Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/WuhR8oDrBoS2-aZ8d4xCv4LLggU.roa
File: WuhR8oDrBoS2-aZ8d4xCv4LLggU.roa (raw, json)
Hash identifier: kZOTLXp+r0Fm52+/ZoRYxoKjMJvO/lMg6awYodzpEH8=
Subject key identifier: 5A:E8:51:F2:80:EB:06:84:B6:F9:A6:7C:77:8C:42:BF:82:CB:82:05
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 0C25548E
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/WuhR8oDrBoS2-aZ8d4xCv4LLggU.roa
Signing time: Sat 01 Jan 2022 08:54:08 +0000
ROA not before: Sat 01 Jan 2022 08:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51404
IP address blocks: 91.217.15.0/24 maxlen: 24
91.217.14.0/24 maxlen: 24
91.217.14.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203773070 (0xc25548e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Jan 1 08:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ae851f280eb0684b6f9a67c778c42bf82cb8205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f8:ce:8f:65:0f:0b:70:ed:9e:57:57:ea:68:
ab:12:4e:34:95:bb:0a:06:fa:a5:45:a1:bb:d2:45:
a1:30:7a:18:35:42:e6:7c:65:f9:5b:96:e4:af:42:
79:5b:b8:92:46:a2:e8:28:bd:69:1c:f1:7a:30:95:
d8:67:00:66:35:7e:f8:35:fe:b8:1b:5f:55:7c:82:
ca:75:60:81:ee:d3:c6:f0:ca:3c:6b:c5:69:4e:9e:
d2:be:aa:05:a7:1a:e7:c5:be:a7:e6:f4:56:b2:2c:
27:46:04:e6:96:f6:49:63:c0:ef:77:fd:1f:32:20:
c1:f4:2f:ed:13:c1:9a:7d:90:60:b0:32:4c:49:93:
16:72:9e:d3:7c:e4:5b:09:5e:82:4e:94:b8:5d:1f:
fd:2c:88:b2:99:b2:89:02:58:80:19:5d:42:e9:31:
7d:86:3c:a1:d0:ab:d0:db:fc:8e:06:8c:ca:89:22:
4c:8a:f7:da:17:38:23:6d:72:ae:eb:ab:74:99:e6:
cb:ed:50:a8:a0:11:95:d5:93:2e:fe:9a:13:b9:f9:
3c:4a:fc:46:83:8a:02:4e:11:56:2b:11:6c:6d:b5:
21:8a:44:c8:95:c8:b7:e8:39:2d:10:5d:04:f9:3a:
5d:48:7c:00:50:23:59:9a:fc:c2:15:87:17:4a:10:
3f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:E8:51:F2:80:EB:06:84:B6:F9:A6:7C:77:8C:42:BF:82:CB:82:05
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/WuhR8oDrBoS2-aZ8d4xCv4LLggU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.14.0/23
Signature Algorithm: sha256WithRSAEncryption
20:ca:45:a6:bc:9a:cb:43:5c:6a:4f:b6:71:50:66:f3:ff:f7:
49:93:8d:f1:2d:89:bb:1f:a4:d3:9b:d1:4f:a9:3d:62:ae:ac:
0d:d9:f3:f3:1b:f5:da:ef:6c:29:1b:4e:24:f0:76:67:7f:6e:
71:db:ad:3f:37:b3:ae:88:50:dc:ba:da:c8:1f:ae:d1:54:9b:
07:b5:70:3d:dc:8a:30:e0:2b:40:eb:14:0b:5a:88:58:80:e0:
b7:d2:0c:89:9c:f9:cb:f8:7d:86:60:39:16:1f:c9:e9:81:a4:
84:6e:1b:86:81:a8:c8:45:0d:6b:3f:dc:44:25:ea:1b:fb:89:
49:e9:1b:bf:69:9c:82:7e:55:33:06:b4:3a:64:4c:db:6e:1b:
3a:a1:fe:e3:fb:12:1c:cc:bc:61:82:26:2a:32:e0:d6:05:51:
e4:8f:32:6d:c3:92:df:69:55:dc:5c:d5:7e:80:75:2b:cd:d5:
4a:c7:d1:a0:0d:45:79:d3:93:bc:2a:0e:36:3c:f0:01:70:0c:
f0:08:57:79:60:98:c8:3a:db:34:b7:30:75:c2:6f:80:42:38:
d9:03:8f:40:6a:53:3b:2b:75:a3:38:3a:97:6b:b1:e1:5a:3e:
f9:ee:13:cf:21:56:18:02:21:18:04:8a:9a:20:bd:b8:6d:4c:
04:ec:80:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org