Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/IWPK-gjJbh1xwTEnXgVDVVa8_YU.roa
File: IWPK-gjJbh1xwTEnXgVDVVa8_YU.roa (raw, json)
Hash identifier: r6Rb4a3TjkgU2LoxNLvPDCLjAyp616ol25kzfKBIXBo=
Subject key identifier: 21:63:CA:FA:08:C9:6E:1D:71:C1:31:27:5E:05:43:55:56:BC:FD:85
Certificate issuer: /CN=af09503fcac01769515a19f2dc2657d92fd350df
Certificate serial: 0F4788AC
Authority key identifier: AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/IWPK-gjJbh1xwTEnXgVDVVa8_YU.roa
Signing time: Sat 01 Jan 2022 09:53:51 +0000
ROA not before: Sat 01 Jan 2022 09:53:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 553
IP address blocks: 141.10.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 256346284 (0xf4788ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af09503fcac01769515a19f2dc2657d92fd350df
Validity
Not Before: Jan 1 09:53:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2163cafa08c96e1d71c131275e05435556bcfd85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f7:44:cd:84:d1:8b:a2:18:95:a5:55:03:6a:
62:f0:03:b9:11:b3:03:42:8e:dd:b6:41:79:37:a1:
39:bc:65:b0:55:fe:58:ec:93:eb:a4:27:52:42:57:
b7:2b:dd:65:d4:45:64:68:f1:71:0b:f3:e9:f2:0f:
80:c4:f5:28:39:9c:b8:01:b7:1f:99:2b:24:03:49:
e2:e6:3e:d8:af:82:a0:10:76:ea:44:34:58:0f:c4:
36:56:9f:18:43:7f:4a:dc:d2:fc:8e:76:50:95:86:
bf:c2:08:c2:21:04:cc:13:78:82:2b:ac:9e:ad:22:
73:06:97:03:6c:f0:ec:ef:12:f7:7c:30:bc:df:7e:
99:e9:e2:1d:60:fa:f1:49:9f:8f:43:fe:72:c7:13:
38:08:80:49:7c:ed:22:35:5e:63:0c:61:2b:3b:14:
3e:a3:92:d3:64:dd:a6:84:ea:fe:d4:75:43:35:4e:
04:e0:19:cb:6e:17:b0:3c:b6:9d:10:b5:d8:54:67:
9e:36:a2:24:18:32:74:66:67:e4:a4:4a:4b:2a:04:
56:07:40:ad:dd:25:87:52:ee:a0:29:5d:11:7d:98:
a0:f8:e1:ed:c8:cc:86:5e:03:42:dd:da:f1:09:bc:
58:53:7b:e5:10:ac:8f:0a:70:1f:4f:98:ac:fa:01:
c8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:63:CA:FA:08:C9:6E:1D:71:C1:31:27:5E:05:43:55:56:BC:FD:85
X509v3 Authority Key Identifier:
keyid:AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/IWPK-gjJbh1xwTEnXgVDVVa8_YU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.10.0.0/16
Signature Algorithm: sha256WithRSAEncryption
48:05:d6:4c:f2:d3:d3:d8:9b:57:6c:f5:41:b3:dd:35:50:30:
57:c9:9c:4a:f9:fe:08:88:76:7c:49:34:fb:d6:3c:20:c2:60:
41:dc:97:1d:00:6f:dc:5f:c6:63:49:b6:e6:89:5a:2b:99:2b:
7b:95:28:2d:65:30:4f:4d:90:83:b9:9f:55:d7:ba:5e:3e:06:
92:e1:37:06:ce:0a:af:76:72:81:0f:83:b2:5f:93:3d:4f:68:
f8:9c:48:38:c8:73:6f:0e:5b:b5:53:03:d2:c3:50:05:ef:25:
28:c5:ef:ea:20:e4:67:87:6c:9d:16:91:9d:22:06:1b:f8:27:
64:a8:8e:83:bc:0c:4a:d2:8b:b3:5f:b3:15:54:bd:22:a1:9e:
ee:83:b1:ee:b8:d5:b4:6d:1f:22:62:8d:26:92:1e:9d:a0:68:
53:e2:ac:b7:be:9f:46:5f:09:c1:f9:40:08:2b:2f:49:4f:e9:
49:b2:80:be:16:4c:3b:32:6d:81:53:d5:e4:6a:18:6c:3f:79:
95:9d:65:49:2d:8c:55:04:75:cb:59:74:6b:d9:12:60:c7:0c:
eb:71:9e:73:04:3a:a5:6a:46:c1:6d:95:f6:f0:6b:67:5b:ff:
b1:5b:7e:03:ce:40:02:b3:a6:9c:b6:ae:05:aa:19:f6:4d:70:
40:45:0a:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:22 2025 by rpki-client