Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/WvSrMXt-GCI5rd5ex0qjIFalFYw.roa
File: WvSrMXt-GCI5rd5ex0qjIFalFYw.roa (raw, json)
Hash identifier: nmybFcfE2nWg1B3gsKlb6L7fVj7Gwbw9q04R9dpWbeE=
Subject key identifier: 5A:F4:AB:31:7B:7E:18:22:39:AD:DE:5E:C7:4A:A3:20:56:A5:15:8C
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 089ACE3F
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/WvSrMXt-GCI5rd5ex0qjIFalFYw.roa
Signing time: Mon 07 Feb 2022 13:57:12 +0000
ROA not before: Mon 07 Feb 2022 13:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 185.65.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144363071 (0x89ace3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Feb 7 13:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5af4ab317b7e182239adde5ec74aa32056a5158c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9b:91:a3:09:67:da:a8:2b:eb:f6:36:b1:ff:
b5:c1:0a:cd:93:42:fd:b2:07:af:30:07:0d:60:7a:
fe:2f:b6:14:cb:75:d4:07:a2:f2:cc:e4:d1:da:38:
7f:7e:8a:2e:90:6e:7b:df:cf:bb:c2:d8:53:e8:2e:
24:f7:21:c8:b0:44:7f:48:63:6e:5b:06:fb:76:49:
74:67:7d:13:7f:93:e5:06:83:bf:4c:1c:76:77:53:
3b:89:b7:ef:ef:54:78:1b:82:08:8d:1e:84:f0:8e:
47:0a:e6:3d:eb:0b:f1:9c:70:ae:05:72:92:e2:ee:
f1:a3:f8:85:81:29:32:3e:b6:80:63:76:87:78:ad:
06:1e:bd:92:6d:4b:95:7d:2e:3e:da:be:eb:02:10:
ef:67:d1:0f:d9:b3:13:b6:28:44:3e:cb:e5:6d:a5:
0c:ed:0b:17:84:e0:bd:95:f3:82:c5:bd:e3:eb:e5:
76:4c:3c:49:19:16:28:41:45:af:75:26:c2:c0:fd:
50:9b:d9:ab:7e:03:47:94:82:53:41:9a:05:7a:f3:
05:81:c5:6d:6b:ce:38:57:19:d9:5a:44:f3:77:84:
85:c5:97:66:32:60:2c:79:7e:4d:ef:98:d0:55:1b:
17:6a:9d:3a:7d:1c:f7:ea:db:d9:68:3b:a3:cc:bc:
ca:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:F4:AB:31:7B:7E:18:22:39:AD:DE:5E:C7:4A:A3:20:56:A5:15:8C
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/WvSrMXt-GCI5rd5ex0qjIFalFYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.203.0/24
Signature Algorithm: sha256WithRSAEncryption
14:c3:90:ba:21:dd:01:09:bc:02:80:76:0e:5c:74:b9:17:a0:
bd:4d:d3:52:3f:ba:c3:fc:8c:ee:ed:26:c4:43:a9:fc:75:d9:
09:38:8d:14:fa:d9:d7:56:ee:25:73:59:d0:77:cc:62:c6:66:
58:d3:0d:d5:54:56:a9:c8:6f:7a:e3:1f:be:55:0c:57:18:e2:
f0:4f:90:1f:ba:89:e6:d7:71:c0:52:89:87:e9:04:cf:1f:8c:
a3:8b:1d:32:6e:bb:fc:a0:30:28:ce:ac:12:0a:53:9a:66:8b:
a6:f1:62:02:dc:b6:22:dc:45:e2:21:51:e8:4d:61:55:fd:1d:
95:7c:22:ad:b4:62:73:e7:07:26:e7:04:c7:28:40:46:28:db:
4c:96:84:7d:47:9d:7a:69:ba:02:b1:37:8a:5a:d1:e6:bb:d7:
0a:4f:22:e9:7b:c0:a3:44:fe:07:49:33:54:27:e3:60:eb:93:
c8:e7:65:db:af:ea:85:39:63:c8:24:1b:66:2f:f1:e8:cf:1a:
32:ba:18:f1:9f:ad:7e:ab:f4:96:af:ac:ca:3b:3f:50:1e:72:
85:97:cd:77:37:c3:73:a0:90:da:38:cd:b0:b6:36:26:74:76:
5a:f1:3a:d6:07:8a:5d:60:eb:bd:84:db:ea:e9:0f:79:12:a4:
a5:07:14:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org