Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/WgwH5OvzFkQf9z7I799s9Di2L9w.roa
File: WgwH5OvzFkQf9z7I799s9Di2L9w.roa (raw, json)
Hash identifier: r6vWFcDkHLv8H57MJQGEeZtT6diWBlO0EvS+5kKmk5I=
Subject key identifier: 5A:0C:07:E4:EB:F3:16:44:1F:F7:3E:C8:EF:DF:6C:F4:38:B6:2F:DC
Certificate issuer: /CN=992b86095ce558d2e9618728a44228a27be9098f
Certificate serial: 06076C7B
Authority key identifier: 99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/WgwH5OvzFkQf9z7I799s9Di2L9w.roa
Signing time: Sat 01 Jan 2022 10:58:45 +0000
ROA not before: Sat 01 Jan 2022 10:58:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35077
IP address blocks: 45.13.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101149819 (0x6076c7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=992b86095ce558d2e9618728a44228a27be9098f
Validity
Not Before: Jan 1 10:58:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a0c07e4ebf316441ff73ec8efdf6cf438b62fdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:dc:a8:f1:f4:17:7c:9c:1d:a4:1c:84:73:96:
8a:20:f0:c0:5f:5f:6e:32:22:7c:70:76:07:0a:8b:
76:83:e7:db:71:3f:e5:97:95:3c:c2:d7:65:ac:e7:
9a:98:04:28:fd:bc:9a:6b:08:a7:b4:33:08:75:be:
02:82:cd:81:08:db:3c:61:41:74:94:93:f0:44:f3:
e6:af:ca:47:aa:80:63:34:56:fd:02:f0:22:75:f5:
07:6d:64:7b:6a:7f:38:bd:9b:2e:6f:53:8d:da:6c:
38:24:b7:cc:eb:d7:d1:29:16:8e:1b:b8:e2:5f:1c:
38:62:88:ff:22:22:93:bb:13:d3:5d:80:f5:a7:41:
99:c1:98:fb:76:93:55:fc:31:d6:45:47:06:1e:a4:
f6:81:6e:f8:dd:2a:07:dd:cd:88:b5:7d:47:54:d8:
fc:19:fe:d1:95:44:80:a8:dc:2c:b2:12:ce:b3:b7:
25:5f:26:07:e4:7b:df:71:3a:e9:48:c3:da:5b:54:
ae:68:ac:75:44:81:6d:18:aa:71:54:0e:35:74:f3:
94:15:27:b4:8a:1f:db:81:a4:30:5b:c8:70:bc:4b:
9d:6c:cb:b7:12:2b:09:16:e0:75:dc:9c:7a:0e:10:
14:95:58:47:1c:da:0b:31:24:66:21:61:8c:6c:ba:
0d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:0C:07:E4:EB:F3:16:44:1F:F7:3E:C8:EF:DF:6C:F4:38:B6:2F:DC
X509v3 Authority Key Identifier:
keyid:99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/WgwH5OvzFkQf9z7I799s9Di2L9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/mSuGCVzlWNLpYYcopEIoonvpCY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.32.0/22
Signature Algorithm: sha256WithRSAEncryption
38:4f:93:a9:25:40:5c:d6:4c:c9:e6:e0:28:41:e1:88:3a:77:
3b:06:56:95:17:cd:05:03:88:34:89:60:d4:63:bd:d0:f8:df:
07:b5:4a:c5:5b:e8:84:f9:d7:f4:6c:ae:73:ad:2e:d8:79:7d:
da:2e:da:48:9b:4c:d6:a3:51:ea:ae:41:16:09:38:22:04:b8:
b4:15:f1:ed:0b:ce:c2:13:91:a6:41:2f:a9:ec:20:c5:5c:ee:
dc:ed:a7:df:fa:a1:8e:32:76:e9:ae:fa:b8:f3:51:19:53:d6:
3c:90:b5:c9:b1:8e:57:af:62:ce:f1:89:d5:96:0d:bc:11:90:
b7:3a:aa:f5:4d:9c:55:e9:dd:f1:bb:73:92:bd:e2:b8:44:57:
c6:44:03:53:16:b1:0b:ef:e9:5c:20:34:d1:ac:38:71:36:23:
95:e0:86:9b:15:d0:ff:b0:03:2f:7a:f4:31:69:9f:01:c6:c6:
d2:6f:b8:97:63:4c:2c:fc:2e:3b:8a:ff:a0:55:3b:61:87:a1:
17:88:71:e5:97:d9:45:de:45:57:e6:c0:db:c9:91:4a:98:c9:
17:de:19:78:84:86:62:d2:aa:e6:43:07:22:c3:a8:4e:3c:e2:
a5:1b:72:2e:a4:c3:7c:f1:5e:3b:cc:ac:be:48:d2:05:4b:97:
ec:ad:13:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:43 2023 by rpki-client on console-fra.rpki-client.org