Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/WJTgv8U_S2pbJwzLDSx9LiFDAYM.roa
File: WJTgv8U_S2pbJwzLDSx9LiFDAYM.roa (raw, json)
Hash identifier: Z7f0AhaGBnF5SJOhWMh3QRjkoIjRqgMxJcGQC2jaHC0=
Subject key identifier: 58:94:E0:BF:C5:3F:4B:6A:5B:27:0C:CB:0D:2C:7D:2E:21:43:01:83
Certificate issuer: /CN=ff7d8a79bad4f983d0c49895af50ea8a03ebc70d
Certificate serial: 0117B6
Authority key identifier: FF:7D:8A:79:BA:D4:F9:83:D0:C4:98:95:AF:50:EA:8A:03:EB:C7:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/WJTgv8U_S2pbJwzLDSx9LiFDAYM.roa
Signing time: Wed 18 May 2022 11:14:40 +0000
ROA not before: Wed 18 May 2022 11:14:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43641
IP address blocks: 37.16.75.0/24 maxlen: 24
91.202.4.0/23 maxlen: 24
31.42.176.0/23 maxlen: 24
2a11:6101::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71606 (0x117b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff7d8a79bad4f983d0c49895af50ea8a03ebc70d
Validity
Not Before: May 18 11:14:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5894e0bfc53f4b6a5b270ccb0d2c7d2e21430183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ea:ea:e4:b8:a2:42:74:0a:cf:f1:a7:59:27:
1a:0f:8a:51:ac:e8:c3:ed:43:58:03:50:da:5f:97:
84:57:93:3b:8b:1c:8b:49:4d:d6:42:69:7e:ad:22:
0e:19:e5:87:e7:ee:b1:c5:74:cf:18:60:40:04:1f:
a5:b8:26:31:d2:d8:4b:1a:5d:8e:85:d0:6d:7b:76:
b6:b6:f6:f0:dd:53:82:95:6f:57:c7:bf:77:f9:d2:
b8:54:64:61:33:95:59:64:ce:6f:13:b4:e6:b3:6c:
f0:a1:5b:8a:44:96:b9:3f:f6:9e:90:33:fc:85:1e:
1e:b6:9e:df:15:2b:21:9f:3b:7c:05:6a:b3:43:92:
02:ee:0e:75:68:a5:00:9f:7d:07:08:34:33:35:3f:
59:3d:3c:e7:63:23:3b:1b:9a:80:76:47:bf:88:23:
5e:0e:63:b4:c7:97:36:9b:17:5e:a5:15:b3:a0:fb:
b0:54:3f:89:52:9a:7d:92:1b:b9:95:e6:1f:ef:a2:
f7:1b:32:be:5c:8a:08:f7:e4:15:39:db:97:8f:0d:
20:af:11:20:a7:5a:55:b4:a3:06:1b:ba:0c:b4:61:
ea:7b:8a:7c:73:cf:6b:ed:9d:8b:d1:ad:0e:e2:4a:
a5:98:47:6b:74:32:c2:d0:2a:70:d9:3b:26:1f:55:
bf:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:94:E0:BF:C5:3F:4B:6A:5B:27:0C:CB:0D:2C:7D:2E:21:43:01:83
X509v3 Authority Key Identifier:
keyid:FF:7D:8A:79:BA:D4:F9:83:D0:C4:98:95:AF:50:EA:8A:03:EB:C7:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/WJTgv8U_S2pbJwzLDSx9LiFDAYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.176.0/23
37.16.75.0/24
91.202.4.0/23
IPv6:
2a11:6101::/32
Signature Algorithm: sha256WithRSAEncryption
91:b9:8b:8f:45:22:28:50:bf:ff:ad:f5:cd:f4:ef:03:cd:be:
1a:a1:66:83:2b:05:7f:d3:db:7e:a8:e9:c0:df:5e:c1:50:27:
bd:a4:c7:e5:14:e1:c4:87:ce:21:ef:b9:a6:01:20:dd:d2:13:
ae:3c:fc:dc:e2:e6:1a:32:02:e6:a6:6e:ae:d7:ff:d8:e8:f5:
57:32:86:ef:2a:ae:e8:9a:fe:7f:d3:52:d6:63:dc:db:f2:ef:
c7:b4:cf:af:89:b8:0f:ae:b9:1e:ee:61:70:5c:b4:73:9f:8f:
ff:3b:21:fc:0c:d8:ba:a3:de:b4:a1:2f:34:4b:69:c1:17:38:
8e:24:01:dd:f7:ea:1e:71:ff:54:f0:14:9c:73:28:93:9b:74:
a7:73:0d:90:1e:17:55:76:5d:09:9c:56:48:19:a7:bb:b6:b2:
1d:38:2d:20:c8:ad:3d:49:1d:78:74:ad:dd:c5:ba:91:15:6e:
0b:09:6d:45:8f:29:5b:79:80:b0:15:30:b4:35:e2:15:3d:fb:
dd:4b:0f:0c:12:95:60:6f:03:81:6d:21:86:5c:13:48:67:98:
48:e8:6f:17:23:88:7d:7a:59:9d:82:c2:b9:05:84:12:0c:9e:
cb:9f:94:eb:ea:a4:11:36:f8:c9:b7:15:36:6b:6c:79:f4:f8:
d7:f0:67:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:02 2024 by rpki-client on console-ams.rpki-client.org