Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/WZrcou-uKcVpC5H2mLBSpndCE9o.roa
File: WZrcou-uKcVpC5H2mLBSpndCE9o.roa (raw, json)
Hash identifier: I8Mf7qDTFp1TNg1n+gJtUUtHLvqjsH2leIHNotRnmz4=
Subject key identifier: 59:9A:DC:A2:EF:AE:29:C5:69:0B:91:F6:98:B0:52:A6:77:42:13:DA
Certificate issuer: /CN=a0afe1fed1f2b7db24a0c2d1f61010684e93cbd5
Certificate serial: 38305A38
Authority key identifier: A0:AF:E1:FE:D1:F2:B7:DB:24:A0:C2:D1:F6:10:10:68:4E:93:CB:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/WZrcou-uKcVpC5H2mLBSpndCE9o.roa
Signing time: Sat 01 Jan 2022 04:57:37 +0000
ROA not before: Sat 01 Jan 2022 04:57:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200621
IP address blocks: 188.214.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 942692920 (0x38305a38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0afe1fed1f2b7db24a0c2d1f61010684e93cbd5
Validity
Not Before: Jan 1 04:57:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=599adca2efae29c5690b91f698b052a6774213da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a5:b0:03:84:6b:a5:ce:e2:59:ca:72:c3:da:
49:40:26:99:94:26:c7:b5:6a:6a:2d:78:e2:1f:b4:
d0:4a:8b:52:c5:86:77:9f:f0:37:89:90:92:a0:3b:
9a:1c:73:1c:8a:67:5e:99:4c:88:20:ac:1f:bb:26:
b0:a4:69:0d:e6:64:0e:b9:72:f1:52:98:8e:5b:bb:
e5:99:b3:f1:1a:59:15:66:26:af:f1:55:45:2b:2b:
39:5a:ef:24:40:24:68:ea:66:fb:44:f0:a1:de:e5:
06:69:50:18:6d:f5:5b:f6:a8:0e:e9:ea:96:27:c9:
39:ac:77:97:be:68:7f:9f:af:24:36:63:08:67:04:
93:0e:ab:b0:79:53:db:78:e4:73:98:f9:57:c4:11:
b4:79:8f:9b:af:81:88:88:ca:ab:ed:25:25:b0:21:
37:3e:65:cc:e6:88:40:9e:5d:7a:42:bb:da:87:be:
1d:6d:0f:f2:3d:90:22:a6:a3:37:f4:09:46:6c:5f:
c0:dd:4e:82:18:74:4f:d7:4f:59:48:9d:ed:df:dd:
d0:47:a3:b5:91:d5:86:73:8e:cb:b2:9d:c9:0d:bd:
b1:c1:c6:12:33:b5:28:cd:a7:90:ed:43:e5:b3:2d:
1c:67:c6:75:f2:fc:7d:34:76:7b:f6:cf:12:5a:15:
62:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:9A:DC:A2:EF:AE:29:C5:69:0B:91:F6:98:B0:52:A6:77:42:13:DA
X509v3 Authority Key Identifier:
keyid:A0:AF:E1:FE:D1:F2:B7:DB:24:A0:C2:D1:F6:10:10:68:4E:93:CB:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oK_h_tHyt9skoMLR9hAQaE6Ty9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/WZrcou-uKcVpC5H2mLBSpndCE9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3202ad-7b46-422d-a4d2-eca53a7f7762/1/oK_h_tHyt9skoMLR9hAQaE6Ty9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.101.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:11:fe:64:14:c7:55:76:5a:88:54:74:71:d8:05:a2:af:a8:
7b:1f:ae:c0:04:8a:38:1d:e8:b9:d5:1f:08:b6:b4:a1:9c:38:
33:64:df:a4:c1:c3:fd:ec:e0:04:b3:6e:d2:a2:fd:d0:76:7c:
36:a1:3c:6c:28:1c:91:c4:cd:04:7d:eb:cf:fb:dd:e3:48:63:
a3:53:35:c1:25:f2:8c:cb:b4:e0:5c:bc:3e:de:91:00:85:c6:
e6:fc:b1:8d:71:e8:ab:90:eb:6c:c1:ae:1f:44:f8:b8:30:37:
d3:92:c7:b2:87:74:da:97:5a:d0:18:79:3c:60:a9:83:78:7a:
74:75:36:91:fc:a4:6a:02:a1:89:a4:49:19:03:23:55:49:5e:
bf:42:d8:55:ef:f6:a1:ea:51:82:cd:8c:2d:0e:a3:87:3a:ef:
24:d9:70:56:5a:1c:02:a4:1b:17:11:79:66:8b:de:9d:de:9d:
fc:e7:5b:e3:8b:22:23:07:bd:6f:c9:7e:48:16:2f:17:e7:cb:
93:63:90:06:9b:b7:6e:a7:98:9f:2b:ee:5d:80:f2:fc:6c:19:
24:6f:c8:40:07:9a:b6:d1:c5:fe:38:a6:21:57:0f:35:4b:00:
aa:b9:71:72:72:05:6d:3d:bd:43:ef:d3:a6:d0:55:f5:5b:c1:
8f:7c:46:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:52 2024 by rpki-client on console-ams.rpki-client.org