Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/WaIJyOte_t6oEtkG33ndpudtZls.roa
File: WaIJyOte_t6oEtkG33ndpudtZls.roa (raw, json)
Hash identifier: RC9jdF5z4JLODooL2kl+XxuPlPrSXgAtxcsxJOeTWSo=
Subject key identifier: 59:A2:09:C8:EB:5E:FE:DE:A8:12:D9:06:DF:79:DD:A6:E7:6D:66:5B
Certificate issuer: /CN=943e3f4856dac2a005c3a52347114dec453934b8
Certificate serial: 3DED5359
Authority key identifier: 94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/WaIJyOte_t6oEtkG33ndpudtZls.roa
Signing time: Sat 01 Jan 2022 06:58:04 +0000
ROA not before: Sat 01 Jan 2022 06:58:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 176.127.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1038963545 (0x3ded5359)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943e3f4856dac2a005c3a52347114dec453934b8
Validity
Not Before: Jan 1 06:58:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59a209c8eb5efedea812d906df79dda6e76d665b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cd:f5:fc:dc:ee:a2:5e:de:00:67:1c:ca:a5:
a0:e9:f3:48:d1:81:21:66:d9:14:ee:64:fd:7d:61:
9c:d4:61:56:c0:c7:60:7e:60:18:0e:ff:14:89:31:
7c:b4:93:5a:86:d4:97:29:83:38:a0:e4:47:be:eb:
e0:3c:92:2a:75:4d:91:c5:f5:a4:ac:58:97:40:13:
b2:fa:a4:b5:91:a9:ae:31:1f:32:b3:56:60:36:d2:
de:10:c7:71:5f:cf:e3:b7:6d:fc:41:94:64:0b:b7:
c4:87:61:84:c4:41:ee:45:28:8b:d9:77:66:c8:8f:
3f:92:82:50:bf:7e:62:4b:3c:06:8a:a4:16:36:35:
c6:b9:85:5c:f2:49:3e:00:94:2f:08:2e:b1:8b:79:
2a:7e:27:b0:74:61:5f:65:9f:52:2f:e7:6c:06:08:
7e:1f:8d:c6:53:90:7e:72:d2:d6:b0:a9:ac:33:ab:
b6:1f:8f:c3:35:69:a0:97:32:c5:0d:64:6d:45:48:
93:a3:84:58:94:46:f5:c3:16:0e:54:19:b9:23:e2:
68:85:25:6b:86:b6:ed:0a:2a:17:b3:96:e7:98:d0:
68:e0:7b:98:13:f4:31:d5:c6:db:6b:64:8f:69:28:
42:dc:9a:f4:35:31:aa:6f:48:a4:4b:ae:45:7a:ea:
32:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A2:09:C8:EB:5E:FE:DE:A8:12:D9:06:DF:79:DD:A6:E7:6D:66:5B
X509v3 Authority Key Identifier:
keyid:94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/WaIJyOte_t6oEtkG33ndpudtZls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/lD4_SFbawqAFw6UjRxFN7EU5NLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.127.0.0/17
Signature Algorithm: sha256WithRSAEncryption
44:ef:2e:ac:80:ec:b9:b2:ef:93:01:2d:9f:c1:32:fa:65:88:
ed:94:97:58:ad:65:6e:34:58:f8:9e:80:01:30:9f:8f:5c:18:
55:fc:79:e6:8f:ec:c0:63:a8:b0:b9:e8:ed:05:3b:df:f1:57:
4f:ef:59:ef:22:a9:6f:84:c9:9e:ea:0b:ce:32:03:70:c6:51:
65:dc:83:99:b0:43:42:19:53:63:26:a4:cb:89:ad:32:ee:ab:
ac:cb:75:02:9c:6c:5d:26:94:92:18:c9:d4:0e:54:7b:d0:51:
cc:3a:43:de:63:31:9b:75:30:38:f0:5f:b7:89:2c:b8:83:8a:
4c:26:e0:c9:3a:56:aa:89:e1:81:02:c5:fd:57:84:17:36:e2:
20:ec:04:59:97:c7:1e:ca:52:84:eb:ef:51:48:7d:a0:b0:c0:
22:a4:b0:3c:88:45:fa:0a:5c:10:45:d0:9a:d9:dd:15:03:ea:
cc:4e:7d:10:0a:bd:ca:07:ad:38:7b:09:19:83:5a:f9:b5:b8:
f9:61:37:ee:6a:9c:2b:e5:6e:d5:e5:fa:43:5f:6a:b0:ec:3c:
4f:36:da:7d:20:9b:e6:25:b1:d7:25:60:32:da:a7:81:72:9e:
8f:b8:11:af:db:34:f7:69:a8:c7:c2:ef:bf:a2:f7:22:68:0b:
08:1f:01:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:12 2023 by rpki-client on console-ams.rpki-client.org