Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/WgNiAyq6QeSgLJFsNysLOUptwyY.roa
File: WgNiAyq6QeSgLJFsNysLOUptwyY.roa (raw, json)
Hash identifier: DSUTnxnd7fVykwnfI8xOMiDiIuQ+V/Pkt50B8OznGz8=
Subject key identifier: 5A:03:62:03:2A:BA:41:E4:A0:2C:91:6C:37:2B:0B:39:4A:6D:C3:26
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 0885321C
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/WgNiAyq6QeSgLJFsNysLOUptwyY.roa
Signing time: Sat 01 Jan 2022 03:50:53 +0000
ROA not before: Sat 01 Jan 2022 03:50:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24980
IP address blocks: 85.248.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142946844 (0x885321c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 03:50:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a0362032aba41e4a02c916c372b0b394a6dc326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7c:78:7f:4b:c9:6b:49:9c:55:0d:d4:7f:73:
70:4c:d9:1f:30:41:19:30:d9:d4:24:32:a8:84:29:
59:d3:ec:5a:be:b2:b3:6b:6f:aa:99:41:a3:91:79:
4f:a0:7d:d1:73:ee:8a:68:c6:17:95:8d:2a:33:2e:
13:08:6e:37:56:24:58:4a:f3:30:1b:b3:b3:d2:f6:
97:f2:5d:d6:b6:47:48:55:a1:41:cb:d0:c5:fc:9e:
7f:00:bc:fb:0a:5c:2f:ef:7b:89:ba:56:a6:07:1f:
f2:3e:c6:7c:53:99:5c:36:8c:1f:39:ce:cb:b5:c4:
c0:ad:5d:74:05:05:a7:4f:14:9d:d4:2e:1a:ef:b0:
4c:79:ce:13:40:7f:ec:29:26:11:d9:a9:48:1f:75:
ca:12:ca:72:5e:ac:6f:aa:71:01:60:cc:96:5c:d3:
7d:a4:28:ad:67:28:29:6b:98:3a:c3:44:f5:38:d1:
c1:bc:80:93:73:0e:c5:ab:4b:b7:50:51:43:2d:01:
31:60:bd:5f:8d:70:19:e5:e4:8f:a4:a7:1d:35:35:
70:36:d4:4a:ad:ee:1f:42:f6:76:fa:8d:36:86:9d:
de:37:f3:19:6a:35:e0:89:aa:9a:2c:8e:c7:f9:57:
d1:76:a6:0e:a0:1c:fd:2f:c5:a4:54:69:24:b8:e7:
2f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:03:62:03:2A:BA:41:E4:A0:2C:91:6C:37:2B:0B:39:4A:6D:C3:26
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/WgNiAyq6QeSgLJFsNysLOUptwyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.248.249.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:1e:b6:49:ad:d6:47:04:7a:c7:b5:55:25:6f:75:b8:86:5e:
c6:8d:e7:10:69:dc:5e:e2:d5:69:de:50:d5:63:2c:f3:93:06:
78:6f:a7:1d:f1:51:e1:3c:52:14:67:46:0d:69:ef:d2:ca:64:
36:d1:e3:a6:5f:36:b3:49:bf:57:58:9f:4b:4b:0d:56:66:e9:
fc:07:93:bf:19:1a:80:c5:d1:b1:4f:f0:c6:c6:24:24:dd:ca:
c1:8e:bd:78:4f:65:ea:e7:2c:4d:a1:9a:b6:67:3f:46:ee:3e:
08:8a:e8:36:ec:7a:fc:c4:d9:be:59:0c:0d:e8:1d:36:f4:c2:
ca:12:3b:06:c3:63:4f:68:cd:38:d1:ca:0c:c4:51:83:73:a0:
0d:d9:74:8e:2b:bc:59:59:fe:d9:cc:e2:0b:0f:84:16:77:c1:
7c:25:49:66:7b:d3:fe:10:e2:2b:fc:ed:a8:b3:3a:31:9f:47:
4f:4d:0d:40:ad:7b:2b:d2:32:b8:f2:dc:84:eb:0d:ab:79:e5:
7b:a6:d9:3c:fc:f1:c9:d5:ec:36:5d:b8:d4:91:35:3b:8b:3f:
52:1d:ff:5a:e3:56:0d:e6:50:d3:6f:27:0f:70:20:97:aa:18:
d7:4e:ad:fa:4f:2e:be:c4:ab:6f:57:f1:0b:43:a3:3f:ba:11:
c3:6e:f1:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:23 2023 by rpki-client on console-fra.rpki-client.org