Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f3ca23-86ec-40d0-a520-69a364e5629e/1/wlUwnZ50XT4o979tN_5hMYc3BCc.roa
File: wlUwnZ50XT4o979tN_5hMYc3BCc.roa (raw, json)
Hash identifier: mFOTQxnvyYpv7oHgMS0YOrfX1wJy12mnKR7N4L2UtDE=
Subject key identifier: C2:55:30:9D:9E:74:5D:3E:28:F7:BF:6D:37:FE:61:31:87:37:04:27
Certificate issuer: /CN=f844e1eafaad3cb091f20ee5bf1c0482487c306e
Certificate serial: 472EC1
Authority key identifier: F8:44:E1:EA:FA:AD:3C:B0:91:F2:0E:E5:BF:1C:04:82:48:7C:30:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ETh6vqtPLCR8g7lvxwEgkh8MG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f3ca23-86ec-40d0-a520-69a364e5629e/1/wlUwnZ50XT4o979tN_5hMYc3BCc.roa
Signing time: Sat 01 Jan 2022 00:53:08 +0000
ROA not before: Sat 01 Jan 2022 00:53:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8412
IP address blocks: 194.50.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4665025 (0x472ec1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f844e1eafaad3cb091f20ee5bf1c0482487c306e
Validity
Not Before: Jan 1 00:53:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c255309d9e745d3e28f7bf6d37fe613187370427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0c:0a:ca:2f:8b:af:a4:34:97:3a:16:89:f1:
40:9b:a4:90:d0:b2:d0:f3:fa:a1:71:d5:42:ca:e6:
43:e7:32:9c:f2:7a:29:eb:26:5f:53:6a:da:de:dc:
35:b9:e4:0f:f2:88:3f:1e:44:36:24:80:75:2e:a7:
f3:c1:dc:71:37:34:d0:05:e0:3d:3b:ef:0c:00:89:
d9:7c:18:73:bf:ea:14:0d:f6:b6:c5:95:0f:7d:97:
8e:48:69:80:79:29:2c:68:67:57:2a:e5:16:a5:4c:
68:c9:56:06:9b:3c:69:62:5a:7b:f7:69:82:2a:18:
08:2d:3f:cd:7f:57:4b:8a:a8:65:50:be:82:80:f8:
b8:75:72:09:dd:bf:2c:f5:68:4e:3a:4f:9e:72:84:
08:d1:4c:91:e2:91:cc:6b:3c:f7:8e:b2:98:e5:e8:
40:b5:5b:c6:a3:76:8a:f4:a1:d8:7b:aa:c9:63:b0:
df:0d:b5:19:b4:41:48:45:04:1b:f5:bf:09:09:8f:
bd:3b:42:53:5d:af:41:b3:91:ae:b1:88:ea:71:3a:
2d:1c:65:9d:c2:93:3b:61:db:a7:96:86:25:ea:40:
2e:41:0e:57:0d:02:9a:6f:ca:f2:08:d9:f0:68:03:
7e:4f:dd:ae:e7:2d:47:5a:e6:d5:39:ae:6c:79:35:
77:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:55:30:9D:9E:74:5D:3E:28:F7:BF:6D:37:FE:61:31:87:37:04:27
X509v3 Authority Key Identifier:
keyid:F8:44:E1:EA:FA:AD:3C:B0:91:F2:0E:E5:BF:1C:04:82:48:7C:30:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ETh6vqtPLCR8g7lvxwEgkh8MG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f3ca23-86ec-40d0-a520-69a364e5629e/1/wlUwnZ50XT4o979tN_5hMYc3BCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f3ca23-86ec-40d0-a520-69a364e5629e/1/1-ETh6vqtPLCR8g7lvxwEgkh8MG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.173.0/24
Signature Algorithm: sha256WithRSAEncryption
01:88:e3:5d:e4:9f:83:09:70:1b:5b:bb:3d:d0:50:9d:33:78:
2d:55:1b:ba:c4:aa:29:87:9f:98:ba:e5:95:22:4f:0e:f8:54:
23:cc:05:e6:0a:9f:e6:bf:11:1b:a9:27:b9:e2:79:a5:84:c4:
10:a7:cc:01:7a:1b:f4:ab:a2:84:af:1e:26:36:b5:1b:6d:b6:
98:ff:1f:56:f2:89:56:26:48:d4:26:c6:a7:24:13:e6:4a:45:
44:ac:95:68:91:4c:9c:54:26:19:88:31:4e:a0:f9:0e:d6:5e:
46:00:17:d9:55:b3:0b:44:bf:ad:19:16:a1:70:8c:e1:d3:da:
3d:65:b8:06:8e:98:e0:b1:e6:05:c1:d6:59:f3:1e:54:41:c4:
03:45:11:cf:88:f9:98:d7:9b:14:d5:2c:0b:3e:25:c7:a9:fd:
ce:0e:ad:73:7b:ad:01:98:72:9c:38:f9:73:aa:32:88:f5:10:
d3:ad:62:c4:f5:ec:21:88:c3:86:96:4e:9e:8d:1b:25:d4:46:
f7:87:ed:aa:25:64:59:62:5c:53:14:64:87:2a:18:03:e7:47:
e0:7b:cd:3d:0f:39:a5:a6:bf:81:f8:32:52:6a:be:b9:de:ce:
fd:01:a9:53:e6:41:ea:a3:9f:fc:08:71:03:27:5d:88:ca:d4:
19:72:92:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:04 2023 by rpki-client on console-fra.rpki-client.org