Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/cf9533-1b34-44aa-9a78-f261fe516951/1/Wa0o0n2FZKprOPlwCZtBpIBwk5k.roa
File: Wa0o0n2FZKprOPlwCZtBpIBwk5k.roa (raw, json)
Hash identifier: D2+KCFO1Tj83Ci1Ll5Z2oYkVDxmugVW4jBpbV2oEK3c=
Subject key identifier: 59:AD:28:D2:7D:85:64:AA:6B:38:F9:70:09:9B:41:A4:80:70:93:99
Certificate issuer: /CN=a9c77844aeb6aab58c4603ca082bdd4a7804779f
Certificate serial: 0D0F4349
Authority key identifier: A9:C7:78:44:AE:B6:AA:B5:8C:46:03:CA:08:2B:DD:4A:78:04:77:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qcd4RK62qrWMRgPKCCvdSngEd58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/cf9533-1b34-44aa-9a78-f261fe516951/1/Wa0o0n2FZKprOPlwCZtBpIBwk5k.roa
Signing time: Sat 01 Jan 2022 01:58:51 +0000
ROA not before: Sat 01 Jan 2022 01:58:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205365
IP address blocks: 195.191.80.0/24 maxlen: 24
195.191.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 219104073 (0xd0f4349)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9c77844aeb6aab58c4603ca082bdd4a7804779f
Validity
Not Before: Jan 1 01:58:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59ad28d27d8564aa6b38f970099b41a480709399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0f:4f:6c:5b:5f:cc:ef:b5:6f:ad:12:ef:88:
bf:0c:71:5d:a3:2d:c2:4b:6b:8c:a7:2e:f3:f3:23:
72:21:32:52:21:99:99:f2:25:6b:60:31:ec:e6:20:
da:2d:6e:d3:ad:84:97:58:11:e7:c4:0d:1e:12:58:
71:75:fa:ab:69:f8:ce:26:d3:51:50:e9:e5:fa:92:
25:20:7c:2b:9d:37:a0:7c:9c:c1:25:9f:47:5a:2d:
e0:9c:99:27:30:ec:74:a0:68:fb:13:0e:b2:42:1c:
00:dc:18:ec:f9:15:73:c7:d3:b2:1d:97:64:94:9a:
c5:46:4f:c4:7a:21:b5:2e:95:f6:19:a6:bc:b1:7a:
41:c4:6f:59:af:16:34:4b:b0:06:2a:f7:27:34:11:
96:b8:6e:a0:38:f0:bf:42:d6:3e:f5:21:2d:b2:9e:
6d:5a:70:b4:b6:29:d9:1b:08:3c:65:6e:3e:c8:b9:
81:18:a5:8c:45:9f:66:39:61:f6:72:8a:74:60:8b:
24:45:90:d4:ce:0c:e7:d0:c2:47:62:56:75:0a:a3:
1b:2e:4e:82:33:12:c6:06:f4:7d:0a:28:99:4e:06:
1d:29:05:c9:ec:37:0f:b0:f0:42:00:3b:32:f0:d9:
e7:c6:7b:01:e5:d3:d2:28:82:a9:02:a0:62:9a:cb:
aa:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:AD:28:D2:7D:85:64:AA:6B:38:F9:70:09:9B:41:A4:80:70:93:99
X509v3 Authority Key Identifier:
keyid:A9:C7:78:44:AE:B6:AA:B5:8C:46:03:CA:08:2B:DD:4A:78:04:77:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qcd4RK62qrWMRgPKCCvdSngEd58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/cf9533-1b34-44aa-9a78-f261fe516951/1/Wa0o0n2FZKprOPlwCZtBpIBwk5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/cf9533-1b34-44aa-9a78-f261fe516951/1/qcd4RK62qrWMRgPKCCvdSngEd58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.80.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:79:35:1d:6a:34:49:ce:6a:8e:b9:1c:b7:28:20:c0:ed:8e:
0c:a1:cb:ad:8f:0a:36:02:89:28:86:a2:6c:e7:52:8c:c8:66:
4a:3b:3f:fd:72:b8:10:c9:07:12:ec:af:57:74:5b:d2:00:c9:
19:5b:00:4d:9c:1d:0b:7b:7f:ba:29:98:7b:65:f9:68:3a:95:
d8:59:a5:9f:f1:6b:ba:0a:54:3f:cb:f3:bb:5a:5b:59:1e:96:
79:0e:2a:36:81:d6:76:dc:6a:48:83:f2:26:dc:b8:f9:20:98:
a6:05:65:b0:9e:78:b3:06:47:1c:df:f2:07:fc:31:45:9b:7f:
4c:da:49:96:2c:59:81:01:e6:b8:b4:20:11:ac:5b:f7:9a:73:
96:46:12:ac:45:3e:ec:fd:90:df:7d:6a:16:09:11:8b:7c:c3:
75:66:9d:d0:f3:56:c7:2d:d3:c9:47:95:53:e5:e7:4a:2d:bc:
97:01:c0:09:24:f1:e0:3c:64:70:b3:42:3e:dd:01:59:24:b3:
cb:7b:3e:ce:8c:dd:eb:e2:97:c8:39:18:2f:8a:56:b1:2c:39:
9e:fc:d5:c9:c0:09:86:73:97:ae:5b:c4:c7:8f:2c:fa:9b:df:
71:0e:40:5a:07:fd:b4:ba:31:23:24:fc:de:8f:54:c5:52:82:
63:69:8f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:44 2024 by rpki-client on console-fra.rpki-client.org