiMThVWIHfDJSYF_iYY1MEbc.roa
Signing time: Sat 01 Jan 2022 05:51:49 +0000
ROA not before: Sat 01 Jan 2022 05:51:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210441
IP address blocks: 194.163.88.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 195344535 (0xba4b897)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 1 05:51:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1376c88c4e15562077c3252605fe2618d4c11b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:55:de:0a:7b:e1:f2:b5:34:c2:31:30:52:bc:
75:c0:cc:43:6e:c5:b6:21:be:a6:1d:20:75:7d:c6:
f9:5f:94:ce:2c:7c:b7:2b:5a:03:57:a7:03:50:81:
63:b4:a6:1a:93:15:83:e9:f3:3b:7d:67:06:79:69:
61:a3:4c:e1:db:39:2b:0c:ed:a8:e8:e9:a2:db:37:
51:78:b0:28:a4:08:5a:bb:36:75:4a:f9:4d:af:0c:
65:0a:22:32:d1:12:a8:4d:72:bb:9b:e8:39:77:d9:
3d:ff:e5:33:c9:7e:a3:aa:e1:d7:08:21:84:c6:4d:
89:50:a7:37:fc:78:d6:e8:47:da:4a:8c:4a:7d:6f:
1d:fb:2f:0f:ec:cf:e8:45:4b:f4:e2:7c:9f:c7:1d:
56:f3:4f:44:c2:6c:f0:b0:49:6f:83:bb:a5:a8:1b:
eb:a0:18:7f:db:7a:a9:6a:e6:f4:7c:55:ca:44:6c:
5e:cd:a5:7e:4e:5e:c0:63:8a:b3:8c:15:83:c6:29:
2a:3c:e5:16:ec:2e:64:e7:ab:1b:20:95:23:2e:a3:
2f:b6:28:7c:d6:0f:ec:85:02:8f:12:38:50:4d:d2:
56:8b:17:70:cd:39:f9:a4:4b:c0:3d:9a:c5:ea:f5:
16:f7:b8:c6:02:64:20:d4:bd:7f:4f:d4:b9:9b:b9:
bd:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:37:6C:88:C4:E1:55:62:07:7C:32:52:60:5F:E2:61:8D:4C:11:B7
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/wTdsiMThVWIHfDJSYF_iYY1MEbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.88.0/23
Signature Algorithm: sha256WithRSAEncryption
b8:b0:76:0d:16:df:75:81:91:0a:9a:3f:30:72:35:af:7c:62:
86:21:f3:a0:3a:05:4a:88:de:5c:76:b6:18:85:45:4d:63:7e:
82:81:e0:cf:2d:59:fa:dd:c2:dc:e0:4e:1c:5e:cc:17:e1:36:
80:dd:3f:a1:1f:28:db:34:c5:7c:d6:98:da:fd:b6:01:27:a2:
45:b1:84:01:be:d4:32:6e:2e:97:10:1c:ea:e3:e9:f8:47:4b:
8f:ee:67:db:60:12:58:e2:51:e7:28:f1:65:76:0b:3a:c7:b8:
e0:dd:36:01:db:c6:0f:c1:c7:40:49:9c:0e:be:07:d3:c8:3d:
fa:28:33:39:23:82:13:99:13:a7:2c:7b:cd:1a:f1:15:1a:ba:
6c:c7:a3:a3:8e:23:5d:56:4d:2e:c0:8d:85:dc:db:1e:fa:bd:
fc:b6:4d:5d:19:ad:f8:a0:72:ba:1b:c8:1c:77:84:ab:c7:db:
c9:ce:83:d2:45:9d:fa:93:d0:76:42:2a:c5:78:f8:da:c4:7f:
16:5f:3a:28:1f:61:69:f4:97:d6:f2:e4:de:78:a5:27:71:48:
98:c5:9c:06:b2:2d:66:b1:f8:bc:c9:7e:73:00:ac:ed:3c:80:
cf:68:49:0e:d8:a4:db:2b:6d:c7:4f:a9:0a:78:f2:1d:a1:64:
96:c9:81:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org