Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/WhYeczdxJM88NoHHlUlgU1iJY6o.roa
File: WhYeczdxJM88NoHHlUlgU1iJY6o.roa (raw, json)
Hash identifier: wu19GZW0i56llrv7Uf3UQlhBSuzUgdqIVTWDoZno2dg=
Subject key identifier: 5A:16:1E:73:37:71:24:CF:3C:36:81:C7:95:49:60:53:58:89:63:AA
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 018287F51A4803E3190320DA6EC636EAC999
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/WhYeczdxJM88NoHHlUlgU1iJY6o.roa
Signing time: Wed 10 Aug 2022 13:32:43 +0000
ROA not before: Wed 10 Aug 2022 13:32:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 45.132.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:87:f5:1a:48:03:e3:19:03:20:da:6e:c6:36:ea:c9:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Aug 10 13:32:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a161e73377124cf3c3681c795496053588963aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f1:42:d6:aa:51:78:66:67:fb:ae:86:a8:67:
cc:11:d0:20:13:9e:f0:fb:11:0d:3f:7c:26:ec:90:
01:21:8d:f4:08:d4:46:cb:8f:3c:b1:7b:24:95:0b:
b9:1b:50:07:d0:57:e6:2c:03:68:c0:50:dd:c6:38:
e8:c4:2b:ab:fe:52:47:12:ae:76:0a:6e:11:f2:97:
ed:44:d0:32:e5:51:31:57:9c:5f:e1:d2:95:44:2a:
c0:bc:17:cd:5f:1f:a0:d9:c1:2b:46:ce:d2:ce:40:
17:01:76:27:99:c2:73:f0:bc:a4:cd:ce:1e:44:81:
cc:cc:88:42:a5:d7:24:69:01:ff:a5:1c:21:ac:4c:
a8:9f:0c:47:fd:4d:c2:5d:1d:d3:1f:5f:2b:9f:cb:
aa:7a:40:bd:fc:ff:99:60:04:ee:a2:87:ae:05:62:
4c:ae:6b:a0:e0:54:ec:f9:2a:b6:27:16:48:b0:23:
fa:63:a3:53:07:dc:76:ad:98:e6:68:49:cd:bb:f3:
18:cd:a7:82:af:1f:c9:52:b7:3f:27:e4:c5:bd:1d:
d1:30:86:52:06:20:85:75:3e:e2:34:f0:1a:e2:bb:
fc:d2:9d:01:65:a1:5a:7e:4e:48:63:08:85:ce:36:
ec:20:a4:4d:23:35:d7:b0:6f:25:5c:3a:1b:ba:75:
8a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:16:1E:73:37:71:24:CF:3C:36:81:C7:95:49:60:53:58:89:63:AA
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/WhYeczdxJM88NoHHlUlgU1iJY6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.25.0/24
Signature Algorithm: sha256WithRSAEncryption
41:0c:a7:20:5c:ea:c1:f9:4e:e8:78:37:85:2f:81:cc:43:04:
c4:be:c9:12:cc:60:e3:97:8f:d5:47:87:a4:50:59:76:75:a3:
90:e9:d6:60:4f:70:76:85:92:f6:ca:5b:39:22:95:28:60:63:
e9:b3:76:01:22:9d:2d:b1:ad:80:83:eb:13:0e:c2:33:5d:87:
29:a1:ed:13:d1:fd:e2:bc:99:53:8b:4a:a9:19:01:f8:12:96:
b9:b9:b1:d1:67:08:6c:58:90:67:c0:63:a9:32:96:00:00:f6:
f5:dd:92:45:6b:e0:dc:95:a5:a7:25:82:9a:71:a1:63:fe:87:
57:1f:f1:89:07:bc:79:d5:30:de:e1:70:4a:e3:bf:52:60:71:
30:50:38:f4:37:4c:db:14:ff:ff:f3:b1:97:e8:28:ea:c6:8f:
c4:4c:43:29:23:c8:63:2f:cb:4e:88:dc:09:95:e6:29:b7:a6:
ac:5d:54:6e:06:58:31:7b:7a:a9:45:58:44:c2:27:7d:57:cc:
be:93:de:d8:d0:ad:40:ed:51:14:2d:81:f9:d4:66:da:af:2c:
43:5d:90:12:5d:81:dc:67:18:f8:65:4b:46:78:66:5a:18:44:
8f:24:71:fd:f4:23:c3:fb:bf:58:db:9f:87:53:3f:9f:fb:ac:
f6:3b:bb:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:47 2023 by rpki-client on console-fra.rpki-client.org