Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WbLO037dFsqUZDfJRtxzS107wag.roa
File: WbLO037dFsqUZDfJRtxzS107wag.roa (raw, json)
Hash identifier: W6Zb8egxul67Iqzf9SJi19rHnjVq6kCmhnHxn8ms6gM=
Subject key identifier: 59:B2:CE:D3:7E:DD:16:CA:94:64:37:C9:46:DC:73:4B:5D:3B:C1:A8
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27C6058A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WbLO037dFsqUZDfJRtxzS107wag.roa
Signing time: Sat 01 Jan 2022 16:08:50 +0000
ROA not before: Sat 01 Jan 2022 16:08:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51962
IP address blocks: 31.148.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 667288970 (0x27c6058a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59b2ced37edd16ca946437c946dc734b5d3bc1a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1c:70:e6:f9:5d:cf:76:67:91:84:96:8b:cb:
9f:98:03:1d:b5:ad:b3:10:90:82:74:9d:de:c4:4e:
24:65:7f:1c:c1:27:0c:cd:a5:d8:a0:70:f1:ca:1a:
5a:c8:a1:ef:70:01:bd:63:12:7d:33:9d:b7:9e:10:
1a:f2:f2:8c:27:40:87:48:a5:07:8e:44:56:c7:13:
d2:b9:22:55:93:df:8a:f9:ff:1e:24:85:c2:e2:86:
d6:ad:64:f1:34:1b:3e:66:e2:6b:cc:9d:82:d4:64:
b0:9d:a2:bd:37:3e:77:29:4b:7d:b1:57:8c:2e:ee:
5d:13:c3:8b:d7:e8:a4:bb:fd:80:44:0f:ba:df:35:
8d:b3:5d:08:92:69:96:39:65:fc:35:ce:29:c7:51:
1c:11:4a:0d:35:d3:d1:87:23:51:e0:7f:bd:a0:75:
5a:a7:60:cf:ea:9e:b2:9f:ef:82:8e:6d:15:2f:cb:
b7:81:87:32:47:77:5b:90:c1:67:36:af:6c:42:97:
ca:9c:20:58:2a:26:6b:a1:a1:2a:7c:3e:71:5a:36:
94:a0:4e:a0:11:19:db:71:df:34:a5:04:9e:26:bd:
31:69:de:77:85:77:1d:b2:59:5c:d6:2d:e9:24:3b:
d5:c3:6c:cc:33:7a:44:6b:e6:b0:26:02:f1:47:85:
64:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B2:CE:D3:7E:DD:16:CA:94:64:37:C9:46:DC:73:4B:5D:3B:C1:A8
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WbLO037dFsqUZDfJRtxzS107wag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.221.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:d2:5e:bd:03:77:8d:78:d9:38:81:32:05:f6:69:2b:71:d2:
b1:19:20:bb:a9:7f:fc:57:44:45:92:94:43:08:e7:ef:f8:c9:
eb:a6:7b:b9:5f:d2:7c:a7:fe:9c:36:26:94:ac:c0:a8:9d:08:
d0:13:40:0c:0a:be:34:fa:25:51:ab:22:34:5a:7b:9a:3a:59:
ed:a0:39:db:fe:c6:d2:fb:44:db:2a:02:c4:f2:7c:0b:ef:64:
b4:93:e5:c6:b8:e2:8a:23:2e:03:5f:4f:c5:af:8a:59:a8:4e:
8a:23:4b:d3:29:81:3c:eb:d6:c1:c3:a1:3d:26:b4:45:5c:e8:
1f:54:69:b1:23:66:3d:c0:1a:93:0c:55:6c:74:0c:c5:ef:6c:
25:30:45:5e:db:b1:ba:84:7f:f5:bd:cc:9e:32:bf:d4:34:d9:
5d:83:c6:f7:e7:23:02:24:93:33:96:36:3e:e9:69:8d:d9:20:
b9:fb:04:27:aa:dc:b4:5b:c9:74:3c:83:9e:14:7c:7b:81:48:
d4:2e:38:7e:db:18:bd:78:6e:af:40:38:da:26:62:33:e3:f4:
c0:f1:ee:95:01:2b:2e:bd:b0:a4:58:13:bc:19:32:17:b8:b0:
d0:f3:a9:cc:90:cf:44:92:cc:18:78:24:7f:b0:f6:7c:f0:3f:
44:9f:ab:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:53:27 2025 by rpki-client