Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/WQJWUTK8vd4eBzaFeaqUUjYghZ4.roa
File: WQJWUTK8vd4eBzaFeaqUUjYghZ4.roa (raw, json)
Hash identifier: kOBOw71Hn23h8y3q4NUzP4mKwwCSBZg1M4Vw4zsoB6I=
Subject key identifier: 59:02:56:51:32:BC:BD:DE:1E:07:36:85:79:AA:94:52:36:20:85:9E
Certificate issuer: /CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Certificate serial: 0184607F957469B179CD9BA66F698A2C3D42
Authority key identifier: 57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/WQJWUTK8vd4eBzaFeaqUUjYghZ4.roa
Signing time: Thu 10 Nov 2022 07:44:44 +0000
ROA not before: Thu 10 Nov 2022 07:44:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207279
IP address blocks: 185.132.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:60:7f:95:74:69:b1:79:cd:9b:a6:6f:69:8a:2c:3d:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Validity
Not Before: Nov 10 07:44:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5902565132bcbdde1e07368579aa94523620859e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:77:12:a5:af:5f:46:5e:e2:6f:07:0e:1c:dd:
bf:c4:e8:4f:ae:6d:b7:32:bb:1b:97:b6:ce:69:97:
62:5f:78:ce:b5:a9:ff:b4:3a:73:7a:50:55:51:e3:
4d:aa:8e:e5:fd:d3:7e:34:e1:da:d8:09:9e:68:8b:
69:b3:5a:30:14:a2:d7:50:51:4d:3b:c3:40:25:29:
b2:93:2c:e9:fd:ef:29:94:ad:7b:6a:67:33:5a:a3:
6b:dc:b0:ce:89:23:a2:97:10:4a:e9:5e:8c:f7:de:
e5:ec:bf:b5:16:dd:e6:e3:f5:98:03:83:00:87:2d:
67:13:40:1e:e7:60:8e:bb:d7:e2:75:22:77:c6:3e:
60:7b:ec:ad:77:85:39:8e:20:2c:fe:17:96:80:9d:
95:71:6c:b1:9d:d4:b9:2d:d2:58:e4:f4:d2:26:7d:
00:a7:1e:32:3c:fe:2d:a3:05:93:ef:2a:89:42:b0:
80:cb:91:48:1f:db:04:89:d9:ae:73:a0:64:cc:cf:
0e:49:96:57:30:5c:c6:a8:e8:bf:ed:24:b5:bf:fd:
d8:f3:e7:33:5b:ed:e7:ae:59:ed:60:7b:d5:99:93:
78:cd:1a:d7:60:13:e4:ac:43:fd:23:22:d2:ca:81:
99:6d:53:16:0d:2a:15:d3:98:aa:b4:1a:f3:a6:d2:
d2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:02:56:51:32:BC:BD:DE:1E:07:36:85:79:AA:94:52:36:20:85:9E
X509v3 Authority Key Identifier:
keyid:57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/WQJWUTK8vd4eBzaFeaqUUjYghZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.187.0/24
Signature Algorithm: sha256WithRSAEncryption
65:bd:52:6d:28:9b:d8:71:ad:fd:2a:10:cc:46:2f:b7:62:e3:
5c:29:f3:b5:46:40:23:df:3d:4b:8b:3b:d3:e1:a1:b9:b3:b6:
96:5e:9f:39:65:40:61:dd:ca:bd:9d:7f:3d:30:f2:f0:f3:52:
24:73:ee:66:c8:53:42:c0:03:a0:12:c6:72:10:16:d4:ae:d8:
ca:b8:f5:6a:6c:ce:ca:08:e2:9a:7d:2c:ed:b6:d6:db:87:24:
aa:69:5c:c0:cc:28:56:1c:36:af:37:51:c7:41:6a:13:32:da:
22:13:96:29:e1:e5:0d:28:f6:49:54:ea:74:b5:47:ce:c0:a1:
e7:f5:70:7d:c7:dd:23:36:42:01:dc:e6:20:36:69:df:94:8d:
6e:60:f8:d7:7c:23:e5:ba:9b:4c:b7:1d:49:aa:99:af:8c:4e:
00:be:ff:2f:ec:ab:a7:df:43:76:d7:74:62:32:bf:3d:42:2b:
2c:0f:7e:0f:6a:53:c6:e3:15:1a:56:d9:0e:bc:9f:ab:56:b7:
ee:d8:ac:f5:7d:f1:2d:00:fa:2f:9e:47:b4:7f:6c:59:ba:5a:
5f:cb:f2:fc:27:e5:bb:59:b7:87:44:87:55:f8:91:fa:99:d2:
1b:73:f1:91:9a:43:4f:e1:6b:eb:fe:c8:a8:69:59:2a:5a:59:
9f:7b:26:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:21 2024 by rpki-client on console-fra.rpki-client.org