Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/a39138-f4f1-4259-a4b9-acd87c546048/1/WcG9PP9EFXQuy2Adf9YAwNcV_Zk.roa
File: WcG9PP9EFXQuy2Adf9YAwNcV_Zk.roa (raw, json)
Hash identifier: RctQ03AnzcMazlF853pJVsWfnsDOYjuQmCgJ9HtqpTY=
Subject key identifier: 59:C1:BD:3C:FF:44:15:74:2E:CB:60:1D:7F:D6:00:C0:D7:15:FD:99
Certificate issuer: /CN=a9480cf18fd7859df9ad997940013a99b8dee374
Certificate serial: 11F87BFF
Authority key identifier: A9:48:0C:F1:8F:D7:85:9D:F9:AD:99:79:40:01:3A:99:B8:DE:E3:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUgM8Y_XhZ35rZl5QAE6mbje43Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/a39138-f4f1-4259-a4b9-acd87c546048/1/WcG9PP9EFXQuy2Adf9YAwNcV_Zk.roa
Signing time: Sat 01 Jan 2022 04:51:10 +0000
ROA not before: Sat 01 Jan 2022 04:51:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50304
IP address blocks: 185.91.64.0/22 maxlen: 24
2a05:e880::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 301497343 (0x11f87bff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9480cf18fd7859df9ad997940013a99b8dee374
Validity
Not Before: Jan 1 04:51:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59c1bd3cff4415742ecb601d7fd600c0d715fd99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:64:0a:1b:3d:de:9d:c3:8f:47:71:f3:2d:b0:
aa:b9:31:70:ea:44:05:df:46:c5:05:a2:da:a0:a7:
17:d1:94:05:44:d8:ef:12:8d:f5:67:7b:02:5b:35:
1e:be:de:c3:e0:ab:dc:8b:fc:5b:9a:8f:40:a0:f4:
b1:7a:b0:61:66:f2:a0:52:aa:51:aa:db:bf:2d:a5:
ae:a7:77:0e:16:fa:bc:d3:6e:7f:f4:bb:a6:42:9f:
32:0e:f7:0f:35:a9:91:b8:aa:36:46:81:81:0d:cb:
e9:f2:cf:71:fe:46:d6:ca:d2:d0:65:fb:bc:49:ba:
41:7a:a1:d2:97:b7:7f:84:a8:96:13:71:32:39:d4:
34:6b:8c:60:b6:65:34:15:4f:29:73:5c:53:c5:47:
f3:b9:3b:2a:86:57:d8:55:bf:34:e9:05:87:0d:30:
36:bf:a6:09:c0:d9:a5:83:cb:4c:d8:09:9d:2f:35:
75:81:07:2e:b1:1f:4c:b7:1f:3e:d9:b4:71:ec:60:
ad:84:a1:0e:b5:52:ff:e2:6c:56:28:1f:b9:e2:e0:
eb:90:e8:aa:a7:49:9e:cd:42:35:87:b1:63:b9:73:
14:fd:87:4b:fe:f1:11:b4:5d:d4:cc:af:9b:b6:06:
ba:83:59:fc:5d:5d:11:d4:04:a6:6a:28:34:94:d6:
24:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C1:BD:3C:FF:44:15:74:2E:CB:60:1D:7F:D6:00:C0:D7:15:FD:99
X509v3 Authority Key Identifier:
keyid:A9:48:0C:F1:8F:D7:85:9D:F9:AD:99:79:40:01:3A:99:B8:DE:E3:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUgM8Y_XhZ35rZl5QAE6mbje43Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/a39138-f4f1-4259-a4b9-acd87c546048/1/WcG9PP9EFXQuy2Adf9YAwNcV_Zk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/a39138-f4f1-4259-a4b9-acd87c546048/1/qUgM8Y_XhZ35rZl5QAE6mbje43Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.64.0/22
IPv6:
2a05:e880::/29
Signature Algorithm: sha256WithRSAEncryption
0c:4b:5d:41:ea:b2:ae:79:32:77:96:df:e1:23:0e:0b:52:7b:
e7:71:f0:f8:f0:f0:2f:82:54:1d:88:2a:a5:aa:e2:9c:4f:e6:
3f:e0:17:e3:ec:c6:d7:44:6f:78:69:a4:53:72:dc:f8:45:7f:
4c:9c:a3:16:0f:7c:49:b6:70:00:c7:a4:c5:d2:98:b1:5b:f2:
ed:5d:66:19:0a:f9:40:3b:ef:14:1d:83:de:36:fc:2a:f7:6f:
6a:6e:ef:2d:ee:a1:5d:04:65:6c:f2:2c:20:4a:70:41:90:2f:
e1:99:22:95:8b:78:b1:92:06:15:ca:e5:3c:08:02:45:cd:68:
92:6c:a7:0e:df:3e:47:32:c9:76:d2:70:29:6a:d0:90:5d:20:
08:d6:22:43:45:01:07:81:a1:4b:3c:f5:e1:23:aa:e5:9a:1f:
15:28:f8:2c:ca:da:c3:62:49:49:42:c6:26:76:21:d9:85:e7:
14:ff:79:78:26:54:61:6f:54:b9:9f:44:1c:4f:39:ea:26:ab:
cf:20:92:c9:3b:c0:70:4f:d8:9d:38:90:54:2f:d8:bf:f0:70:
99:e4:b1:3f:de:cf:3e:76:87:e4:fa:66:9a:79:e8:e9:94:e1:
e4:0e:70:2d:b8:67:64:c9:b1:a9:cc:9f:a5:e0:4d:7c:9b:fe:
5a:96:94:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:09 2024 by rpki-client on console-fra.rpki-client.org