Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/wLucEMQp9WInz65FWkCH129gLcE.roa
File: wLucEMQp9WInz65FWkCH129gLcE.roa (raw, json)
Hash identifier: zH77DyIXS9uNrxfUQbPPpBRjGxE7JEiDTqdtUt73oG4=
Subject key identifier: C0:BB:9C:10:C4:29:F5:62:27:CF:AE:45:5A:40:87:D7:6F:60:2D:C1
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 01840E42DC97729005296FC3803E780CBED8
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/wLucEMQp9WInz65FWkCH129gLcE.roa
Signing time: Tue 25 Oct 2022 08:29:33 +0000
ROA not before: Tue 25 Oct 2022 08:29:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 91.228.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:42:dc:97:72:90:05:29:6f:c3:80:3e:78:0c:be:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Oct 25 08:29:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0bb9c10c429f56227cfae455a4087d76f602dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9a:46:3b:3d:0c:5a:d1:35:0f:d9:f7:f7:55:
a2:22:33:4e:f6:81:5f:de:5c:4c:e5:66:55:4f:8b:
07:e6:93:f5:62:dc:5e:1f:81:ab:eb:09:bb:a9:c4:
5b:3a:b2:e4:eb:24:c0:ce:0e:15:68:86:ce:ae:bd:
02:28:1f:a2:8c:22:a8:83:66:1b:ff:a0:21:b4:b0:
42:f2:ef:0e:f3:3b:12:2b:5e:32:7b:5c:9c:a1:f4:
27:3c:d3:46:4f:e8:03:2a:a3:92:f4:99:ad:bd:71:
6a:06:7f:e1:7b:34:19:bf:db:72:b8:71:c1:11:cd:
2c:e8:36:a0:75:cf:cc:16:7d:12:10:11:d7:bb:6b:
8f:4c:46:bd:ce:22:8b:7a:09:31:d9:66:57:25:cf:
41:8f:16:e1:d4:74:1b:75:f2:03:ff:1e:f6:41:f0:
19:72:ba:d4:c9:f2:6b:d6:99:9c:18:33:ef:32:4d:
7c:f8:d9:ca:ec:2d:e4:be:07:6c:95:14:87:8e:11:
4b:68:1e:61:72:23:5d:57:b6:7b:3b:bd:55:9d:27:
d2:01:13:dd:81:49:7c:f2:0e:6d:cc:74:62:85:54:
f1:f7:5d:0b:93:71:ff:8c:23:a2:61:c2:08:87:d2:
d4:ab:d3:7c:c3:61:4c:7c:83:d3:65:e6:4a:14:33:
4e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:BB:9C:10:C4:29:F5:62:27:CF:AE:45:5A:40:87:D7:6F:60:2D:C1
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/wLucEMQp9WInz65FWkCH129gLcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.12.0/24
Signature Algorithm: sha256WithRSAEncryption
64:a0:cb:b8:68:68:b9:1d:1c:f2:b5:e6:98:e5:71:0a:97:a0:
c2:98:0b:57:6d:23:14:48:61:90:87:82:52:ba:4e:c7:d7:40:
47:63:ff:ba:2e:06:0a:b1:62:b2:d5:6b:a6:2b:85:57:38:a5:
e6:69:1a:75:20:1c:c9:21:26:04:fb:64:29:6a:f9:63:bf:cf:
d6:47:60:d0:48:50:cd:ca:e3:fc:ca:28:a9:5d:a0:45:b2:8a:
61:0d:66:29:8f:e1:2d:e3:f0:bb:5f:67:22:25:d8:65:61:00:
3c:c4:d1:8b:9f:db:1b:f3:98:35:96:55:38:34:79:97:e9:28:
11:ea:1b:5b:41:59:8d:74:88:c2:34:fe:f1:a8:99:35:aa:a5:
5d:91:94:a5:a2:fb:12:9a:5e:e5:87:42:b7:8a:62:a4:96:a4:
06:aa:cd:5f:26:31:0a:33:0d:ce:90:06:86:79:6b:f3:75:ec:
13:c8:4b:90:62:5d:b6:04:a7:38:d0:be:f5:27:80:f9:4f:0f:
70:65:f5:61:0e:76:70:b3:2f:71:72:18:fe:83:dd:00:94:6e:
17:98:03:5b:84:9d:a0:fa:e4:fb:40:25:87:8f:d2:9a:f4:1e:
9b:81:54:01:31:9a:d5:51:43:dc:46:1c:93:b2:2b:35:5b:80:
b8:b9:d1:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:52 2023 by rpki-client on console-ams.rpki-client.org