Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/wm9qs0lA29_-MLsguXW2jMnbGvQ.roa
File: wm9qs0lA29_-MLsguXW2jMnbGvQ.roa (raw, json)
Hash identifier: SEJXj067FyzZLG2iAzyVr4gtsxpP7jehXahZnZKSMXg=
Subject key identifier: C2:6F:6A:B3:49:40:DB:DF:FE:30:BB:20:B9:75:B6:8C:C9:DB:1A:F4
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 132B6610
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/wm9qs0lA29_-MLsguXW2jMnbGvQ.roa
Signing time: Sat 01 Jan 2022 04:02:58 +0000
ROA not before: Sat 01 Jan 2022 04:02:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48024
IP address blocks: 178.173.224.0/19 maxlen: 24
91.132.57.0/24 maxlen: 24
213.173.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321611280 (0x132b6610)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 1 04:02:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c26f6ab34940dbdffe30bb20b975b68cc9db1af4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f0:64:ed:e4:c8:3c:de:e8:b3:d3:66:d8:51:
55:ba:94:73:8c:c5:3c:b1:ce:48:d0:b7:a5:d9:6b:
55:1e:21:38:e4:a1:30:64:76:5a:5d:7f:e5:ee:a0:
03:b6:63:45:da:0d:16:99:80:62:26:16:b0:6c:d9:
56:ef:8f:41:a1:59:cf:9a:58:1f:39:2b:89:bb:d1:
ba:14:95:a8:f3:6b:2c:6f:41:8b:30:cb:b5:d5:fc:
d4:1b:2c:35:01:11:b5:5b:3c:a1:fd:66:e9:b5:13:
2f:b2:e4:8b:e1:ae:5d:c9:e1:89:81:e8:0e:64:15:
4d:8a:9b:26:f0:6a:52:b7:e4:cb:ba:8c:70:67:35:
d3:b4:b8:84:97:b9:d3:f8:2b:5b:c4:2f:52:8b:2c:
6f:ff:38:97:38:c8:df:30:86:14:6d:f4:01:3c:da:
67:20:01:49:9e:76:ce:2a:e4:00:3a:7a:88:b3:56:
dc:7e:ec:1c:70:49:38:2c:86:80:3d:22:0c:7a:93:
f1:39:d9:0d:9e:ba:03:b7:b5:be:4b:92:e1:04:22:
e8:c7:b6:e4:7f:f5:4f:31:a0:f0:97:68:8a:b7:69:
f6:2c:ba:64:04:62:a3:8c:36:fb:82:1d:00:b5:06:
d8:9f:69:50:bd:83:bb:51:31:27:80:0e:11:c9:e9:
2a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:6F:6A:B3:49:40:DB:DF:FE:30:BB:20:B9:75:B6:8C:C9:DB:1A:F4
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/wm9qs0lA29_-MLsguXW2jMnbGvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.57.0/24
178.173.224.0/19
213.173.32.0/22
Signature Algorithm: sha256WithRSAEncryption
46:6b:9d:3f:e8:52:9d:f8:36:de:47:3d:37:c9:21:33:fd:08:
92:41:43:d0:a3:98:6c:ac:45:cf:bb:30:96:ad:0b:62:b3:7d:
c5:a8:59:21:f2:ca:31:6b:99:3d:8b:38:ff:b8:69:2a:23:ea:
8a:2f:59:b3:fc:9f:94:00:b9:06:15:a3:3a:22:73:40:7e:92:
a2:78:c0:55:e5:bc:26:07:3e:44:04:ad:2b:cb:8e:6e:ed:e1:
7d:4b:c2:fa:bd:cd:2a:33:8b:9e:eb:e6:76:ef:09:64:68:c5:
1f:86:8a:b9:db:61:f4:ab:b9:39:c3:34:b8:ec:02:0d:ba:4a:
88:d3:af:2c:3d:bf:b9:88:f9:ce:a7:b8:83:3e:73:fe:0b:68:
28:7c:ce:e6:d8:48:1f:c2:92:d8:29:05:4a:57:ae:50:34:cc:
a7:71:c2:03:87:1d:47:93:86:31:8d:78:1d:b8:2c:9b:76:b4:
93:53:b0:b7:2b:5c:d8:7f:cf:64:1b:1c:eb:5f:e7:b8:7b:7f:
c2:c0:b2:c9:81:3c:1f:fc:63:df:b6:1f:4a:aa:77:9a:cf:59:
26:da:d8:d0:24:19:16:81:e5:4d:46:32:23:20:19:ce:45:45:
94:a7:0a:2f:93:91:8a:44:c5:04:f3:5d:24:c5:c8:66:e2:0c:
cd:3e:55:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:45 2023 by rpki-client on console-fra.rpki-client.org