Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/WbaiIIQ_qlQjDzSSVWH2v7edeN4.roa
File: WbaiIIQ_qlQjDzSSVWH2v7edeN4.roa (raw, json)
Hash identifier: QnLEHVcQUng5NfNYJ+Nttk3Q5nrjaHdQS7ktk6q/P0w=
Subject key identifier: 59:B6:A2:20:84:3F:AA:54:23:0F:34:92:55:61:F6:BF:B7:9D:78:DE
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 485D5AA1
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/WbaiIIQ_qlQjDzSSVWH2v7edeN4.roa
Signing time: Sat 01 Jan 2022 03:00:23 +0000
ROA not before: Sat 01 Jan 2022 03:00:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39421
IP address blocks: 5.101.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1214077601 (0x485d5aa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59b6a220843faa54230f34925561f6bfb79d78de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:44:b4:5e:43:84:f3:44:a3:d9:6f:d9:ef:ff:
16:47:8d:8d:04:ce:f7:b1:bd:1d:c2:e8:fc:d7:5d:
57:aa:1e:e0:ff:04:60:3f:a8:02:6d:24:ff:c6:dc:
8c:ca:db:d4:49:ff:6e:18:9e:84:92:72:78:84:4a:
89:d7:f1:d0:d7:7a:4e:a6:ad:59:b2:d9:b9:91:3f:
7e:6d:e4:d1:8b:eb:44:02:5a:59:99:49:89:62:0d:
61:25:3e:e3:2e:f0:ad:63:a1:76:b1:3c:a2:99:55:
75:dd:b9:e9:f2:97:14:31:96:41:07:3d:9c:c0:c7:
a0:79:08:7f:7b:f1:cd:05:7c:6f:66:6b:2f:37:d2:
55:84:34:e6:39:a8:99:db:0d:7d:56:66:98:ca:ac:
bd:30:94:41:2b:2e:22:15:02:f9:f2:8f:e9:40:0c:
01:18:0b:5b:9d:9b:22:11:81:13:46:e9:2c:97:e0:
95:01:0c:6b:6c:e4:f0:0b:13:05:38:fc:97:6e:84:
a7:10:c7:72:e7:1c:30:3e:4d:48:b4:a4:45:27:74:
67:c9:cb:31:0a:7c:d7:49:45:ca:68:66:55:77:7d:
c0:2e:78:e1:6c:26:3c:69:70:f3:ce:37:1e:9b:3a:
97:f0:2a:7b:42:34:5f:65:16:bb:c1:bc:d3:05:a9:
01:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B6:A2:20:84:3F:AA:54:23:0F:34:92:55:61:F6:BF:B7:9D:78:DE
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/WbaiIIQ_qlQjDzSSVWH2v7edeN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.101.34.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:96:9a:48:74:cf:dc:69:e5:c5:7c:45:9c:95:73:de:76:54:
51:46:b1:3c:8f:a1:70:21:c7:55:4c:88:c4:d8:81:82:56:04:
80:1a:ed:0c:be:cd:a7:bc:3f:fc:3d:44:87:ee:f4:06:8b:77:
a2:ce:d0:80:cc:3e:a4:8a:e2:b7:a2:d2:ea:9a:84:79:36:0b:
33:01:49:3b:38:1a:6e:e6:87:cc:55:ca:12:27:9b:1c:e0:68:
5b:52:a8:b5:43:fb:d3:a1:4a:c2:a6:d0:51:e2:54:5f:25:d9:
d7:5c:c3:f9:12:30:bf:95:85:7a:45:f0:b1:a8:73:30:5d:91:
75:93:42:28:52:32:4c:b9:98:3f:65:6e:d0:29:38:68:1b:1f:
71:97:56:98:81:8a:57:79:80:50:b4:56:52:7f:ae:0a:46:77:
5c:e5:e5:85:51:70:85:23:b4:45:6b:49:8d:2d:42:2f:93:07:
39:e7:fa:fa:2d:e6:53:7e:ec:c8:42:2b:21:42:44:23:02:2e:
4d:ff:bf:0d:a6:38:b2:d1:c9:87:88:84:de:81:52:0a:35:37:
bc:ca:64:ca:bb:04:87:c7:3a:c0:5a:44:8d:f6:0d:b6:15:cb:
89:79:69:52:c9:2a:b6:b7:ed:2e:31:02:d4:ad:dd:b7:b6:ca:
70:40:0f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:43 2023 by rpki-client on console-ams.rpki-client.org