Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/WIY0pepdpKZbFuKA060DQmtLTOQ.roa
File: WIY0pepdpKZbFuKA060DQmtLTOQ.roa (raw, json)
Hash identifier: KMK4TGPpTqJp9/hnaswVruwu9WVg7/DZF+wk4vT/pBA=
Subject key identifier: 58:86:34:A5:EA:5D:A4:A6:5B:16:E2:80:D3:AD:03:42:6B:4B:4C:E4
Certificate issuer: /CN=dd97c7ca05bcc3d6a2ad1ba235bed8feab694550
Certificate serial: 0184CC61518D2A7B25FB336D7694E54F0ED3
Authority key identifier: DD:97:C7:CA:05:BC:C3:D6:A2:AD:1B:A2:35:BE:D8:FE:AB:69:45:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ZfHygW8w9airRuiNb7Y_qtpRVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/WIY0pepdpKZbFuKA060DQmtLTOQ.roa
Signing time: Thu 01 Dec 2022 06:30:40 +0000
ROA not before: Thu 01 Dec 2022 06:30:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51407
IP address blocks: 185.71.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cc:61:51:8d:2a:7b:25:fb:33:6d:76:94:e5:4f:0e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd97c7ca05bcc3d6a2ad1ba235bed8feab694550
Validity
Not Before: Dec 1 06:30:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=588634a5ea5da4a65b16e280d3ad03426b4b4ce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d5:03:a1:8b:46:e7:7b:e5:e9:b8:1e:6b:dd:
cd:64:df:fd:86:7d:5e:36:1c:81:c6:7b:e3:de:a8:
de:16:02:6b:c0:0d:49:e5:ec:ce:5c:f8:3e:9b:e2:
5d:02:73:19:47:99:c7:99:21:fb:20:32:ea:ff:f0:
f3:ee:aa:3a:3e:3a:62:60:8d:62:5d:85:41:2e:e0:
08:0b:52:c9:d9:c3:8d:f4:dc:e7:24:fe:af:4e:77:
ad:2b:d3:86:30:00:7d:14:64:74:59:c7:97:f8:38:
e4:5b:26:18:0e:44:c4:c3:94:d8:1d:a1:13:57:ce:
f7:a1:59:b2:7f:b8:83:ad:f6:ae:29:f1:f0:ba:4e:
a5:95:e7:3d:d2:27:38:01:0e:60:76:a1:7f:49:ae:
cf:b6:a2:02:37:23:b7:40:bd:0d:f6:75:1c:9c:bc:
4d:62:e3:ed:26:52:df:9c:c3:09:45:dd:82:bc:c9:
0f:8d:7d:08:49:f7:c2:f8:5d:95:c6:a3:6e:ae:d4:
30:e5:c4:a6:2e:d6:32:b5:cd:f2:00:c7:5a:89:64:
8f:0a:18:85:0f:ef:eb:ce:52:cd:e3:cd:d7:f2:6b:
c1:35:82:93:09:0c:00:14:ce:bc:e4:69:0d:52:8c:
8e:64:41:70:8c:7f:d4:10:f4:85:c4:9b:d6:3a:62:
01:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:86:34:A5:EA:5D:A4:A6:5B:16:E2:80:D3:AD:03:42:6B:4B:4C:E4
X509v3 Authority Key Identifier:
keyid:DD:97:C7:CA:05:BC:C3:D6:A2:AD:1B:A2:35:BE:D8:FE:AB:69:45:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ZfHygW8w9airRuiNb7Y_qtpRVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/WIY0pepdpKZbFuKA060DQmtLTOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/3ZfHygW8w9airRuiNb7Y_qtpRVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.140.0/22
Signature Algorithm: sha256WithRSAEncryption
93:24:cb:21:80:5a:f5:69:2d:88:8d:62:54:02:77:67:e5:b2:
e3:dd:a4:20:27:16:84:17:fa:92:6f:f3:68:00:da:db:ae:99:
c8:d0:ab:79:cb:d9:61:e5:b0:f5:3c:94:24:d2:d8:80:0d:a8:
e1:ec:b4:d9:b7:41:19:a1:00:c7:8f:ec:a5:be:88:56:3c:c6:
a8:d0:8a:ae:f8:ee:0b:57:27:dc:da:c3:2b:d9:57:e4:40:7b:
65:a6:c7:89:c3:19:2c:cb:cc:0a:ca:a5:0d:eb:b6:29:26:e2:
16:37:43:8a:59:b4:9f:bb:0c:e2:6d:58:11:d4:23:fa:2a:c6:
f5:60:75:ba:3b:05:56:5b:a6:f5:58:c5:3f:81:6d:91:af:bd:
8b:c5:27:46:68:c3:11:e0:34:20:9d:21:9f:b7:dc:0e:05:cd:
5b:ff:04:5f:0d:8b:61:13:fb:97:64:2a:3f:a5:07:db:17:c6:
90:9f:46:7a:ea:83:b0:a1:c7:f9:c8:19:d7:3c:37:e6:9c:4a:
45:44:d5:31:c8:42:ff:7f:ab:44:d5:39:95:e2:2d:96:0d:53:
c2:ca:43:bc:73:77:e4:6a:26:ea:f3:ff:04:37:67:b2:a2:6f:
93:f5:4c:e3:2b:d0:0d:c5:7b:a6:3b:38:85:87:15:37:3b:7f:
0c:76:30:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:03 2023 by rpki-client on console-fra.rpki-client.org