Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/c7f3d9-a501-46af-b9d8-72081bd4cd8d/1/wpHpqkOmYLFhU0B19Iv34UZwIMc.roa
File: wpHpqkOmYLFhU0B19Iv34UZwIMc.roa (raw, json)
Hash identifier: WgUhfsgoD6QcOMhJ0ErN1zZ9jr9aPhw26w5ghg8Sijw=
Subject key identifier: C2:91:E9:AA:43:A6:60:B1:61:53:40:75:F4:8B:F7:E1:46:70:20:C7
Certificate issuer: /CN=dbb98010536c406ea8f3d665594c228d76eb10fd
Certificate serial: 0282622E
Authority key identifier: DB:B9:80:10:53:6C:40:6E:A8:F3:D6:65:59:4C:22:8D:76:EB:10:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/27mAEFNsQG6o89ZlWUwijXbrEP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/c7f3d9-a501-46af-b9d8-72081bd4cd8d/1/wpHpqkOmYLFhU0B19Iv34UZwIMc.roa
Signing time: Tue 29 Mar 2022 12:51:06 +0000
ROA not before: Tue 29 Mar 2022 12:51:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47626
IP address blocks: 193.35.48.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42099246 (0x282622e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbb98010536c406ea8f3d665594c228d76eb10fd
Validity
Not Before: Mar 29 12:51:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c291e9aa43a660b161534075f48bf7e1467020c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:71:e1:b2:52:84:d9:2d:17:dd:72:c4:b7:e1:
53:ea:1a:d0:5a:13:7a:1b:78:ac:55:84:b4:ce:9d:
7b:39:cf:59:17:ee:dd:6c:d7:f9:3f:64:84:04:c7:
2e:74:d5:72:38:5c:66:c4:d3:c2:cd:22:c0:89:24:
c6:fb:89:8b:90:80:66:26:0a:37:68:6a:c6:de:5e:
26:d3:83:43:a0:3b:8a:76:27:f6:c7:35:05:15:dc:
a0:ed:84:80:a5:1d:f5:db:fb:31:a9:6d:c3:76:36:
38:85:a7:a0:3d:8d:9f:62:6a:58:52:00:5c:e6:f4:
93:54:82:6e:1f:5a:4f:bd:64:9a:e1:7b:49:01:82:
d9:a7:a5:d1:3c:af:b1:21:37:2d:91:c8:d6:c2:26:
97:fc:9c:a7:c6:b2:0c:3e:a9:da:ae:86:fb:17:03:
d5:39:70:70:ae:30:a8:89:97:ac:d6:a4:3c:01:b3:
33:9f:5e:13:68:d5:f9:50:32:e4:19:3c:8e:ca:73:
33:e0:25:4a:e7:3e:83:df:1d:61:92:a8:12:6d:29:
6f:37:9b:d2:72:15:ce:ec:78:66:12:92:0a:87:18:
2b:57:e5:95:d1:ac:ed:30:27:90:26:55:3e:60:bb:
29:7d:32:3e:9b:d7:9a:c0:c7:60:ab:4e:ff:0b:f7:
7a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:91:E9:AA:43:A6:60:B1:61:53:40:75:F4:8B:F7:E1:46:70:20:C7
X509v3 Authority Key Identifier:
keyid:DB:B9:80:10:53:6C:40:6E:A8:F3:D6:65:59:4C:22:8D:76:EB:10:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/27mAEFNsQG6o89ZlWUwijXbrEP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/c7f3d9-a501-46af-b9d8-72081bd4cd8d/1/wpHpqkOmYLFhU0B19Iv34UZwIMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/c7f3d9-a501-46af-b9d8-72081bd4cd8d/1/27mAEFNsQG6o89ZlWUwijXbrEP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.48.0/22
Signature Algorithm: sha256WithRSAEncryption
d4:c3:c2:1e:bc:45:af:76:dc:7b:75:47:63:a6:47:9d:bb:c0:
6d:c5:39:27:bf:27:78:ba:2f:8f:cb:bc:16:32:32:c4:82:f8:
28:c3:71:24:d6:21:8e:e2:85:4f:ca:cc:2d:b1:f1:24:a2:79:
1b:8f:92:f4:9a:12:5a:2e:0c:ce:16:da:16:49:09:5d:7d:61:
ba:aa:e8:8d:ca:b6:e8:6c:d8:5b:ae:a3:4b:76:cc:25:1e:d6:
e8:f4:07:03:6f:1b:db:f2:c6:d0:61:e6:20:ee:13:ea:fb:39:
78:30:d1:2a:53:7b:ad:0a:41:a1:d3:a9:0f:53:a0:67:f2:e5:
47:66:09:f7:93:f1:c7:83:8e:93:45:01:22:c2:82:6e:c5:e8:
0f:ab:76:26:ff:11:12:a3:f7:8f:e5:a9:0f:cc:d2:0d:af:8e:
96:3b:d2:ad:70:c3:71:f0:3a:8b:99:1a:08:2f:59:68:3c:5f:
36:95:34:54:c9:da:4c:d6:6b:d1:9b:3a:b2:d5:73:e4:00:a6:
a9:fe:69:ab:a9:ff:b4:9a:1e:0c:37:d8:9f:e7:06:88:6f:05:
94:86:00:e8:4b:09:82:79:64:a0:16:11:80:38:ce:eb:be:c3:
5e:57:ed:41:ae:99:bd:d9:0b:f2:d8:3a:99:c7:d2:fb:9b:f9:
28:d9:ae:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:03 2023 by rpki-client on console-ams.rpki-client.org