Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WZ-T2Opv0fmQXh_fri6i5v3IToE.roa
File: WZ-T2Opv0fmQXh_fri6i5v3IToE.roa (raw, json)
Hash identifier: gDU4proifrk8reSg8HFsMPIRzVEd/SnMOPNgrsJ3JEM=
Subject key identifier: 59:9F:93:D8:EA:6F:D1:F9:90:5E:1F:DF:AE:2E:A2:E6:FD:C8:4E:81
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28CAF0C1
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WZ-T2Opv0fmQXh_fri6i5v3IToE.roa
Signing time: Mon 07 Feb 2022 15:09:50 +0000
ROA not before: Mon 07 Feb 2022 15:09:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25548
IP address blocks: 93.170.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 684388545 (0x28caf0c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Feb 7 15:09:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=599f93d8ea6fd1f9905e1fdfae2ea2e6fdc84e81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b5:d3:07:a8:5a:68:47:10:52:d0:95:29:18:
97:54:f1:b7:f6:7b:fc:c9:12:8d:e3:ee:15:bf:32:
c3:b4:5f:d2:1d:f7:41:32:64:98:f6:1e:6a:f9:3c:
55:3b:90:6b:4b:e7:5c:b3:d2:4a:36:e5:43:4d:86:
c7:ef:d4:4f:37:30:9c:c2:71:58:54:13:bc:6c:36:
92:d4:35:7a:6b:f0:7c:48:c0:82:0a:79:10:ff:92:
b3:a2:2f:9f:86:f0:9b:59:a7:ae:ab:70:2e:0c:8b:
a8:a3:9c:ff:2c:27:62:17:63:1d:fc:8a:f9:0c:63:
38:21:62:09:68:42:03:30:73:7a:34:d7:7f:df:c4:
8a:e2:a8:a6:70:6b:37:1e:13:8d:af:2a:18:a1:5d:
d2:07:93:5e:99:96:5d:6c:cf:29:a0:99:81:21:f4:
6f:ba:49:93:71:0a:d8:76:f5:fa:2c:2d:7f:fd:fd:
f6:c0:69:d3:e8:4b:24:01:17:81:8d:5f:60:9b:04:
13:4c:0f:44:a9:29:b9:03:d7:1f:52:6b:4a:92:0b:
a6:17:a1:40:1f:13:e5:19:0b:bb:99:79:f8:5f:1f:
d8:24:5a:05:d3:cd:26:68:5f:22:dd:80:44:cb:13:
55:e1:0d:b4:86:33:bc:c3:91:43:f6:f3:78:b2:10:
d9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:9F:93:D8:EA:6F:D1:F9:90:5E:1F:DF:AE:2E:A2:E6:FD:C8:4E:81
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WZ-T2Opv0fmQXh_fri6i5v3IToE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.36.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:c4:fa:dc:22:14:74:5f:09:61:65:d7:42:d0:7e:67:a2:5c:
37:a8:f7:47:f9:c7:22:24:50:35:61:f4:e2:19:94:78:21:8a:
d9:7c:d6:bc:55:06:9a:6e:9b:9b:a6:34:c0:7d:69:72:a5:1f:
17:ee:ba:21:33:7e:9d:fe:8e:ac:9a:76:e7:05:a7:cb:c8:6a:
11:24:93:ff:bb:c6:24:de:13:df:e9:4a:5a:c0:bd:ab:3b:6b:
93:34:35:e6:36:c8:84:2f:e9:80:4b:40:57:1c:5a:93:da:2a:
ce:dc:b2:fd:19:36:c2:63:76:24:76:ab:85:45:b7:b8:d2:d4:
83:da:87:57:8d:17:b9:6d:e6:75:76:3c:16:d6:ab:cd:69:f2:
40:76:9f:f3:45:45:96:40:c4:76:99:11:8d:f9:a3:83:66:7d:
fa:8b:e5:45:5a:b8:bc:21:68:c2:f5:7b:cb:a7:dc:43:48:2c:
be:a1:d4:50:db:d6:f0:df:75:b8:41:03:58:92:6c:53:75:fd:
6d:98:55:b3:6f:13:d5:fb:a2:9d:6c:3c:12:fc:9b:45:31:16:
41:07:27:3e:51:4c:a5:1a:85:ae:39:72:dc:5f:29:7f:e5:d0:
3a:76:e2:e9:25:bc:6f:bb:9b:a8:9a:43:7b:67:87:30:38:6e:
44:e6:f0:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:24 2023 by rpki-client on console-ams.rpki-client.org