Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/4598a4-059c-465e-ab8d-5d25cab9868b/1/wRDrz8KVqMiGy1tqW1wIx16BM2k.roa
File: wRDrz8KVqMiGy1tqW1wIx16BM2k.roa (raw, json)
Hash identifier: Rz5mTMHqSfYkrFZN9GcZP7bqKTEdoPEIK7VXZKHYblM=
Subject key identifier: C1:10:EB:CF:C2:95:A8:C8:86:CB:5B:6A:5B:5C:08:C7:5E:81:33:69
Certificate issuer: /CN=c65b26bb007cc1dd96880d4c854db4db40045d8b
Certificate serial: 763168
Authority key identifier: C6:5B:26:BB:00:7C:C1:DD:96:88:0D:4C:85:4D:B4:DB:40:04:5D:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xlsmuwB8wd2WiA1MhU2020AEXYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/4598a4-059c-465e-ab8d-5d25cab9868b/1/wRDrz8KVqMiGy1tqW1wIx16BM2k.roa
Signing time: Sat 01 Jan 2022 05:05:32 +0000
ROA not before: Sat 01 Jan 2022 05:05:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51088
IP address blocks: 212.24.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7745896 (0x763168)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c65b26bb007cc1dd96880d4c854db4db40045d8b
Validity
Not Before: Jan 1 05:05:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c110ebcfc295a8c886cb5b6a5b5c08c75e813369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c5:95:f8:e7:30:6b:76:1d:a4:65:f6:63:27:
46:3c:f2:7a:9c:00:90:90:65:21:82:9f:cf:f0:b8:
5d:9b:c3:b8:ad:0f:87:2a:c8:b0:59:06:b8:f9:b5:
7e:8b:c0:c7:f4:ca:a8:e5:b9:d1:e4:23:59:00:17:
fd:fd:05:68:35:ca:31:08:59:6e:06:60:3c:18:af:
8e:a7:9f:93:82:c7:22:5d:ba:e7:20:d6:23:78:9b:
1b:60:ce:3b:b2:5a:a7:35:a2:e5:a2:12:a8:f0:b4:
94:d3:ab:67:ac:8a:98:c9:b8:c0:12:8b:5c:91:3e:
10:f3:49:f1:24:43:13:ba:1d:93:c9:e8:ad:62:32:
85:3b:bc:5b:ff:53:43:14:77:a6:0e:41:be:31:c0:
3c:19:19:d5:58:0f:3a:ba:5c:09:21:26:97:2f:10:
82:ca:0a:b1:51:95:b4:8a:4d:1b:a3:b9:d0:86:a0:
ce:df:9f:f8:de:f3:b5:4c:87:eb:6a:23:95:fd:4f:
46:5d:dd:e1:b4:3a:e0:df:5a:ca:78:af:80:7b:46:
c0:47:a8:c8:e8:42:ff:60:77:9a:3a:be:aa:5d:99:
2c:30:d9:bc:06:91:ba:38:2a:bb:99:1b:78:47:63:
89:02:84:a7:a9:77:e9:a7:e4:95:d1:b2:e1:8d:5c:
21:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:10:EB:CF:C2:95:A8:C8:86:CB:5B:6A:5B:5C:08:C7:5E:81:33:69
X509v3 Authority Key Identifier:
keyid:C6:5B:26:BB:00:7C:C1:DD:96:88:0D:4C:85:4D:B4:DB:40:04:5D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xlsmuwB8wd2WiA1MhU2020AEXYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/4598a4-059c-465e-ab8d-5d25cab9868b/1/wRDrz8KVqMiGy1tqW1wIx16BM2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/4598a4-059c-465e-ab8d-5d25cab9868b/1/xlsmuwB8wd2WiA1MhU2020AEXYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.24.126.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:65:47:ca:02:01:72:72:dd:ff:55:99:33:c0:18:23:bd:d8:
35:3c:a7:6f:f7:9b:30:fa:7b:73:95:88:91:10:f2:80:4a:69:
de:86:c4:ca:7f:39:90:96:ec:b6:19:96:8c:fd:5a:7a:ac:09:
ac:11:47:e0:bc:42:58:63:fc:14:f3:4e:ce:59:a0:a3:37:47:
ae:de:ba:9a:fb:64:6b:36:88:f2:88:07:8b:ae:80:03:8c:b3:
19:75:dd:ab:43:ff:79:d4:a9:d9:7b:fc:12:ba:12:1f:20:32:
17:69:9f:d5:8c:8a:63:dc:c2:88:ba:cf:c5:7f:d4:4f:3e:34:
20:fe:ae:f5:79:e0:04:15:06:59:72:56:75:e9:1e:1f:bd:cf:
aa:af:67:ba:55:20:c5:d0:4c:47:07:f5:b8:20:47:9b:2b:61:
e7:48:64:b3:96:79:32:b7:6a:a5:06:27:da:9f:90:20:66:2a:
8b:24:f9:a9:8a:c0:55:06:05:e7:a4:7e:e9:a4:ad:91:0a:c0:
e8:34:c7:77:3e:a6:92:af:98:f9:f2:3b:e7:14:85:bc:7f:b4:
ae:62:7c:d1:eb:e7:14:ab:9e:c2:4c:c5:f2:61:6a:73:8b:f6:
22:04:a8:b0:1e:93:39:dd:c9:0a:81:bf:f3:c7:eb:1a:20:a1:
63:61:7b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:55 2023 by rpki-client on console-ams.rpki-client.org