Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/c2894c-a67d-4bac-b97f-1361e4aa91de/1/wcPCaLLDKH68eRxWhLmATg4ZpQY.roa
File: wcPCaLLDKH68eRxWhLmATg4ZpQY.roa (raw, json)
Hash identifier: o5VughlIKmJHwyu7Olg5dzLOfHSb751VW3rjMjIoOwE=
Subject key identifier: C1:C3:C2:68:B2:C3:28:7E:BC:79:1C:56:84:B9:80:4E:0E:19:A5:06
Certificate issuer: /CN=dca0441e5917f9c909f36d55ac2423e124814e2f
Certificate serial: 0181CF60663CDA87ABF0FC0BD00D58117DF0
Authority key identifier: DC:A0:44:1E:59:17:F9:C9:09:F3:6D:55:AC:24:23:E1:24:81:4E:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KBEHlkX-ckJ821VrCQj4SSBTi8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/c2894c-a67d-4bac-b97f-1361e4aa91de/1/wcPCaLLDKH68eRxWhLmATg4ZpQY.roa
Signing time: Tue 05 Jul 2022 17:20:10 +0000
ROA not before: Tue 05 Jul 2022 17:20:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50214
IP address blocks: 88.151.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:cf:60:66:3c:da:87:ab:f0:fc:0b:d0:0d:58:11:7d:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca0441e5917f9c909f36d55ac2423e124814e2f
Validity
Not Before: Jul 5 17:20:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1c3c268b2c3287ebc791c5684b9804e0e19a506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:68:41:6c:65:ef:7f:60:a2:04:71:4e:5a:01:
66:42:81:8a:ce:4b:3f:fb:9a:d9:81:af:3d:ea:f8:
bb:78:95:b8:2e:d6:b2:c2:bd:49:1d:a3:a1:7f:e0:
8b:0a:6d:df:66:82:e7:e9:95:a9:52:3a:38:ad:73:
f7:ca:11:ca:74:ce:39:13:70:a3:a3:db:82:2a:1d:
6c:34:de:b7:7b:20:d7:57:ad:69:a1:53:34:26:54:
92:f5:35:df:94:cd:ce:cf:48:e0:c2:e2:ea:eb:0d:
8f:6b:d8:2d:4a:70:40:3e:c8:e2:1c:50:d7:8c:a4:
be:55:64:56:d9:c4:14:ac:da:15:af:9d:ea:83:36:
6a:bd:65:2c:17:2c:db:c7:db:f1:d5:10:2d:af:1e:
c9:99:f0:33:a2:0b:0c:db:51:8e:66:b9:be:0d:a1:
51:b0:7f:70:70:17:41:56:d7:8d:9d:4c:ec:0d:30:
6a:a6:c7:1f:38:64:9d:89:48:0a:58:0d:63:b7:c0:
99:fd:7d:ff:99:eb:df:4e:89:40:5d:59:e2:ef:c2:
f9:ef:67:d3:13:cf:5b:de:bb:0d:13:d2:1a:cc:13:
20:a3:eb:47:5d:5c:da:61:83:6f:ce:30:c7:74:99:
38:d0:9d:c8:56:55:c3:26:13:b7:14:52:4c:2d:9d:
a8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:C3:C2:68:B2:C3:28:7E:BC:79:1C:56:84:B9:80:4E:0E:19:A5:06
X509v3 Authority Key Identifier:
keyid:DC:A0:44:1E:59:17:F9:C9:09:F3:6D:55:AC:24:23:E1:24:81:4E:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KBEHlkX-ckJ821VrCQj4SSBTi8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/c2894c-a67d-4bac-b97f-1361e4aa91de/1/wcPCaLLDKH68eRxWhLmATg4ZpQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/c2894c-a67d-4bac-b97f-1361e4aa91de/1/3KBEHlkX-ckJ821VrCQj4SSBTi8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.114.0/24
Signature Algorithm: sha256WithRSAEncryption
28:15:d3:70:c8:a4:6a:71:1e:15:87:5a:23:9f:63:89:d2:14:
e4:21:8d:80:6b:bf:d9:c4:62:8e:be:7a:2b:c4:7a:88:63:00:
97:98:32:32:52:79:49:5a:ff:92:09:f0:67:02:68:47:18:9c:
51:df:85:7c:f3:fc:49:a8:bc:87:20:94:bf:26:11:cf:8e:f0:
48:77:ac:07:96:3c:0b:80:34:99:bb:3f:04:e8:d0:94:cb:66:
15:14:48:0f:91:9f:8f:20:0a:b4:c0:26:bb:da:b5:b5:92:53:
64:be:6d:c5:22:9d:0c:83:c0:f5:51:0d:a6:be:2d:8e:c3:e8:
7c:ef:2f:8c:86:5a:cc:2f:cf:25:be:9b:51:b5:27:32:05:8b:
3e:02:1f:bc:23:cb:c6:69:03:1d:17:b9:0a:dc:fb:34:32:75:
95:47:76:d0:a6:dc:c0:07:b4:f4:d2:5d:50:fb:da:bd:47:14:
35:31:95:d4:e4:ff:1a:4b:b2:83:bd:a9:b6:68:64:2f:b9:b1:
8c:58:8a:c3:40:1c:3b:fc:a5:89:20:a8:33:ab:b6:9a:6a:15:
ec:1d:7a:97:62:c6:4e:2a:c3:9e:8d:9b:3b:c8:85:24:f4:1c:
2c:23:be:1b:0c:fa:a3:25:05:bc:06:a5:59:1e:2a:1d:a4:3e:
2c:55:ac:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:09 2023 by rpki-client on console-fra.rpki-client.org