Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/WKdM9Y6gFGvYZfjgUvwY5kbvqIs.roa
File: WKdM9Y6gFGvYZfjgUvwY5kbvqIs.roa (raw, json)
Hash identifier: 1oCs9LISZymEcdMNAfazAz35K1adJlbCB0LFSAFs4Hs=
Subject key identifier: 58:A7:4C:F5:8E:A0:14:6B:D8:65:F8:E0:52:FC:18:E6:46:EF:A8:8B
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 0218ECF0
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/WKdM9Y6gFGvYZfjgUvwY5kbvqIs.roa
Signing time: Sat 01 Jan 2022 05:58:33 +0000
ROA not before: Sat 01 Jan 2022 05:58:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23352
IP address blocks: 81.199.24.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35187952 (0x218ecf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Jan 1 05:58:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58a74cf58ea0146bd865f8e052fc18e646efa88b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:1e:99:ef:ac:0a:61:7f:30:19:51:26:ec:f2:
16:1b:6a:ca:0e:cf:97:7e:cf:0d:01:f1:d7:85:df:
86:48:f2:6e:ae:9c:e2:5e:56:6d:39:f6:4f:1d:f7:
18:e7:b9:0b:d7:11:48:da:b1:d0:c5:c3:cd:f2:26:
96:a6:d3:2f:73:fe:50:78:8f:2d:f0:3a:f7:56:22:
63:2f:3d:c6:f1:d8:eb:4d:5a:16:6d:e3:0d:60:68:
a3:eb:fb:2e:40:e9:d7:d1:ed:cf:2b:d4:f9:cf:22:
f6:69:d7:56:3e:7b:d1:2d:12:e5:54:fb:1d:51:b4:
77:47:66:27:58:94:38:12:7a:48:b2:54:6c:fd:67:
10:84:47:87:74:47:c0:12:a6:de:2e:91:09:39:84:
45:b7:ef:10:5e:f1:9f:ce:13:21:16:4d:dc:9f:a0:
e5:61:12:f5:85:6d:a6:f3:4d:20:c6:f9:8a:af:c5:
a8:6e:f8:31:2c:b2:50:a7:b8:dd:5b:50:b2:e8:69:
7f:09:83:c8:51:c5:8e:ea:84:3c:41:60:d9:7c:81:
59:88:d6:9f:23:28:d2:a0:9d:39:d9:ef:36:38:50:
89:f0:f2:a7:62:55:52:58:85:54:8b:d3:63:c4:39:
bd:e7:3c:04:7c:1f:a0:e3:54:6d:fd:33:d8:0c:de:
34:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A7:4C:F5:8E:A0:14:6B:D8:65:F8:E0:52:FC:18:E6:46:EF:A8:8B
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/WKdM9Y6gFGvYZfjgUvwY5kbvqIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.24.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:7c:21:fb:d3:29:dc:75:99:c8:36:e5:04:72:40:87:c0:fa:
e2:d6:ef:50:37:44:25:ba:7a:cc:ce:dc:a7:44:4f:27:30:52:
42:46:91:b2:00:56:83:19:a4:a5:e6:f9:1d:cd:f5:31:77:25:
9c:96:17:77:98:e2:00:06:19:15:1f:ad:09:a1:19:89:c4:23:
e1:c8:72:ea:61:bd:68:24:1a:89:2f:03:78:77:b1:7d:b5:10:
76:ef:da:fc:58:1a:b1:23:21:f6:bc:3a:ea:12:b2:29:c2:79:
d6:35:99:25:1b:93:39:16:44:0d:83:8d:b5:9a:3f:a3:a2:68:
df:4c:6e:58:17:7d:e2:b0:9d:7e:a8:d2:2e:9a:5f:ea:1f:24:
ec:1a:f9:9a:25:f8:17:e2:b6:32:53:95:63:fa:aa:a4:0d:f7:
ce:14:00:5c:15:62:69:99:d7:ad:10:ee:8f:20:b5:1f:dc:5c:
26:68:aa:e3:e3:af:6a:6e:9c:1c:87:57:22:3a:cd:48:9b:f7:
92:02:66:1c:b2:0d:85:e2:2d:c7:fb:f2:06:12:9e:87:33:b9:
e4:31:7b:66:f2:3d:9b:5b:e2:64:e4:9d:c7:ef:18:05:ed:d0:
37:7f:da:22:04:2c:8d:ca:5d:3f:f1:4f:42:2c:c4:6e:be:8e:
1d:b9:9c:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:32 2023 by rpki-client on console-ams.rpki-client.org