Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/wFgrBwucjvxSo7Eneny0UAWMPVQ.roa
File: wFgrBwucjvxSo7Eneny0UAWMPVQ.roa (raw, json)
Hash identifier: 72N/Qsrkz9/dVeyxQ2VpaRmGYeRgrP5YkkarlYpb8ec=
Subject key identifier: C0:58:2B:07:0B:9C:8E:FC:52:A3:B1:27:7A:7C:B4:50:05:8C:3D:54
Certificate issuer: /CN=84f430d9ad9cb9c42c4bd6690e9f5812a457a02f
Certificate serial: 01F1924D
Authority key identifier: 84:F4:30:D9:AD:9C:B9:C4:2C:4B:D6:69:0E:9F:58:12:A4:57:A0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/wFgrBwucjvxSo7Eneny0UAWMPVQ.roa
Signing time: Sat 01 Jan 2022 09:03:44 +0000
ROA not before: Sat 01 Jan 2022 09:03:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39396
IP address blocks: 185.251.39.0/24 maxlen: 24
2a10:bac0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32608845 (0x1f1924d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f430d9ad9cb9c42c4bd6690e9f5812a457a02f
Validity
Not Before: Jan 1 09:03:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0582b070b9c8efc52a3b1277a7cb450058c3d54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e5:9e:b7:56:3a:44:24:4b:a1:53:5f:2f:93:
d7:c9:60:d9:b1:74:2e:b9:8d:35:01:95:66:9a:63:
7a:cb:12:01:19:a0:62:9c:c5:26:f5:a1:4b:c8:55:
10:5e:7b:c2:e9:ea:60:37:f5:55:1e:35:37:f6:09:
01:31:2c:fc:da:de:51:2a:43:1a:dd:0e:98:69:93:
0b:fb:39:68:a4:c9:3b:e0:95:8f:dc:c8:ae:71:8c:
58:3f:4f:c3:76:40:de:17:75:e0:98:b9:92:54:09:
72:83:4b:5e:b7:12:82:91:6f:7c:62:50:ee:02:b1:
ca:9a:87:97:47:2b:c5:7c:e6:ae:f5:6e:82:b7:0d:
b7:ca:89:7b:92:54:18:4b:a0:52:ef:61:c8:1a:1f:
ff:64:d8:b9:1e:1a:5d:41:73:af:1a:f8:0e:ce:d8:
d5:b9:24:1e:93:36:4d:ae:89:0e:f2:3f:29:cd:5a:
36:41:81:2d:fb:88:d4:9e:0c:b5:1d:5d:1a:b3:d0:
bc:3a:05:90:6f:5d:01:22:9f:d3:e2:e7:7a:fa:f5:
20:82:0e:d7:9f:55:94:96:51:de:88:84:cc:4a:86:
46:27:76:6f:d9:f5:0a:66:e4:c9:28:f1:b0:be:ce:
5c:50:fe:23:35:13:a0:f5:44:ef:f2:27:ab:2d:3d:
7e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:58:2B:07:0B:9C:8E:FC:52:A3:B1:27:7A:7C:B4:50:05:8C:3D:54
X509v3 Authority Key Identifier:
keyid:84:F4:30:D9:AD:9C:B9:C4:2C:4B:D6:69:0E:9F:58:12:A4:57:A0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/wFgrBwucjvxSo7Eneny0UAWMPVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.39.0/24
IPv6:
2a10:bac0::/32
Signature Algorithm: sha256WithRSAEncryption
13:95:69:31:7d:9a:b4:4e:f2:83:24:6e:8b:53:14:54:63:f0:
2e:f8:77:ed:47:b0:0b:f9:33:0d:4c:ee:21:a5:d3:25:57:26:
74:17:12:8d:a5:a4:e9:03:58:95:f5:0c:e9:a8:5c:79:e2:ed:
bc:c3:44:33:da:6a:90:68:10:04:1a:26:6e:5c:ba:24:ab:2c:
8b:25:93:23:0e:b3:e8:fe:be:b6:51:78:98:24:ac:96:62:c4:
b5:4d:9f:e9:ba:1d:80:7e:7f:99:ca:f0:a2:b0:eb:01:c4:9f:
62:56:f8:cd:99:6a:32:b3:fb:a8:96:3c:01:fe:fe:b5:53:7a:
34:c0:63:42:cc:b6:57:0b:ef:53:59:3e:13:83:ef:c8:30:f6:
72:e1:d6:13:50:b5:c6:92:e2:7e:7d:36:c3:7c:c5:ed:47:29:
83:46:52:6f:ce:f4:d0:ea:7f:49:9f:7e:f8:04:f9:ed:a0:6c:
bf:08:11:f1:ab:26:60:5a:3c:7e:4f:67:c9:7f:d0:d5:50:22:
05:7e:bb:36:46:a6:93:87:ec:9a:82:29:7a:f0:4e:31:88:90:
6f:dd:dc:ed:22:e9:d3:69:31:3f:40:b6:f0:d8:af:ee:6c:3a:
d6:c8:8b:7d:f2:bc:3f:70:17:df:ea:aa:81:3c:fd:61:66:1b:
4c:5f:fc:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:47 2024 by rpki-client on console-fra.rpki-client.org