Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/438306-1d14-459a-b2d6-64e50ebbb21e/1/weG-OgjcTk5qjH1St6gsnr4sNQo.roa
File: weG-OgjcTk5qjH1St6gsnr4sNQo.roa (raw, json)
Hash identifier: gU6ZR4DnePpyf1MTlE/JtlspgMqP7rvyPw+cXTSk154=
Subject key identifier: C1:E1:BE:3A:08:DC:4E:4E:6A:8C:7D:52:B7:A8:2C:9E:BE:2C:35:0A
Certificate issuer: /CN=e6a0c256d32e4544d6b7fd37f9cee559d3d2694f
Certificate serial: 7E2FB1
Authority key identifier: E6:A0:C2:56:D3:2E:45:44:D6:B7:FD:37:F9:CE:E5:59:D3:D2:69:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5qDCVtMuRUTWt_03-c7lWdPSaU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/438306-1d14-459a-b2d6-64e50ebbb21e/1/weG-OgjcTk5qjH1St6gsnr4sNQo.roa
Signing time: Sat 01 Jan 2022 04:01:44 +0000
ROA not before: Sat 01 Jan 2022 04:01:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 212.52.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8269745 (0x7e2fb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6a0c256d32e4544d6b7fd37f9cee559d3d2694f
Validity
Not Before: Jan 1 04:01:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1e1be3a08dc4e4e6a8c7d52b7a82c9ebe2c350a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:02:cd:1f:fc:0a:4f:99:f8:93:1e:ee:3a:8a:
e9:4c:d2:c3:54:1a:e0:a3:6f:81:f5:6f:e7:cc:e3:
dc:d0:99:3b:32:8d:d9:15:30:ab:3d:86:a8:19:de:
57:f9:8e:44:24:3a:e1:14:ea:11:3d:ce:e8:be:a1:
18:c9:45:d6:14:65:9b:ab:c6:3c:33:6e:5e:65:a3:
85:d3:d6:cb:8b:ba:ab:91:22:2b:29:76:4a:4e:f0:
91:9d:07:6d:77:02:c0:df:80:97:70:f5:15:fe:51:
fd:7e:39:df:2d:f6:ba:74:20:2b:f6:bc:d7:45:c4:
9d:ca:9a:64:cd:18:99:7d:1f:42:aa:f9:49:09:70:
de:13:aa:c8:ec:2a:5f:32:df:cd:cb:55:1c:7b:d5:
77:e2:42:0e:fe:6e:40:a0:d1:d4:c1:85:f3:ed:2b:
54:27:01:0f:5f:80:33:d2:24:e2:9b:a3:f9:4b:a0:
8e:c0:5d:e9:1c:9f:d4:fb:fe:2b:9b:0a:b5:84:22:
5f:8a:89:36:bf:49:ff:94:10:97:78:c7:d1:5b:4c:
01:b3:57:67:40:ef:f3:e9:2d:df:00:9f:f9:bd:1e:
52:91:3b:f8:8c:cf:f0:8d:ac:7e:e2:85:a5:6f:24:
75:7d:fe:7e:d8:af:0c:7d:c3:ba:04:12:9f:a7:14:
26:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:E1:BE:3A:08:DC:4E:4E:6A:8C:7D:52:B7:A8:2C:9E:BE:2C:35:0A
X509v3 Authority Key Identifier:
keyid:E6:A0:C2:56:D3:2E:45:44:D6:B7:FD:37:F9:CE:E5:59:D3:D2:69:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5qDCVtMuRUTWt_03-c7lWdPSaU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/438306-1d14-459a-b2d6-64e50ebbb21e/1/weG-OgjcTk5qjH1St6gsnr4sNQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/438306-1d14-459a-b2d6-64e50ebbb21e/1/5qDCVtMuRUTWt_03-c7lWdPSaU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.8.0/24
Signature Algorithm: sha256WithRSAEncryption
50:27:85:0a:ff:3a:92:ee:33:93:67:2d:47:05:5d:99:bd:ee:
a5:98:6e:c0:3f:80:13:08:b1:d5:df:cd:ef:60:65:64:2c:6d:
dc:2e:2e:d6:aa:8f:28:45:02:de:8f:4e:5f:3f:6d:67:e9:fb:
35:c8:12:f7:b9:c3:39:ee:56:d8:92:58:94:2d:f0:8d:cb:e4:
51:e2:2a:68:94:6f:b8:58:05:9d:94:36:76:24:9c:9e:12:0a:
76:d3:93:9f:b1:66:72:79:18:3c:85:4b:4e:93:0b:b5:59:e2:
41:61:23:81:6a:8c:11:dc:d4:88:fe:8c:bc:05:93:77:d2:90:
b6:55:22:dd:94:59:d4:95:92:0f:0d:d0:25:4f:45:e0:75:97:
6c:88:8b:5e:63:5b:83:68:1a:a3:b1:fb:b9:43:96:f4:42:a1:
51:89:b0:b8:b2:35:b1:e2:31:d5:e2:1f:3c:9b:71:2a:c1:1a:
9b:38:2b:2e:8c:8f:54:b3:1b:06:12:4c:e7:c3:a7:5f:3f:2e:
04:8c:12:e2:85:e2:e6:2e:31:33:6f:86:e9:00:c7:9d:b4:b8:
7b:d9:8f:be:2c:68:4e:f3:a9:0a:e7:3b:ba:81:e6:ec:36:f2:
7a:c9:b4:11:c3:66:99:86:b4:2c:40:b0:85:95:d0:5a:36:32:
49:8d:2f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:08 2023 by rpki-client on console-fra.rpki-client.org