Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/W_p4AbBQZeDSwLbX0C8Vc2tdyJA.roa
File: W_p4AbBQZeDSwLbX0C8Vc2tdyJA.roa (raw, json)
Hash identifier: CPuMHO9Q96kOdOx1MNrLcTkKfdbYwtJAjf6lfiCiqMQ=
Subject key identifier: 5B:FA:78:01:B0:50:65:E0:D2:C0:B6:D7:D0:2F:15:73:6B:5D:C8:90
Certificate issuer: /CN=bda3d0bb422b0bca706716c20f7ad58dd2765471
Certificate serial: 05636BEB
Authority key identifier: BD:A3:D0:BB:42:2B:0B:CA:70:67:16:C2:0F:7A:D5:8D:D2:76:54:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/W_p4AbBQZeDSwLbX0C8Vc2tdyJA.roa
Signing time: Sat 01 Jan 2022 16:06:21 +0000
ROA not before: Sat 01 Jan 2022 16:06:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61415
IP address blocks: 185.7.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90401771 (0x5636beb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda3d0bb422b0bca706716c20f7ad58dd2765471
Validity
Not Before: Jan 1 16:06:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bfa7801b05065e0d2c0b6d7d02f15736b5dc890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:81:8e:27:90:96:90:36:bb:f5:e2:38:92:14:
87:a4:02:b8:15:59:fe:78:46:4f:d4:d7:15:88:09:
51:52:04:46:a7:0e:4c:43:9f:6c:c6:d9:44:60:ba:
bd:02:35:14:d0:48:6c:34:13:d6:54:11:c6:16:5f:
e0:6f:32:ac:e4:b8:ec:f7:a0:bc:54:74:93:09:a7:
8e:35:33:b8:d7:2b:2d:6c:24:55:1b:86:3c:5a:ae:
13:6b:de:99:38:a9:f9:00:8e:c8:ce:2c:ff:d9:ec:
19:d5:fa:72:a4:11:83:c0:7a:28:0f:15:ad:f0:29:
a8:1b:22:8e:a1:bb:85:3f:77:7e:1b:a6:a4:05:66:
0f:f6:bf:5b:41:86:12:b5:d7:3f:82:d4:59:91:da:
d5:95:fb:b8:4c:36:25:03:34:59:53:e0:03:0d:50:
b9:6e:d9:4a:11:89:ac:8e:6b:d6:ce:3f:e4:eb:0b:
e0:ab:d9:3f:07:e7:b2:7a:da:60:97:18:c1:e6:2b:
15:36:a8:b0:2f:2a:3f:53:45:bf:39:e0:5b:66:18:
7a:cc:9a:94:b8:92:26:0f:63:e4:8e:9d:97:d7:11:
79:7c:22:b7:81:78:d2:af:50:cb:92:df:d3:8b:72:
32:03:e4:e1:23:bc:ba:8d:cc:1f:e7:38:db:d2:e8:
ec:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:FA:78:01:B0:50:65:E0:D2:C0:B6:D7:D0:2F:15:73:6B:5D:C8:90
X509v3 Authority Key Identifier:
keyid:BD:A3:D0:BB:42:2B:0B:CA:70:67:16:C2:0F:7A:D5:8D:D2:76:54:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/W_p4AbBQZeDSwLbX0C8Vc2tdyJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.56.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:64:e6:cb:9b:7f:06:34:2f:fa:80:28:70:b8:c9:f3:c6:e3:
f5:87:f9:d7:93:6f:1e:67:bb:23:57:8e:bd:b4:01:e9:d0:58:
b2:cd:39:07:03:3a:3a:12:fb:23:b5:d9:bb:0a:a2:35:e3:a7:
0a:f5:01:51:d5:a9:60:cc:5e:ee:f8:fe:a0:12:48:43:65:68:
c6:31:e7:fc:a0:e5:f5:44:91:f5:34:84:55:38:46:86:33:df:
55:64:7e:8c:7c:e7:a0:91:dd:f3:e7:9a:77:74:d4:ef:0c:42:
b3:31:e0:a6:67:e0:48:64:a2:5e:82:da:41:c2:9f:9d:3a:7e:
37:20:12:39:66:3e:3b:8b:56:bd:dd:f2:83:7e:6d:c7:00:b2:
28:91:84:63:9e:e6:81:ab:3a:bb:fb:79:b4:cf:82:8c:55:9c:
15:87:ef:e7:86:a4:e2:ee:11:1e:a3:eb:1d:b3:6a:8e:fd:80:
b1:b0:9d:81:29:2f:64:fc:8f:b9:34:ad:4a:d3:c7:e2:a1:83:
00:b7:12:0a:6b:b7:ee:56:35:88:bd:4c:ba:27:16:be:9f:bc:
1e:91:80:87:9d:4e:7c:b8:fd:f3:f6:db:7a:3c:3f:d1:39:56:
76:39:78:be:66:e7:02:24:7f:b1:bf:cc:ff:23:2d:12:1f:00:
49:72:df:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:47 2025 by rpki-client