Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/WgGTr2RVgFKkOBGSjHk4sD0jItI.roa
File: WgGTr2RVgFKkOBGSjHk4sD0jItI.roa (raw, json)
Hash identifier: cO513LH7jXIwGv/60BnW4EvDzJEmOGpgzVfhm/P2WXo=
Subject key identifier: 5A:01:93:AF:64:55:80:52:A4:38:11:92:8C:79:38:B0:3D:23:22:D2
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 0183E56654FDDC5C029ACAD3D63C06BEE456
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/WgGTr2RVgFKkOBGSjHk4sD0jItI.roa
Signing time: Mon 17 Oct 2022 10:03:52 +0000
ROA not before: Mon 17 Oct 2022 10:03:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20719
IP address blocks: 213.244.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e5:66:54:fd:dc:5c:02:9a:ca:d3:d6:3c:06:be:e4:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Oct 17 10:03:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a0193af64558052a43811928c7938b03d2322d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:6b:71:b7:94:d3:96:26:81:29:b3:21:28:f7:
cc:3b:ed:01:32:dd:db:68:35:38:28:44:3f:ea:3f:
a9:34:97:03:5f:b9:7b:5b:a0:79:2e:77:42:7c:d3:
57:69:3a:8c:ed:7b:78:10:b4:39:be:03:06:2c:4f:
e5:f5:fe:39:12:83:a6:67:34:c4:93:c7:10:78:59:
6e:9e:4c:4b:7a:15:88:d9:41:73:99:24:6a:71:3e:
eb:26:46:74:0f:62:3b:aa:95:39:2b:3c:86:ff:ef:
90:af:1a:8b:7d:14:87:23:2f:0f:3d:44:e9:a9:89:
02:61:4f:24:43:68:51:84:3d:54:54:b1:62:43:e6:
c2:19:67:f8:94:43:c7:98:5e:c0:c9:06:87:5d:0b:
2c:e5:26:42:64:0c:16:05:37:9b:c3:7e:17:98:a9:
5c:01:be:4b:26:6e:ff:02:74:40:9b:fc:70:d9:1c:
b1:d0:1b:24:a5:23:40:fc:2e:38:4a:03:88:04:e4:
f2:dd:66:29:32:17:55:56:4d:5c:41:27:0f:f3:3a:
c2:0a:a8:8e:87:8b:df:d8:51:6b:63:1e:51:b7:f2:
5a:33:da:24:c7:88:c4:db:02:27:fe:34:02:76:22:
52:e0:a5:85:e2:c9:0f:40:95:e2:ec:cb:8a:0a:a0:
ee:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:01:93:AF:64:55:80:52:A4:38:11:92:8C:79:38:B0:3D:23:22:D2
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/WgGTr2RVgFKkOBGSjHk4sD0jItI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.244.124.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:16:d8:1e:8d:66:a8:5a:03:a8:06:0c:65:7e:fe:e5:8c:2e:
0c:d0:12:05:46:87:e2:40:4a:ce:40:c0:14:1c:1f:5e:57:54:
3e:8a:67:b1:83:90:18:45:e6:48:9a:b8:d3:6e:da:61:30:34:
40:57:3a:92:5d:41:19:69:c6:7c:40:cc:bf:bd:06:49:fb:81:
60:37:db:0d:b7:7a:ae:fb:db:fd:96:5a:04:e0:71:21:6a:55:
fb:c3:7e:8f:dc:0d:34:99:b8:47:ac:c1:67:1e:c2:9d:48:7f:
61:14:46:5e:94:0a:e7:ae:c6:fe:2b:cc:d7:b7:b0:8e:7a:2b:
b6:b4:73:2a:f9:88:77:f5:6d:9d:1b:42:ff:db:fa:94:99:d3:
66:58:f4:0f:df:e1:0c:35:c1:73:37:b5:fc:6f:8f:43:1b:11:
86:c5:e0:f3:70:15:fc:0f:b6:c5:b0:d0:c7:e7:8e:b8:8a:0f:
6c:be:55:7b:c4:68:f8:63:0c:28:86:5d:95:c4:6b:ff:09:e7:
83:69:cf:01:85:b7:ba:44:54:6e:1b:3d:ac:d7:d0:96:9c:2b:
b6:91:bc:1d:c8:ed:dc:9b:12:93:d7:1d:c6:44:3c:dc:96:d6:
66:bf:b1:d3:22:cb:c3:53:c8:ae:5c:ed:c8:25:36:94:f4:d4:
4c:d1:1e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:20 2024 by rpki-client on console-fra.rpki-client.org