Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9e7bc0-3b77-4077-b2f1-4eb5f6cc53aa/1/wiXvMrMI7vLkEDSIdQxRunSYPSA.roa
File: wiXvMrMI7vLkEDSIdQxRunSYPSA.roa (raw, json)
Hash identifier: 87wd/CheGscOE/RvF2kF0M9xLK+GFgsmVXnN7UwB1sg=
Subject key identifier: C2:25:EF:32:B3:08:EE:F2:E4:10:34:88:75:0C:51:BA:74:98:3D:20
Certificate issuer: /CN=dc519b8bbfb8613c30d5a5173784723af266eb33
Certificate serial: 01E374B8
Authority key identifier: DC:51:9B:8B:BF:B8:61:3C:30:D5:A5:17:37:84:72:3A:F2:66:EB:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3FGbi7-4YTww1aUXN4RyOvJm6zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9e7bc0-3b77-4077-b2f1-4eb5f6cc53aa/1/wiXvMrMI7vLkEDSIdQxRunSYPSA.roa
Signing time: Sat 01 Jan 2022 07:53:08 +0000
ROA not before: Sat 01 Jan 2022 07:53:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39563
IP address blocks: 85.8.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31683768 (0x1e374b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc519b8bbfb8613c30d5a5173784723af266eb33
Validity
Not Before: Jan 1 07:53:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c225ef32b308eef2e4103488750c51ba74983d20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:21:c7:01:88:5b:46:58:55:7e:6d:b7:41:43:
33:b0:05:17:fa:28:43:cb:af:6c:74:82:11:b5:9f:
5a:ce:12:ad:43:4a:f5:1e:49:f5:10:c2:ed:4f:71:
d3:2a:34:2c:ce:1e:99:a4:40:49:d7:92:3e:5a:7e:
e6:48:0b:ed:a2:1c:ce:91:68:2c:dd:9d:7f:0a:45:
d1:3a:4a:c4:b8:d3:70:40:ac:57:0b:ac:ca:a6:a4:
a0:f8:91:5c:43:d5:7d:66:4a:6c:4c:03:9d:2b:60:
51:a1:23:95:39:78:ee:e5:82:99:8c:3b:61:8e:f3:
0c:d7:cc:8a:aa:d7:55:7d:00:8b:6f:a8:55:d7:8c:
58:64:d1:a7:bb:ae:b7:7b:53:56:b8:d1:cd:15:02:
5e:d4:81:a8:47:90:94:28:be:17:0d:1a:8b:fc:4f:
ce:58:04:78:5f:31:a7:73:1b:8e:64:4e:d9:a9:47:
cb:23:17:81:ed:c8:20:a0:e6:4d:8e:1c:00:3f:98:
64:f8:16:9d:9d:89:c8:78:86:3a:fa:21:be:31:82:
a5:fe:39:a5:16:ac:b7:63:ee:2b:23:85:78:47:ed:
e9:f9:54:ee:09:49:a5:8e:39:9f:df:a6:62:39:31:
5a:db:21:71:51:7d:d3:4e:93:83:a5:fe:01:c2:60:
a0:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:25:EF:32:B3:08:EE:F2:E4:10:34:88:75:0C:51:BA:74:98:3D:20
X509v3 Authority Key Identifier:
keyid:DC:51:9B:8B:BF:B8:61:3C:30:D5:A5:17:37:84:72:3A:F2:66:EB:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3FGbi7-4YTww1aUXN4RyOvJm6zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9e7bc0-3b77-4077-b2f1-4eb5f6cc53aa/1/wiXvMrMI7vLkEDSIdQxRunSYPSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9e7bc0-3b77-4077-b2f1-4eb5f6cc53aa/1/3FGbi7-4YTww1aUXN4RyOvJm6zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.8.131.0/24
Signature Algorithm: sha256WithRSAEncryption
69:ed:38:80:06:71:fc:88:8b:e3:b7:0f:63:47:ae:30:1e:bc:
92:38:e9:6e:99:17:b4:78:63:16:4f:2c:ae:69:38:be:36:37:
25:1d:42:ea:94:00:1f:c5:14:6b:33:e9:9f:23:bc:60:a4:e3:
8d:2d:76:b6:d0:a0:89:28:f0:ef:98:49:c8:b1:e9:ec:41:ea:
42:02:a9:68:05:eb:30:bb:23:d6:c4:3f:74:d6:b9:36:a3:23:
dd:af:fe:60:80:80:b7:1c:42:9e:db:b8:c8:1a:05:a8:3d:05:
33:5e:0b:a4:9b:fa:39:90:11:36:8f:b3:8e:93:43:fd:0b:6a:
74:f0:43:26:ca:64:13:81:9e:5a:fe:cd:fe:9a:5c:9f:67:4c:
93:73:5b:44:f5:76:23:ec:3b:1a:ce:43:ac:1e:f3:fc:bf:3d:
21:a3:5b:15:6a:9d:24:ba:1e:81:1e:11:e1:d0:70:c4:1a:06:
55:83:28:9c:dc:e5:f6:17:2d:2e:76:7d:db:97:44:ba:b4:74:
fd:27:0b:39:d9:ed:ec:8d:14:59:47:66:b7:63:79:e8:11:a3:
37:91:fd:0e:ba:06:b3:e4:43:f2:f1:a9:bd:57:d5:1d:8e:4d:
df:2b:7b:49:a4:13:5f:b2:82:26:59:e9:b1:25:ec:05:ed:31:
45:c4:16:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:10 2023 by rpki-client on console-ams.rpki-client.org