Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/WBl46A_lN9T7EUgCJY9y_5d0csI.roa
File: WBl46A_lN9T7EUgCJY9y_5d0csI.roa (raw, json)
Hash identifier: LNBa5Z181yzvk6VLwoZWfli6hMvyHCjAsES2kiFi52g=
Subject key identifier: 58:19:78:E8:0F:E5:37:D4:FB:11:48:02:25:8F:72:FF:97:74:72:C2
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 04515FBF
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/WBl46A_lN9T7EUgCJY9y_5d0csI.roa
Signing time: Sat 01 Jan 2022 13:55:47 +0000
ROA not before: Sat 01 Jan 2022 13:55:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 185.101.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72441791 (0x4515fbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Jan 1 13:55:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=581978e80fe537d4fb114802258f72ff977472c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1e:4a:97:49:ea:cf:a0:c8:9b:b3:b0:eb:f6:
10:47:da:55:00:1e:c4:ba:fb:c8:b0:5c:3a:99:df:
90:6e:41:34:98:2d:36:7e:f0:f0:cd:6c:01:5d:9d:
5d:4c:dd:ef:03:4d:43:68:19:38:29:e1:87:21:75:
a9:84:22:ae:9b:10:57:7f:74:fe:5b:ec:c9:ab:77:
c0:19:b6:3f:72:da:bf:10:4c:96:02:62:8a:07:02:
0b:f0:e5:58:41:05:1f:08:77:ed:d2:41:12:2a:99:
19:a7:ec:39:fc:14:13:05:18:98:af:37:a1:1b:7a:
12:c5:6b:98:d9:67:25:77:16:e7:93:75:78:c7:43:
8a:ea:34:ce:17:d5:cd:df:c8:17:9b:7f:7e:a7:6f:
c2:36:a0:57:f7:c9:de:f2:72:91:fc:5f:07:cb:2e:
bd:9c:cd:1b:7b:b9:fc:64:60:9c:63:be:1d:de:b8:
44:01:45:9e:00:71:6b:19:6f:69:40:78:f8:c1:66:
ab:00:01:aa:95:92:47:57:c6:e8:ac:bd:8c:d4:70:
5c:3f:bd:7b:46:7a:7b:11:f0:77:de:d3:f5:f4:fb:
df:ca:dd:9f:a7:9c:cd:98:02:0a:38:80:8c:2a:db:
0c:4c:95:91:57:e4:a7:12:ed:8d:a7:48:cf:90:af:
c1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:19:78:E8:0F:E5:37:D4:FB:11:48:02:25:8F:72:FF:97:74:72:C2
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/WBl46A_lN9T7EUgCJY9y_5d0csI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.171.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:d0:6c:70:0e:85:04:d6:e1:ca:35:8c:77:59:82:14:11:98:
1e:d7:cf:34:d4:30:86:23:fa:1e:5d:26:3f:3e:6b:11:90:46:
54:49:ba:25:25:6d:4e:cd:b8:86:b0:d6:bd:03:3e:9d:e1:70:
bd:21:ce:f4:47:14:0d:08:71:c4:5f:1d:7d:8c:67:93:6e:e9:
f7:d2:78:ea:0b:0e:b7:3f:c3:4c:39:da:e8:60:6d:81:20:93:
f8:c9:f7:7d:47:30:e5:a8:ed:5e:6e:42:58:27:d3:76:29:97:
fa:97:54:2c:e2:fd:2b:4a:c6:53:a8:88:d3:7a:c1:6c:e7:b0:
da:94:b5:d8:a3:09:e5:e1:ad:38:e8:c5:1b:7e:7d:01:a7:3b:
dc:69:b9:41:00:ba:c9:c0:19:72:49:22:69:d9:03:d5:43:42:
34:6b:c3:4d:09:f2:6f:13:9e:af:a7:e2:66:e4:80:ba:2b:75:
d3:c1:2d:d6:74:70:05:42:9b:53:44:36:78:e2:c7:35:21:4a:
de:a0:56:d9:7a:89:18:0c:90:6c:d6:8e:2d:88:e7:d7:6b:95:
26:b3:c6:39:9e:e9:91:65:db:40:54:31:d4:4c:73:01:22:5d:
2f:aa:e8:a4:4b:70:ce:06:50:c4:6c:5d:c7:80:4c:3c:b6:21:
d4:5c:ae:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:57 2023 by rpki-client on console-fra.rpki-client.org