Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/WvSEzBn9FC2CPX6uw4zt8zS32xM.roa
File: WvSEzBn9FC2CPX6uw4zt8zS32xM.roa (raw, json)
Hash identifier: NBe6iQlbCljb0kOBxgtQKKgBhF+TWrtzdZencieNJAg=
Subject key identifier: 5A:F4:84:CC:19:FD:14:2D:82:3D:7E:AE:C3:8C:ED:F3:34:B7:DB:13
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 018444540EA2F248BDFE22D8967A45BC67BA
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/WvSEzBn9FC2CPX6uw4zt8zS32xM.roa
Signing time: Fri 04 Nov 2022 20:27:50 +0000
ROA not before: Fri 04 Nov 2022 20:27:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 212.116.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:44:54:0e:a2:f2:48:bd:fe:22:d8:96:7a:45:bc:67:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Nov 4 20:27:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5af484cc19fd142d823d7eaec38cedf334b7db13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e9:3b:51:ab:11:d4:cf:af:52:8c:3a:c6:f4:
0d:03:99:5a:39:a2:f0:99:97:39:00:2d:bd:12:49:
ac:7f:16:c5:d0:ce:57:8e:8e:cb:01:9a:84:53:8b:
70:c1:99:e8:2a:0b:9a:dc:00:22:ae:d7:59:38:aa:
23:e8:a0:07:b8:39:22:09:7b:ad:a6:97:81:97:ae:
4e:7f:b9:ea:cc:a1:b2:83:94:23:21:12:6d:06:85:
6d:53:5f:ba:ea:4e:87:8b:8c:1d:1a:9d:8a:df:54:
2f:2c:7a:b5:56:01:79:76:34:cd:45:01:83:0a:61:
32:6b:96:02:3e:79:dc:1c:00:77:1f:3d:0d:ea:f6:
8f:01:32:06:63:e9:60:81:7f:0d:6f:7c:ca:9a:f1:
59:cb:1c:1e:30:e2:7d:c9:26:cd:9c:46:27:37:a4:
fd:73:50:11:92:f8:6d:05:94:28:f6:c4:37:91:3d:
85:a5:be:4f:f0:74:0b:32:8c:f6:3a:79:d1:83:28:
73:7b:63:0e:0d:95:a9:62:bb:01:a8:83:b0:f6:0f:
6a:ad:e6:87:e1:d5:8c:65:da:e5:49:77:fb:3f:6f:
71:24:84:9d:09:63:21:3a:9c:2a:5a:e2:a8:6d:12:
14:08:06:36:ab:51:e4:68:0c:b0:66:1f:b0:82:a2:
32:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:F4:84:CC:19:FD:14:2D:82:3D:7E:AE:C3:8C:ED:F3:34:B7:DB:13
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/WvSEzBn9FC2CPX6uw4zt8zS32xM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.116.245.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:24:5b:c9:cf:a5:a6:4f:77:d5:f1:25:46:d8:72:6d:f1:19:
e6:62:18:73:47:c6:99:7d:4b:36:0e:13:e4:96:5a:ec:1b:bd:
e5:84:72:77:f9:5b:47:ff:10:ca:d9:b2:73:ac:b7:83:52:49:
86:30:b1:8f:51:74:93:84:e8:8a:76:66:15:08:b6:03:28:2d:
5e:e8:7d:43:25:b4:24:eb:70:a0:94:3a:ed:ea:3c:8f:c7:e2:
28:68:d5:06:06:e8:0a:fa:f4:c1:0d:8b:ca:db:32:39:db:0f:
b0:0a:26:e8:5e:6a:bb:a7:68:76:a7:b0:e7:f4:dc:f9:b9:69:
7c:6c:65:21:3a:df:34:96:a3:eb:dc:34:1d:2f:62:e9:60:0c:
05:95:d4:c9:9f:bd:a0:4f:e8:6f:c3:e5:36:a8:62:dd:c3:6c:
b0:10:9b:06:1d:8c:95:9b:46:4e:a8:e9:7c:fd:01:5b:96:30:
f5:e9:43:03:2f:07:34:e0:a9:52:e7:05:bc:a9:40:3d:71:23:
fd:c6:75:80:53:f6:c1:16:66:b4:5d:21:76:5c:be:ef:e0:ac:
22:15:9e:d3:9a:61:12:db:b3:9c:ca:d8:e7:b3:b4:45:2d:e7:
f1:4d:b0:30:9f:4d:95:62:93:2c:fb:1e:e0:bb:18:4f:22:48:
ac:57:37:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:10 2023 by rpki-client on console-fra.rpki-client.org