Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/WLKq0xcpWR7eXmoErTHuPTPcW5U.roa
File: WLKq0xcpWR7eXmoErTHuPTPcW5U.roa (raw, json)
Hash identifier: cN78q35GVEGE2SMadYyMQkuIUyRUO3OOtJ2mLRNjDFM=
Subject key identifier: 58:B2:AA:D3:17:29:59:1E:DE:5E:6A:04:AD:31:EE:3D:33:DC:5B:95
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 01851130E0E48D55BB59792FFA03AA41BFE7
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/WLKq0xcpWR7eXmoErTHuPTPcW5U.roa
Signing time: Wed 14 Dec 2022 15:11:33 +0000
ROA not before: Wed 14 Dec 2022 15:11:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 85.208.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:11:30:e0:e4:8d:55:bb:59:79:2f:fa:03:aa:41:bf:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Dec 14 15:11:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58b2aad31729591ede5e6a04ad31ee3d33dc5b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:77:89:27:90:24:c7:cd:f1:eb:37:ce:75:4d:
7a:bf:ec:07:10:0a:e0:d6:f0:1c:af:29:8e:82:be:
31:d9:26:56:23:52:10:9f:39:4c:47:8b:8a:a9:7e:
1a:56:8e:69:c3:9f:88:fd:82:b8:8d:2d:6a:31:d7:
37:af:c1:79:0b:c9:7e:ec:60:53:f1:f8:51:fa:df:
69:d1:cc:13:61:ce:a1:01:fb:12:91:3b:54:7a:43:
2a:d2:9f:53:71:61:5f:47:47:28:af:32:6d:09:e0:
66:c8:91:81:a9:55:71:5a:84:a6:f0:9b:42:2c:62:
49:7e:2b:fc:64:a9:7b:d1:4f:cd:0d:73:8b:e3:1e:
24:59:fd:7f:51:10:d0:64:fa:62:6c:a2:79:37:f0:
3f:f3:2d:dd:1c:7e:d0:78:13:a6:be:31:47:eb:71:
6d:90:4a:95:1d:4f:82:a4:2a:37:a8:6f:0a:76:6f:
3a:7d:37:5e:a0:43:c9:6f:9a:84:a8:a9:62:4a:f3:
a9:db:dd:f4:11:f0:e1:f8:6f:0c:9b:c7:6b:1f:3b:
5d:f1:8f:ec:3b:b4:be:93:bb:74:cd:70:d2:43:98:
cc:fb:e8:4f:a7:a2:1e:68:14:b0:fa:b1:9c:d4:a6:
21:90:98:e7:45:4e:ed:f6:59:34:d7:42:62:ee:7d:
67:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B2:AA:D3:17:29:59:1E:DE:5E:6A:04:AD:31:EE:3D:33:DC:5B:95
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/WLKq0xcpWR7eXmoErTHuPTPcW5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.47.0/24
Signature Algorithm: sha256WithRSAEncryption
02:04:dd:38:84:eb:bd:df:45:e4:b5:9f:da:d8:f5:4a:82:5d:
62:55:c2:e8:f5:32:d4:ae:f5:c2:46:52:9a:da:3c:cf:de:b1:
fd:1e:03:fe:7f:be:46:62:21:3a:58:81:d5:a6:b2:b8:b3:ec:
5f:db:4e:5e:12:4b:ec:5f:dc:a4:1f:f4:93:20:59:81:f9:3d:
d9:d3:21:9f:81:cd:7d:56:b4:46:46:15:4e:6b:4c:fb:2e:b9:
d6:f0:89:10:23:5b:52:43:8d:1f:a4:35:0b:d9:63:7f:63:c8:
81:68:e1:76:25:02:74:dc:53:07:75:84:9d:04:10:bc:d9:8e:
c4:3a:d1:c7:33:06:e7:13:90:de:66:4f:71:ea:17:ab:f3:78:
05:92:82:ce:00:71:45:a0:0d:6a:2a:cb:be:06:08:3c:1c:18:
82:44:99:c6:a6:ea:c2:46:58:1c:ca:f2:2e:0b:a7:79:81:3b:
77:2a:fa:f7:c1:3c:c2:ab:c3:ec:55:78:4e:20:fa:a6:46:78:
89:c9:69:6c:eb:3d:43:27:d2:60:2d:d7:f3:c2:7b:14:1b:c2:
29:e3:a6:e9:b3:30:0b:8c:3d:11:ce:f9:cc:d1:37:8a:13:3c:
84:6b:42:b2:4b:90:ab:90:68:48:81:07:d3:73:02:c6:91:62:
cf:fd:62:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:51 2023 by rpki-client on console-ams.rpki-client.org