Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WPJ5XUJ25jiA56G-D-f2WCS6tNI.roa
File: WPJ5XUJ25jiA56G-D-f2WCS6tNI.roa (raw, json)
Hash identifier: wGSmo4HVkGZ0d7NabUoB+S9xW4UBv2neAvPhbfTbBAo=
Subject key identifier: 58:F2:79:5D:42:76:E6:38:80:E7:A1:BE:0F:E7:F6:58:24:BA:B4:D2
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 013E86DF
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WPJ5XUJ25jiA56G-D-f2WCS6tNI.roa
Signing time: Sat 01 Jan 2022 01:00:13 +0000
ROA not before: Sat 01 Jan 2022 01:00:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210890
IP address blocks: 2a0c:b641:220::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20874975 (0x13e86df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58f2795d4276e63880e7a1be0fe7f65824bab4d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ad:b5:1d:61:16:36:9e:37:86:b4:61:a6:74:
f5:1c:13:75:58:19:81:ce:ca:9e:a5:09:36:99:84:
77:93:5c:0f:d1:ac:b4:65:99:ab:1e:3e:ab:f9:c6:
2b:bd:89:aa:55:60:3a:67:3b:53:9c:17:e9:77:fc:
6f:df:74:84:21:01:ce:78:49:b3:ea:aa:8a:85:b0:
b7:53:c2:90:da:62:85:72:c5:31:cd:b1:2b:f3:85:
bb:c5:68:72:c5:a1:36:f5:16:56:d7:b1:04:9d:d8:
9c:98:19:18:0d:2d:e2:fc:7b:ba:43:d9:54:63:34:
36:35:8c:54:91:ee:44:9b:11:06:5c:58:f5:51:3b:
e8:cb:6a:48:05:f5:12:0c:98:fa:8a:d8:fa:26:c4:
70:61:aa:27:a3:03:4c:81:fe:7b:47:c9:c4:71:1d:
b9:38:52:f6:3b:64:66:0d:8e:64:21:9f:45:d0:8c:
25:e1:76:03:8c:94:7a:e1:4f:eb:72:e4:c2:01:de:
6f:0d:ee:e6:1e:6b:19:2b:c7:13:96:01:9f:f4:21:
7f:c5:b3:59:41:db:4b:8c:b7:9b:51:93:5b:ac:68:
f0:f6:8d:c3:ec:33:5b:30:16:13:1e:84:33:2d:51:
98:6a:e7:ea:c5:eb:db:bd:3a:ad:e2:ba:f1:1c:1a:
73:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F2:79:5D:42:76:E6:38:80:E7:A1:BE:0F:E7:F6:58:24:BA:B4:D2
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WPJ5XUJ25jiA56G-D-f2WCS6tNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:220::/44
Signature Algorithm: sha256WithRSAEncryption
0f:c2:b5:3b:e4:67:3c:72:25:66:99:3a:8e:04:43:40:43:2c:
c8:db:2a:f5:f4:d9:bc:c4:f1:96:75:fc:27:40:e0:fb:3f:89:
da:63:83:d4:7e:29:63:da:28:5c:db:d8:57:dc:6b:3f:4f:3c:
f6:de:c4:a5:19:1a:a9:a7:25:11:7a:36:46:f6:ae:bc:91:df:
f0:8a:54:48:b4:44:a5:27:81:ea:05:0d:b3:64:11:31:03:09:
60:43:bb:7b:bd:f0:9b:41:b1:91:cc:32:0f:cc:0e:27:7e:01:
89:25:28:b1:ed:22:0c:15:25:51:e6:d1:90:4d:46:9b:3b:4c:
e3:f3:f6:85:55:76:c1:76:e2:a2:b9:42:f9:96:d0:0e:6e:2a:
f0:c8:db:3e:78:60:f0:e8:39:f4:5d:1a:fb:2f:20:6a:b5:8e:
b4:fa:ed:7e:7c:8a:71:db:d1:f2:d7:3d:04:c4:1b:40:4c:7e:
c4:ff:ba:1d:99:90:28:ba:5a:ac:11:02:6a:2b:99:eb:f7:ba:
84:ff:3b:48:3a:94:bd:99:b6:ff:89:74:f8:ff:a5:4a:dd:dc:
7c:9c:29:7f:26:2a:1f:4e:32:5d:a4:31:5c:60:d7:3c:56:76:
1e:e8:1e:90:b1:8c:7c:ad:7b:6d:65:5f:d7:9a:6c:d6:12:5f:
6e:fe:92:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org