Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/a47475-179b-477f-b554-29356341c5fd/1/wVBmhvkZN2rdkGKaJyJkDMeYNL4.roa
File: wVBmhvkZN2rdkGKaJyJkDMeYNL4.roa (raw, json)
Hash identifier: imeKCuRY532M9wlBuBO29gobx2L6yFR8360nqufTovE=
Subject key identifier: C1:50:66:86:F9:19:37:6A:DD:90:62:9A:27:22:64:0C:C7:98:34:BE
Certificate issuer: /CN=2928db241541d6b6a6490004060aa71ad6ec189c
Certificate serial: 05677BDD
Authority key identifier: 29:28:DB:24:15:41:D6:B6:A6:49:00:04:06:0A:A7:1A:D6:EC:18:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KSjbJBVB1ramSQAEBgqnGtbsGJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/a47475-179b-477f-b554-29356341c5fd/1/wVBmhvkZN2rdkGKaJyJkDMeYNL4.roa
Signing time: Wed 06 Apr 2022 12:39:31 +0000
ROA not before: Wed 06 Apr 2022 12:39:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213075
IP address blocks: 185.243.87.0/24 maxlen: 24
193.200.250.0/24 maxlen: 24
2a0d:d81::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90667997 (0x5677bdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2928db241541d6b6a6490004060aa71ad6ec189c
Validity
Not Before: Apr 6 12:39:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1506686f919376add90629a2722640cc79834be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6d:47:9c:52:75:5c:93:eb:0d:76:cf:1e:af:
9c:99:90:14:2f:f3:35:42:28:e9:f7:83:77:5f:e9:
99:cd:6d:fa:58:e7:a2:8a:21:fc:d9:6e:ed:06:55:
b5:b3:74:1e:57:92:5e:70:ab:0c:e5:c8:09:c1:d0:
b0:25:00:f7:12:19:b1:cd:b5:09:74:1d:6c:2c:de:
51:8c:97:b5:b2:59:76:ab:08:17:41:b8:8e:bd:85:
bf:64:43:e5:f5:48:48:80:6c:a8:08:43:96:33:94:
94:b6:bf:9a:b5:a0:8e:e7:f1:93:79:13:7b:49:95:
31:80:c2:15:e2:78:c3:45:d5:5e:ac:de:7b:05:11:
54:29:f3:25:4f:ac:67:33:ec:4b:c2:91:ca:09:ac:
1b:ab:9b:e6:a5:c5:99:5d:d0:70:33:6c:28:bf:74:
05:9c:fd:b8:99:4e:e7:ba:c0:dd:2a:36:2f:78:04:
c4:f0:a8:db:0f:2f:b4:00:c1:7a:cb:2f:74:3b:ea:
3a:fd:1b:d6:13:42:0f:ff:4c:6f:cf:ce:87:7e:a3:
3b:b0:bf:5b:7d:62:bd:94:d6:f3:9c:24:40:9e:07:
3a:a1:64:a2:15:61:ac:f2:78:3c:28:7e:39:b1:3a:
0e:3c:81:ae:6e:cb:76:b7:b8:59:52:f0:8b:9c:22:
8b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:50:66:86:F9:19:37:6A:DD:90:62:9A:27:22:64:0C:C7:98:34:BE
X509v3 Authority Key Identifier:
keyid:29:28:DB:24:15:41:D6:B6:A6:49:00:04:06:0A:A7:1A:D6:EC:18:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KSjbJBVB1ramSQAEBgqnGtbsGJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/a47475-179b-477f-b554-29356341c5fd/1/wVBmhvkZN2rdkGKaJyJkDMeYNL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/a47475-179b-477f-b554-29356341c5fd/1/KSjbJBVB1ramSQAEBgqnGtbsGJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.87.0/24
193.200.250.0/24
IPv6:
2a0d:d81::/32
Signature Algorithm: sha256WithRSAEncryption
9c:35:14:c4:4a:41:34:d3:04:83:55:28:75:a2:4c:95:c5:e2:
39:bf:3d:fa:bd:d1:ed:88:b3:ce:97:a0:48:40:6b:ae:40:3b:
12:6c:f4:13:db:33:78:ad:c8:57:97:b7:28:28:47:ae:d5:7c:
f8:4f:56:d0:22:f8:5b:05:7e:c2:f3:4c:b7:45:84:8a:99:da:
5a:c3:d9:23:6e:d6:b3:1b:9f:3c:25:a5:2d:e0:50:72:ba:b3:
33:c1:77:89:7a:3d:44:39:4a:7f:4f:5f:99:08:02:4a:2a:d8:
93:f6:64:d3:04:49:7c:c9:30:7e:a7:cf:4d:1e:88:c0:2d:23:
e4:45:96:f5:01:34:2c:3f:8a:f9:2a:81:91:39:0f:7e:c8:cd:
33:30:e1:f6:1f:c3:c8:c5:0e:39:4d:00:44:74:ce:24:4a:6a:
80:d0:95:29:53:55:fd:98:88:0f:f8:23:37:9e:7d:21:92:0d:
6d:e3:ec:ec:90:cd:ac:12:b3:09:cb:2d:03:2d:b1:90:a6:f7:
fb:8b:78:1f:64:66:9e:5a:56:bf:7c:fa:ed:61:1a:76:88:f1:
ae:2d:8d:38:2b:34:3a:f1:dd:3c:fb:d7:7c:64:88:f5:86:ff:
73:87:9e:45:83:5c:62:ef:1e:56:28:83:e8:ba:43:41:d5:c4:
1f:df:f4:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:06 2024 by rpki-client on console-fra.rpki-client.org