Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/a6f506-6948-4cef-8548-c93c1ee898be/1/WMGOzGLsfOgHtSYqFXnMGqSU-JU.roa
File: WMGOzGLsfOgHtSYqFXnMGqSU-JU.roa (raw, json)
Hash identifier: VtFI4XMrLwy9WRvZov8sya6uRn+YCn5+zmu0iDPFbwY=
Subject key identifier: 58:C1:8E:CC:62:EC:7C:E8:07:B5:26:2A:15:79:CC:1A:A4:94:F8:95
Certificate issuer: /CN=ddfd94ebb8cb98a1dbdf50bdcd69dcc29144889e
Certificate serial: 0169E3
Authority key identifier: DD:FD:94:EB:B8:CB:98:A1:DB:DF:50:BD:CD:69:DC:C2:91:44:88:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3f2U67jLmKHb31C9zWncwpFEiJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/a6f506-6948-4cef-8548-c93c1ee898be/1/WMGOzGLsfOgHtSYqFXnMGqSU-JU.roa
Signing time: Tue 26 Apr 2022 15:13:39 +0000
ROA not before: Tue 26 Apr 2022 15:13:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 194.56.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92643 (0x169e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddfd94ebb8cb98a1dbdf50bdcd69dcc29144889e
Validity
Not Before: Apr 26 15:13:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58c18ecc62ec7ce807b5262a1579cc1aa494f895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:eb:7b:ed:03:10:4e:82:c7:3f:5f:45:08:b6:
d7:ee:b9:bd:2b:53:3d:65:44:66:44:03:a9:24:73:
95:2a:28:bc:50:07:3b:12:b2:c1:20:cd:ce:47:f8:
60:7f:bd:f5:76:60:c3:29:e9:8b:7e:d0:33:d4:1f:
e8:10:b9:3e:04:36:3d:09:69:cd:8b:1d:5e:d5:5e:
b4:91:a7:1f:7c:09:c3:77:c7:cd:28:76:79:aa:b2:
11:9a:39:32:f8:ac:f2:15:f0:27:e8:6d:55:71:18:
76:ab:d8:a3:84:4f:3c:68:57:e6:81:5a:33:f3:8b:
91:6b:6c:a6:35:35:22:9d:00:f8:c7:b4:1e:15:89:
92:1d:2f:16:ab:d7:96:fb:53:6b:fc:d8:f4:4d:39:
ca:ea:a9:7b:bb:c8:71:84:3e:a4:a0:ac:4f:54:77:
52:b5:2b:01:11:8c:7d:b9:95:65:85:cc:42:0c:c4:
64:04:51:e5:e2:86:f4:ad:bd:13:a2:44:c8:09:f3:
bb:91:4b:26:ba:37:35:0e:42:79:c3:6e:6c:94:2f:
f8:29:b7:c7:ad:56:52:7b:b6:6c:50:54:16:75:65:
ae:ca:2b:74:08:3d:3e:3d:f6:3d:5d:1c:9a:e9:7d:
4a:6a:4c:b6:cd:4f:d5:f6:95:f1:37:a3:6a:c3:26:
bc:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:C1:8E:CC:62:EC:7C:E8:07:B5:26:2A:15:79:CC:1A:A4:94:F8:95
X509v3 Authority Key Identifier:
keyid:DD:FD:94:EB:B8:CB:98:A1:DB:DF:50:BD:CD:69:DC:C2:91:44:88:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f2U67jLmKHb31C9zWncwpFEiJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a6f506-6948-4cef-8548-c93c1ee898be/1/WMGOzGLsfOgHtSYqFXnMGqSU-JU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a6f506-6948-4cef-8548-c93c1ee898be/1/3f2U67jLmKHb31C9zWncwpFEiJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.127.0/24
Signature Algorithm: sha256WithRSAEncryption
56:0e:99:06:4e:a5:d1:f6:48:28:1e:b9:5d:bc:df:1c:1d:f0:
e2:58:c4:16:8f:f3:0d:89:1d:10:b0:09:ec:aa:3c:d6:85:27:
ac:04:9f:13:be:0a:79:f0:56:4a:a1:72:15:82:75:c3:02:59:
68:f2:64:55:b3:72:f6:98:ef:f3:3f:5a:e5:5c:62:f5:39:06:
fd:cf:b6:4e:00:3c:78:09:e9:77:85:2f:65:c2:3b:67:e1:cf:
64:df:49:8f:0c:d7:3f:cd:ed:7e:85:8d:03:e3:1b:c2:38:89:
d2:1d:c5:0b:43:00:1e:81:64:05:02:00:a7:81:de:14:76:eb:
75:f2:4e:fb:eb:83:dd:16:fd:4e:c6:0c:21:ad:22:3a:35:b5:
8d:e7:80:99:5d:5b:0f:64:a5:f5:d2:3e:2a:8b:20:c6:f9:4e:
e4:0e:d1:5d:f8:d8:a0:a4:2d:f1:1e:97:6f:fd:19:93:b6:83:
ab:22:40:74:4d:df:83:d8:96:36:8b:df:99:25:c3:43:1e:7c:
83:5e:e3:35:90:aa:45:eb:9f:34:83:d7:48:f5:58:bd:bc:66:
d9:26:27:a0:62:2a:76:12:4e:bf:c1:11:9d:81:e0:94:1c:41:
13:e3:45:7a:4d:20:16:ae:51:26:1f:14:eb:08:a3:1b:f4:3f:
c3:d8:fe:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:31 2023 by rpki-client on console-fra.rpki-client.org