Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/W0FY4Nst73v8wwnc3ObjQopjMcU.roa
File: W0FY4Nst73v8wwnc3ObjQopjMcU.roa (raw, json)
Hash identifier: +UT9K5oCDPEHdtNfqg+Y4KFPFNRBnPR/bnvaYJfittg=
Subject key identifier: 5B:41:58:E0:DB:2D:EF:7B:FC:C3:09:DC:DC:E6:E3:42:8A:63:31:C5
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 05E19275
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/W0FY4Nst73v8wwnc3ObjQopjMcU.roa
Signing time: Sat 01 Jan 2022 11:03:00 +0000
ROA not before: Sat 01 Jan 2022 11:03:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49036
IP address blocks: 93.191.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98669173 (0x5e19275)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Jan 1 11:03:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b4158e0db2def7bfcc309dcdce6e3428a6331c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e5:de:c8:4e:e0:00:b0:e6:bb:e1:e3:9b:c9:
09:0e:56:e8:41:a4:9a:7c:92:15:ba:d0:16:0c:17:
52:e9:a9:9d:8d:39:34:e9:7f:4d:fb:c4:65:12:4d:
53:c6:f9:db:4c:78:d7:22:00:ac:01:66:39:4b:14:
fe:ed:f6:45:06:a1:c7:98:f8:79:61:e9:bf:ac:be:
0b:b0:61:52:72:e5:e6:1f:a2:80:61:e1:c2:40:0d:
d8:e9:2f:7a:96:26:be:28:79:fa:39:65:52:da:a5:
21:88:92:bc:ec:3c:4b:a2:64:fc:e9:40:f8:be:8b:
f7:7b:74:bf:99:e9:99:20:b2:3b:08:94:90:48:54:
94:42:8a:83:59:b9:12:8c:0e:00:47:c2:fc:e2:08:
e9:54:8d:b6:f1:cb:b3:8a:ed:95:67:bd:17:a2:c8:
46:7b:cd:7f:f9:a0:cc:e5:c8:f1:ca:65:d0:8c:00:
a1:5d:e7:68:19:78:c2:f8:29:17:45:5d:38:bb:58:
77:b8:17:62:46:f9:cd:43:05:b6:60:e3:8c:b3:1e:
db:3c:ef:a7:dc:5c:28:1a:54:3b:9b:1b:00:d9:da:
a8:87:ac:c7:a0:ff:35:55:04:2a:5a:25:22:72:40:
83:6a:64:27:8b:4a:2e:f0:f9:e2:6a:fa:64:d5:35:
54:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:41:58:E0:DB:2D:EF:7B:FC:C3:09:DC:DC:E6:E3:42:8A:63:31:C5
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/W0FY4Nst73v8wwnc3ObjQopjMcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.191.171.0/24
Signature Algorithm: sha256WithRSAEncryption
72:3f:8d:d4:0a:3f:89:f3:a7:26:97:d5:06:90:21:b6:6b:ff:
b7:f3:fa:9b:49:73:dd:3d:ad:64:f5:05:89:e3:bf:60:9b:92:
84:cd:d5:d8:ea:a9:b5:e1:3d:35:29:f2:3b:4d:2c:3f:41:03:
a1:77:de:56:4a:2d:a6:6e:d2:78:f2:09:f8:83:d4:02:46:b0:
24:da:4a:98:ab:82:4e:b3:66:6c:d8:9c:cb:e0:b7:18:98:f3:
8b:3e:9b:82:57:9c:a9:f0:d8:4f:8e:f6:13:4b:83:6a:48:e7:
16:04:7c:4c:f0:af:d8:f9:fd:71:d4:36:f6:a8:ea:9c:31:b0:
37:63:0e:33:fc:3a:05:a5:bf:31:1f:a7:fe:98:ab:e7:cd:6d:
44:18:85:31:46:73:78:a9:a8:ca:24:cf:27:6c:a7:76:0b:ca:
91:2b:cd:91:91:48:17:c5:5d:91:db:b6:90:20:b4:64:da:11:
3c:00:cd:0a:43:78:0e:68:7d:ea:78:3d:fd:e5:78:0f:70:45:
94:f4:b1:4e:8c:50:f1:2a:ce:05:df:1c:f7:ce:2d:d5:ad:f2:
3f:08:c4:94:71:65:cc:44:db:9f:75:5b:13:39:df:0f:33:95:
59:92:ca:be:1a:5c:fc:f7:77:2b:be:8a:14:a1:48:98:a3:84:
2d:c7:8d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:41 2023 by rpki-client on console-fra.rpki-client.org