Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/wxUpSlI9EVlV6azLoqn4CQJDKTQ.roa
File: wxUpSlI9EVlV6azLoqn4CQJDKTQ.roa (raw, json)
Hash identifier: enFc1C2DgDdTurqm50X+NhWr6QZWRM1Xv/gZNAR71JY=
Subject key identifier: C3:15:29:4A:52:3D:11:59:55:E9:AC:CB:A2:A9:F8:09:02:43:29:34
Certificate issuer: /CN=63b82772af3d611b99b1ba6e3eb6cbfd16965363
Certificate serial: 01856DB8847B43007C558E61D9B76AF60DFA
Authority key identifier: 63:B8:27:72:AF:3D:61:1B:99:B1:BA:6E:3E:B6:CB:FD:16:96:53:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y7gncq89YRuZsbpuPrbL_RaWU2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/wxUpSlI9EVlV6azLoqn4CQJDKTQ.roa
Signing time: Sun 01 Jan 2023 14:24:47 +0000
ROA not before: Sun 01 Jan 2023 14:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6866
IP address blocks: 88.218.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:b8:84:7b:43:00:7c:55:8e:61:d9:b7:6a:f6:0d:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63b82772af3d611b99b1ba6e3eb6cbfd16965363
Validity
Not Before: Jan 1 14:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c315294a523d115955e9accba2a9f80902432934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4c:a6:2b:36:27:dd:20:46:72:45:23:46:5f:
13:aa:6f:13:da:4e:5b:d6:94:87:18:92:b0:42:f2:
9c:95:22:1b:81:95:0b:d5:88:ca:e9:62:7f:af:bd:
72:0d:b4:44:9e:ab:00:9b:30:99:a7:46:45:ba:81:
86:94:47:4b:50:13:7a:10:b8:17:50:2a:8d:33:26:
78:a8:8f:f9:8a:f8:74:17:6c:c0:b9:ec:ae:e3:19:
2d:a0:7a:fe:42:fb:ab:39:78:75:23:c0:16:2b:8c:
92:05:f4:f0:85:b3:48:d1:38:9a:49:09:cf:a6:42:
5b:04:8b:05:b7:91:12:3b:38:9f:3f:fc:9c:49:db:
8f:3b:f2:03:09:d0:68:85:76:08:c2:9b:33:7a:96:
14:fd:02:70:58:6d:37:8f:a3:0c:4e:69:ee:4e:29:
c9:fd:2e:4e:d1:32:12:ff:63:72:af:c2:03:38:e6:
7d:96:29:cd:57:db:cd:4b:aa:c8:c4:ab:7f:bb:a4:
fb:e5:dd:5a:af:c0:73:4a:4b:50:f6:5d:a3:7b:7c:
ee:0d:86:13:f3:96:8b:7f:f8:66:a4:c1:1e:65:6e:
b5:ae:95:b1:68:d9:c0:b2:3b:4f:d5:60:e7:14:96:
58:17:97:cb:8b:8f:e8:9e:4d:51:d9:22:92:19:a1:
40:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:15:29:4A:52:3D:11:59:55:E9:AC:CB:A2:A9:F8:09:02:43:29:34
X509v3 Authority Key Identifier:
keyid:63:B8:27:72:AF:3D:61:1B:99:B1:BA:6E:3E:B6:CB:FD:16:96:53:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y7gncq89YRuZsbpuPrbL_RaWU2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/wxUpSlI9EVlV6azLoqn4CQJDKTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/cb0d91-8270-4550-8fac-0ce2038aaa7b/1/Y7gncq89YRuZsbpuPrbL_RaWU2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.232.0/22
Signature Algorithm: sha256WithRSAEncryption
09:d9:1b:60:6a:ee:e6:fa:f3:28:67:03:8c:43:4b:c8:96:09:
39:97:f2:41:ba:d8:be:57:8e:fd:ca:f3:59:35:50:b9:8a:da:
e8:71:59:bb:f3:ba:f3:8c:f6:a5:b0:b7:20:55:46:11:d1:e3:
fd:59:07:a3:e8:03:bd:62:0d:aa:1c:7a:83:5e:ab:49:d1:af:
47:6f:f2:10:ef:b0:2e:f5:6a:a3:ec:b5:01:b8:67:78:2f:ff:
9c:ca:18:f6:07:5c:e3:ab:a2:b2:e9:a7:1a:b7:32:12:7c:e3:
5d:0f:52:d9:72:a2:3b:b4:f0:05:a5:4b:5a:d0:ff:8d:76:c0:
aa:01:4e:90:78:d7:c6:38:d9:32:55:b9:a4:64:41:0c:a9:51:
0e:b3:42:69:7d:d8:57:98:16:c2:cc:8b:5c:57:84:92:0f:a9:
33:5e:54:1b:11:6d:8a:02:a0:a7:9a:48:09:3c:db:0e:d0:31:
f7:78:c5:ea:4e:f5:36:d2:33:8a:3c:f5:33:02:45:78:b9:3b:
cd:fc:c7:29:1d:fe:85:96:76:31:aa:c5:01:ac:2d:e6:67:97:
e9:37:e8:c1:66:fa:cf:cd:aa:c7:e3:19:c3:68:2a:d2:0a:bc:
8f:b3:17:da:6c:5c:91:13:7a:0d:d8:05:ac:d7:39:d9:73:be:
33:bc:c1:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:42 2025 by rpki-client