Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/ae1b89-fd48-4b2d-a88e-966be4832815/1/WPLcXmvh2sJ0w324xPmWZeXkOh4.roa
File: WPLcXmvh2sJ0w324xPmWZeXkOh4.roa (raw, json)
Hash identifier: srTd1s0gDLpDdyn0KohR1lHYhEmRYPSOitpZGT5fLew=
Subject key identifier: 58:F2:DC:5E:6B:E1:DA:C2:74:C3:7D:B8:C4:F9:96:65:E5:E4:3A:1E
Certificate issuer: /CN=a4dc8a4e916aa3f78ef78047ac20d0d0f8a950f9
Certificate serial: 4C71
Authority key identifier: A4:DC:8A:4E:91:6A:A3:F7:8E:F7:80:47:AC:20:D0:D0:F8:A9:50:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNyKTpFqo_eO94BHrCDQ0PipUPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/ae1b89-fd48-4b2d-a88e-966be4832815/1/WPLcXmvh2sJ0w324xPmWZeXkOh4.roa
Signing time: Thu 02 Jun 2022 08:25:20 +0000
ROA not before: Thu 02 Jun 2022 08:25:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210302
IP address blocks: 193.202.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19569 (0x4c71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4dc8a4e916aa3f78ef78047ac20d0d0f8a950f9
Validity
Not Before: Jun 2 08:25:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58f2dc5e6be1dac274c37db8c4f99665e5e43a1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:83:29:dd:d3:5e:40:89:99:b3:0a:62:65:24:
54:15:ef:05:e6:41:97:3a:22:11:17:4d:ec:fa:cb:
73:ef:47:a2:46:d3:8b:32:38:d4:ef:ef:45:c9:9a:
36:d7:27:88:3d:37:c0:5c:e1:80:15:cf:03:e3:45:
3a:b7:15:fe:64:ee:6e:86:f9:b3:21:20:5c:fc:5f:
14:ce:8b:d1:25:ed:4d:d0:bd:11:7c:4f:b2:c7:13:
2c:fb:04:e2:ea:4e:53:7b:b0:74:f7:24:2f:a7:f1:
74:6d:6c:22:5b:87:80:47:6c:26:40:71:61:ec:2f:
d4:4c:09:d2:84:25:db:65:11:2a:6c:d7:fe:25:61:
40:e0:4d:13:e8:7d:f1:48:c7:5a:16:fe:f1:d6:81:
d9:26:a4:a0:ce:94:cb:3e:9e:48:6c:48:41:98:4c:
2e:e2:76:4e:02:cf:52:4d:22:6b:d2:1b:bf:71:91:
d4:a2:8b:0c:79:5d:de:20:65:8c:80:33:93:16:36:
58:9b:5e:ff:af:45:15:ca:a3:75:e8:2c:32:bb:89:
1b:9f:b2:93:57:17:ae:ac:8c:f0:c6:1a:28:ef:67:
5c:b1:97:46:0c:ce:d3:52:ad:72:9b:5d:cb:a9:e5:
79:6c:b1:a9:ca:64:09:2e:88:7c:5c:86:fa:a9:b8:
0b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F2:DC:5E:6B:E1:DA:C2:74:C3:7D:B8:C4:F9:96:65:E5:E4:3A:1E
X509v3 Authority Key Identifier:
keyid:A4:DC:8A:4E:91:6A:A3:F7:8E:F7:80:47:AC:20:D0:D0:F8:A9:50:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNyKTpFqo_eO94BHrCDQ0PipUPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/ae1b89-fd48-4b2d-a88e-966be4832815/1/WPLcXmvh2sJ0w324xPmWZeXkOh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/ae1b89-fd48-4b2d-a88e-966be4832815/1/pNyKTpFqo_eO94BHrCDQ0PipUPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.202.40.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:d6:b3:22:41:bc:a4:3f:90:15:7b:e5:56:05:96:c0:95:df:
1b:a9:4d:3c:ca:72:3f:6f:9d:ef:c8:ee:ef:77:84:d4:c5:ef:
29:f2:0c:1b:30:7a:01:8e:68:f6:6b:8c:ca:fc:73:e0:5f:eb:
78:0d:35:3f:8f:59:ac:70:a4:62:28:d8:e5:fe:ca:71:fa:04:
34:82:ec:97:f5:d9:e5:64:40:a3:b3:65:bb:02:c0:2f:de:a4:
64:5c:9f:f1:8e:fc:32:5b:71:38:02:f9:40:d8:04:60:24:92:
4c:ba:c5:79:8d:1f:42:8a:68:f7:78:e0:df:07:60:c3:43:16:
98:23:fa:e9:78:ed:0e:01:28:8a:fc:28:b3:d1:48:c4:d0:91:
f7:c1:06:e9:21:da:eb:07:b8:12:4e:fa:7a:8f:0b:d5:05:17:
52:a6:24:78:c0:bc:26:7e:d3:31:77:56:4e:9d:0d:e5:4f:36:
bc:32:1e:bc:1e:59:cc:c0:18:b4:2d:6a:7f:38:4a:ec:7d:dd:
96:f4:d4:53:aa:34:c2:99:3e:e7:99:e2:e0:19:bf:a0:a4:47:
2d:da:a8:c6:cb:ba:71:14:fe:6a:7f:12:72:44:f5:73:8a:dc:
05:e5:d5:81:a1:e1:75:4d:7c:78:3a:57:d6:3d:75:96:98:2b:
50:79:7d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:02 2025 by rpki-client