Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/WG1Rs4VqRKfOsL5Ffp3wC3RmBr4.roa
File: WG1Rs4VqRKfOsL5Ffp3wC3RmBr4.roa (raw, json)
Hash identifier: AAReCCXHpZz91h50P46RL6JqPliOqWr0W2cTs6ZjP3o=
Subject key identifier: 58:6D:51:B3:85:6A:44:A7:CE:B0:BE:45:7E:9D:F0:0B:74:66:06:BE
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 01AAD160
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/WG1Rs4VqRKfOsL5Ffp3wC3RmBr4.roa
Signing time: Sat 05 Feb 2022 10:01:16 +0000
ROA not before: Sat 05 Feb 2022 10:01:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 77.74.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27971936 (0x1aad160)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Feb 5 10:01:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=586d51b3856a44a7ceb0be457e9df00b746606be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5e:d2:16:39:35:37:99:bf:81:6b:60:99:d7:
cb:c6:5c:07:2c:92:2e:02:1f:91:0d:25:dd:93:f5:
36:21:19:06:41:44:f2:aa:50:6a:e6:eb:ee:0c:d8:
65:c0:5d:66:bc:a9:56:fa:5f:43:2f:88:59:ed:37:
31:34:96:97:03:3f:a5:98:e2:cd:f4:56:cc:d9:8d:
bb:af:c1:7e:81:d8:b9:21:41:95:fc:a1:89:3d:77:
e2:f7:a5:2b:b5:78:9e:b0:cb:ef:6c:e3:98:2f:0c:
b9:6b:79:c0:fd:99:a6:b3:44:74:d1:ad:4d:29:f6:
01:bf:0b:c9:27:96:18:43:5a:43:9a:5d:e9:4f:6d:
f0:d5:3f:e8:08:c2:fe:f8:1b:81:63:c3:80:15:2c:
c1:98:3d:d7:8a:50:90:11:2b:5a:4f:8c:5d:f4:79:
e8:c6:22:81:36:f0:d1:a1:38:a9:dc:a1:b7:ce:d6:
90:06:a4:92:89:d6:9f:47:0d:88:0f:83:3d:83:28:
29:f7:a2:37:cd:b2:29:cc:3a:32:e3:3c:04:ca:62:
f8:1c:17:bf:89:e3:4f:b1:81:96:7e:6b:f0:9b:a9:
40:ee:b2:45:25:65:c5:79:f1:4e:eb:29:75:5e:83:
a1:95:ad:dc:f8:0c:a5:05:2a:19:db:aa:8f:c2:03:
07:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:6D:51:B3:85:6A:44:A7:CE:B0:BE:45:7E:9D:F0:0B:74:66:06:BE
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/WG1Rs4VqRKfOsL5Ffp3wC3RmBr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.225.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:08:ab:90:b3:17:06:c0:80:ca:72:76:d2:38:0a:d5:45:7f:
8e:18:f7:4f:4a:5f:6d:7b:1a:90:66:5c:0c:81:59:40:98:c6:
42:41:53:90:90:f5:40:fe:ec:d3:db:b0:63:3f:0b:d5:e9:14:
51:8a:c0:89:c0:8b:76:e4:6a:e7:c7:45:45:5f:56:9e:1f:c0:
53:56:d1:3d:0d:ff:48:51:61:fa:dc:e6:7a:da:55:f2:c2:e0:
12:eb:3f:fa:7c:80:32:5e:7b:01:8a:aa:13:cc:af:f6:56:bc:
56:c3:cf:01:58:15:1a:ed:5d:32:6f:2c:17:c9:a6:7e:02:62:
dd:6d:6c:b3:18:c0:bf:2e:4b:25:2d:c6:a8:97:8f:50:87:fd:
e2:3e:9c:f1:78:9e:2f:70:fe:86:81:c7:9d:06:55:31:85:70:
24:c0:33:74:82:43:57:12:51:2d:74:fd:ae:ad:48:c2:f3:2e:
6e:f6:28:c9:47:ea:ec:bd:67:04:a6:65:9e:96:63:55:70:85:
51:56:a2:f9:d9:5d:f6:cc:dc:c5:e3:7a:03:cd:49:21:07:9f:
52:a1:c0:6c:69:b7:11:59:1b:a9:02:82:4f:5c:44:4e:b1:19:
22:3e:48:e3:c4:b2:89:54:aa:a3:60:74:2f:e9:51:91:49:54:
d6:cb:c5:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:22 2023 by rpki-client on console-fra.rpki-client.org