Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/wKswixDwOv5xuD6ZbSrpeqlXycU.roa
File: wKswixDwOv5xuD6ZbSrpeqlXycU.roa (raw, json)
Hash identifier: oTnsVbNWuxmWaki4pbnsfFJerILxpDs1LcgBnsdfAuk=
Subject key identifier: C0:AB:30:8B:10:F0:3A:FE:71:B8:3E:99:6D:2A:E9:7A:A9:57:C9:C5
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A602946
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/wKswixDwOv5xuD6ZbSrpeqlXycU.roa
Signing time: Sat 01 Jan 2022 14:56:36 +0000
ROA not before: Sat 01 Jan 2022 14:56:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202251
IP address blocks: 185.225.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 979380550 (0x3a602946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0ab308b10f03afe71b83e996d2ae97aa957c9c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:14:00:85:04:f4:85:e7:c4:78:c5:44:ab:3b:
86:e0:aa:7c:11:da:cb:7c:4d:1f:c8:d1:ea:71:1c:
8c:7c:28:99:1c:f3:35:be:fc:28:3c:72:1e:dd:31:
7d:37:0e:c9:0c:8e:2f:4c:f1:9a:44:4f:7b:3d:4e:
af:9e:49:04:4a:ce:a3:cf:84:e4:2c:73:78:c2:1a:
09:03:2d:99:1b:86:03:90:68:81:36:68:09:e4:2e:
7f:c5:6b:5d:f3:fc:2d:df:ab:74:0e:97:1f:3a:1b:
97:9e:02:01:de:cc:0f:2b:1b:74:95:46:21:38:21:
28:04:0a:d8:b7:e2:8b:8c:f8:d7:2b:ad:c5:de:c0:
22:8f:92:f9:6c:91:5e:7e:0b:a5:3f:f2:b1:31:28:
8c:9a:da:90:b8:e3:3b:de:ec:62:1d:06:55:f6:d9:
fd:b4:3b:fb:9d:ea:89:e0:fd:6d:99:bc:08:3f:a3:
69:1e:45:bb:e2:82:86:f4:76:c2:c5:c5:16:db:43:
06:af:e9:3f:30:91:b6:80:a1:f1:54:ec:ca:66:fd:
70:e1:d5:b0:b9:a2:e0:db:97:dd:17:e3:c9:58:58:
52:00:ab:f6:2f:45:e5:d0:1d:9e:36:2d:7b:d8:13:
a1:71:dd:cb:44:9a:f6:ad:8f:53:d8:17:08:98:a0:
55:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:AB:30:8B:10:F0:3A:FE:71:B8:3E:99:6D:2A:E9:7A:A9:57:C9:C5
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/wKswixDwOv5xuD6ZbSrpeqlXycU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.240.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:78:6d:c9:60:08:12:43:2b:ad:c3:20:76:3e:d0:ee:63:1c:
7a:ff:31:23:28:6a:c7:7c:31:5f:fe:86:1c:1b:93:8b:a7:b6:
32:53:05:a0:f9:e6:ca:da:17:5a:7b:bd:f9:23:9f:cb:50:49:
77:9a:a1:ec:47:4b:6a:e3:c9:f6:34:c7:85:b8:85:cd:f5:2f:
0e:f2:3c:99:72:2c:ff:8e:7d:e5:e2:0c:c0:09:95:04:d4:6f:
78:77:4a:32:d6:13:4c:ad:55:11:b7:be:bc:7c:71:60:a3:bb:
f8:8c:67:e9:2a:82:64:d0:af:a8:e5:1d:b1:0c:0c:50:fb:c9:
fe:fb:6e:6f:6c:91:07:8d:ac:8d:45:dd:fb:b4:fc:c3:4f:c4:
2d:c0:ea:75:e5:9f:28:aa:03:36:90:9a:d2:0d:1d:13:59:47:
47:d2:52:c5:7e:e7:56:03:4a:00:b0:0e:24:8b:2b:cb:8a:e1:
9c:43:30:35:96:2d:ef:51:c9:da:ef:96:48:c5:d5:b8:fa:98:
ad:16:da:35:91:11:d2:0f:8a:1f:f3:43:40:29:19:a6:c7:50:
ba:f7:3a:ff:a8:74:9a:26:94:c9:4b:4c:68:82:a1:f3:f2:80:
00:2f:fe:0f:24:5f:bb:d4:2e:b3:6d:f6:42:cb:01:24:bd:27:
54:12:95:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org