Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/fba2cd-4868-4254-b1e9-cad30099ab1e/1/WYZrWCK2YrQhwZKQMMQe_Fiyqjs.roa
File: WYZrWCK2YrQhwZKQMMQe_Fiyqjs.roa (raw, json)
Hash identifier: TOK9lij4GVS6WoFUBJY9NlcdbCdxpXf0YfaXPhTPeGM=
Subject key identifier: 59:86:6B:58:22:B6:62:B4:21:C1:92:90:30:C4:1E:FC:58:B2:AA:3B
Certificate issuer: /CN=8cd2d0277ce991213e67b7bbdc7650490f8a31bf
Certificate serial: 013151BC
Authority key identifier: 8C:D2:D0:27:7C:E9:91:21:3E:67:B7:BB:DC:76:50:49:0F:8A:31:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jNLQJ3zpkSE-Z7e73HZQSQ-KMb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/fba2cd-4868-4254-b1e9-cad30099ab1e/1/WYZrWCK2YrQhwZKQMMQe_Fiyqjs.roa
Signing time: Sat 01 Jan 2022 06:54:06 +0000
ROA not before: Sat 01 Jan 2022 06:54:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59437
IP address blocks: 91.194.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20009404 (0x13151bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cd2d0277ce991213e67b7bbdc7650490f8a31bf
Validity
Not Before: Jan 1 06:54:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59866b5822b662b421c1929030c41efc58b2aa3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8e:9b:ac:16:1e:1d:a7:8b:fc:7f:75:95:fe:
d2:ad:72:d8:7a:43:2d:64:a5:48:48:e4:46:94:ff:
17:be:0c:c0:0f:8e:b1:91:88:24:c2:06:c9:82:00:
d5:d2:94:d8:6e:98:f9:6f:8a:dc:48:0a:8a:24:bc:
e2:bb:ee:f1:9b:08:26:9a:59:9d:5d:93:30:5b:9a:
50:46:02:27:7d:5a:c7:10:cb:74:99:b5:af:69:22:
69:35:ad:35:9d:53:23:e5:cf:cc:a8:5e:7c:1e:03:
1a:1d:e2:a8:4f:91:31:e1:95:36:98:a4:ba:de:77:
57:f4:c3:39:ff:4e:f5:ba:a3:8b:95:0d:73:1e:5b:
29:de:ee:04:cf:47:06:8f:b4:1e:ef:f7:fd:95:dd:
92:a2:64:5c:e4:82:98:d1:b8:34:32:89:44:3b:4c:
95:d7:2e:f8:c0:64:6e:12:ac:97:91:dd:1c:aa:92:
3e:01:df:96:30:2c:c0:c2:4a:56:36:bd:69:82:8c:
44:9e:8e:7f:54:5d:dc:57:7a:7b:01:3b:42:43:06:
15:c6:13:45:e3:98:05:d9:d4:19:7f:4d:a3:9c:14:
83:2a:99:e4:63:18:a3:ef:25:86:18:21:00:a4:d8:
4d:36:2c:49:5d:73:89:d5:e1:a0:d9:b4:05:45:36:
ea:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:86:6B:58:22:B6:62:B4:21:C1:92:90:30:C4:1E:FC:58:B2:AA:3B
X509v3 Authority Key Identifier:
keyid:8C:D2:D0:27:7C:E9:91:21:3E:67:B7:BB:DC:76:50:49:0F:8A:31:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jNLQJ3zpkSE-Z7e73HZQSQ-KMb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/fba2cd-4868-4254-b1e9-cad30099ab1e/1/WYZrWCK2YrQhwZKQMMQe_Fiyqjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/fba2cd-4868-4254-b1e9-cad30099ab1e/1/jNLQJ3zpkSE-Z7e73HZQSQ-KMb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.200.0/24
Signature Algorithm: sha256WithRSAEncryption
82:27:9d:96:2f:74:02:79:0a:74:af:8a:53:f7:2d:ac:aa:e7:
e9:9f:84:eb:02:eb:eb:04:52:bc:d5:93:17:fe:d7:67:fb:d6:
5f:c2:e5:28:f1:5f:84:27:fc:c4:31:e6:a6:71:59:f9:bf:a4:
da:0a:60:6e:e9:25:3f:7c:ca:cf:86:2d:8f:44:bf:0e:77:d4:
c0:9e:43:09:3f:47:dd:ce:81:4e:7e:63:8f:4e:a5:b5:48:de:
fd:8a:dc:d2:91:6e:5d:ff:57:26:6d:0a:c6:d4:28:4b:9a:d4:
fe:37:69:97:62:32:5d:7a:27:0e:ef:f1:28:7e:94:e7:94:d8:
62:2d:6e:61:9a:a0:d4:18:65:6f:73:34:fa:52:f0:a0:45:77:
4b:84:72:af:0b:4a:c3:fb:a3:48:73:7d:f1:53:47:8c:0e:0a:
d9:64:72:f8:b8:f1:de:72:b5:19:3b:8d:59:06:ab:20:d2:9b:
77:ba:de:5d:bf:9c:68:89:c4:ba:51:69:76:c3:d6:e5:4a:db:
5a:1e:c5:56:3d:01:c9:f5:4f:03:02:08:ec:f0:96:16:5a:d8:
11:24:85:b4:1b:e5:86:82:f7:d4:b8:72:e6:d7:17:38:dd:06:
ee:d3:b6:24:92:cd:93:5a:8c:4a:5d:6c:3c:5b:f0:c1:86:81:
a0:86:7e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:59 2023 by rpki-client on console-ams.rpki-client.org