Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/WeH3v3J_rjuibVVJFLIF245Oic4.roa
File: WeH3v3J_rjuibVVJFLIF245Oic4.roa (raw, json)
Hash identifier: 52Ang92QnWwsJhbTxLRXMO5xtJKBuUQGzecuRDqz5z0=
Subject key identifier: 59:E1:F7:BF:72:7F:AE:3B:A2:6D:55:49:14:B2:05:DB:8E:4E:89:CE
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 088B4B85
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/WeH3v3J_rjuibVVJFLIF245Oic4.roa
Signing time: Sat 01 Jan 2022 03:50:58 +0000
ROA not before: Sat 01 Jan 2022 03:50:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44234
IP address blocks: 213.215.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143346565 (0x88b4b85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 03:50:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59e1f7bf727fae3ba26d554914b205db8e4e89ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:8f:5e:a9:01:5d:a6:19:81:7c:03:72:13:f9:
c7:65:4e:93:65:86:84:df:47:54:31:30:d3:25:63:
f8:5d:4d:95:69:c4:da:cc:9a:e0:83:7f:d7:f8:8f:
e0:80:a7:fb:6a:13:a8:d5:99:56:8b:45:7c:60:4d:
14:48:c7:fc:32:8f:e0:0e:64:f9:8a:cc:52:f3:39:
93:86:e4:7c:59:13:4a:25:06:2a:01:73:3a:99:da:
ce:6b:c0:26:dc:cc:f5:93:19:b8:98:df:96:3b:f9:
e4:d9:21:83:33:92:fa:c6:2d:de:30:ec:66:a8:4b:
7e:c3:c2:72:a9:a3:14:1d:ae:10:1e:e5:6a:09:3e:
76:2c:ec:75:00:82:ac:8f:0b:10:be:1c:83:0e:d2:
52:95:9a:08:62:ba:a0:15:e9:68:d2:c2:b4:fd:69:
ad:a9:cb:db:91:69:ec:84:b2:e4:bd:34:a6:d4:18:
4c:ce:fc:22:f2:3c:e2:10:be:df:bd:20:b7:7b:49:
ee:0f:39:5c:fa:62:3f:ce:c9:62:30:02:41:f1:fc:
87:ca:4b:33:49:ea:8e:3b:9d:c3:52:d4:9a:94:5d:
18:ae:b7:8f:0e:5b:75:9c:0a:75:0a:59:3d:c1:18:
cc:8e:88:c0:48:f1:fa:a0:4a:4c:b9:1b:7a:cf:3f:
7c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E1:F7:BF:72:7F:AE:3B:A2:6D:55:49:14:B2:05:DB:8E:4E:89:CE
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/WeH3v3J_rjuibVVJFLIF245Oic4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.215.105.0/24
Signature Algorithm: sha256WithRSAEncryption
17:43:1c:38:90:16:21:8a:3d:d8:fc:7d:b8:6d:ff:0d:71:69:
97:c3:08:34:d7:a6:52:96:97:42:cb:96:64:69:35:a0:0c:3f:
1c:1c:f4:7c:e2:4f:67:9e:7f:20:e0:be:d1:3f:19:88:27:9e:
df:d0:55:59:15:22:b5:b4:dc:b0:68:61:11:c9:c0:e2:58:7f:
ba:d5:2d:b9:a7:d3:d5:be:2f:ea:53:10:5f:1d:7c:ec:d4:f3:
c6:18:e1:21:16:2b:b8:5f:51:d1:02:87:d0:f9:cd:f2:af:a9:
fd:07:59:93:bf:18:0a:d3:6f:af:9f:cd:dd:01:ba:52:22:21:
d5:9b:02:32:f2:90:01:85:f9:89:6e:67:66:fd:4c:53:b4:4c:
bc:e7:ac:34:29:a3:6b:a2:2b:dd:39:bd:76:2d:08:5b:40:6e:
49:5f:49:51:90:f8:66:be:b5:70:b5:bb:ea:bc:5e:0c:ec:17:
e5:98:ec:c2:4d:b6:99:6c:94:49:28:72:f0:a8:dd:62:d4:e0:
2a:1e:b2:23:6b:55:12:8d:83:5a:c7:90:61:59:57:c1:07:da:
6c:d3:c6:11:d6:30:82:b8:c6:89:f1:b3:03:6b:db:57:58:bc:
4a:d2:8c:cd:5b:7e:33:8a:72:54:9c:71:b7:2b:b7:01:9d:67:
cd:0d:80:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:08 2025 by rpki-client