Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/WHjUFrJXy1waelPaflFD5g4ZfoE.roa
File: WHjUFrJXy1waelPaflFD5g4ZfoE.roa (raw, json)
Hash identifier: Ij8naV5w5AopwpxWIlTI/WdDM31hOZLoAtI7hiXKot4=
Subject key identifier: 58:78:D4:16:B2:57:CB:5C:1A:7A:53:DA:7E:51:43:E6:0E:19:7E:81
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 111FA5D2
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/WHjUFrJXy1waelPaflFD5g4ZfoE.roa
Signing time: Sat 01 Jan 2022 14:04:46 +0000
ROA not before: Sat 01 Jan 2022 14:04:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203558
IP address blocks: 188.75.71.0/24 maxlen: 24
188.75.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 287286738 (0x111fa5d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jan 1 14:04:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5878d416b257cb5c1a7a53da7e5143e60e197e81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4e:9b:ea:3f:8e:9d:42:62:3d:ac:f9:f9:16:
ee:03:78:8b:52:25:77:35:b4:88:41:a5:f3:07:99:
62:5d:b8:3e:10:d9:b1:ba:41:7b:28:23:6b:7c:9a:
f6:ab:9f:49:ee:21:ad:ad:98:bb:27:ac:d5:0f:6a:
a6:a8:cc:17:7b:af:05:6c:9e:04:b2:37:2a:31:ba:
11:d9:e1:24:1a:cd:83:19:ad:f8:34:5e:e9:33:36:
7b:8e:df:5e:62:72:07:8a:0f:10:14:d0:e2:d7:81:
87:4a:30:79:ec:79:b0:43:1a:7d:d2:a9:6c:96:ee:
a0:bf:28:e3:2f:2a:30:98:6b:a1:2a:5a:e0:ce:b5:
b1:69:69:0e:57:d4:34:51:cc:84:bf:2c:d1:8a:9a:
59:5b:52:43:ad:fc:03:00:25:5d:b5:c4:d2:1c:24:
a8:e7:3d:81:21:dc:68:1f:d9:49:b5:d3:42:1b:e2:
ab:c9:5a:43:68:65:c6:11:a4:53:62:15:d6:b8:eb:
d3:ad:79:f0:8a:f3:45:a1:55:30:35:2c:8e:70:56:
b5:a7:ce:5a:ab:39:b7:ae:47:fb:bc:1e:39:f5:17:
2c:63:89:79:95:be:95:81:e0:6b:43:c6:1c:45:7f:
54:47:c4:1a:d3:5e:55:57:13:8f:e4:a3:2c:01:f1:
d9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:78:D4:16:B2:57:CB:5C:1A:7A:53:DA:7E:51:43:E6:0E:19:7E:81
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/WHjUFrJXy1waelPaflFD5g4ZfoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.75.71.0/24
188.75.109.0/24
Signature Algorithm: sha256WithRSAEncryption
27:a8:c9:ca:4d:31:03:e4:f8:84:6f:6c:a7:65:0c:d3:f4:a3:
f7:c3:d7:1b:6f:e6:7b:ce:26:54:b7:60:a0:2b:cc:36:5a:40:
fa:cd:58:06:90:be:ea:a7:5e:fb:47:41:8d:a4:d8:64:8f:e3:
d8:90:22:1f:23:8c:5c:f4:5b:e3:16:b9:5a:a7:6a:41:9d:af:
bd:6d:2e:76:e0:55:4d:00:54:e0:12:96:f5:0d:04:ce:b6:e4:
12:b4:48:98:02:78:60:c2:2b:0e:2a:7a:3a:c6:88:39:a9:a9:
03:8d:b0:6e:ba:5e:20:07:23:18:fd:c9:ae:84:2a:d8:09:cc:
78:65:3b:47:14:d5:22:4a:5c:0f:19:90:bf:65:75:b6:0e:f5:
93:75:46:2e:83:74:89:03:b0:cb:5e:60:1b:b5:0c:8a:bb:d1:
82:74:e3:0c:cf:67:7b:8a:3b:91:42:58:39:f0:69:55:8f:9e:
4d:35:16:4d:9f:90:94:2f:40:db:0d:58:49:b6:7f:4b:fd:23:
01:1a:de:58:ba:4e:bb:b7:b6:93:d2:6e:7e:0c:28:03:34:53:
c1:77:5b:39:05:38:54:fa:33:cd:3d:cb:b0:6f:25:8b:f7:f8:
b0:ee:71:d3:c0:7b:e1:9e:58:ca:1b:62:e8:b5:bd:ef:43:94:
c0:06:0b:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:02 2024 by rpki-client on console-fra.rpki-client.org