Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/01e7df-1410-491f-a71b-55830f9edde4/1/wavGfECSTY3RXkp32SQyi2JlABM.roa
File: wavGfECSTY3RXkp32SQyi2JlABM.roa (raw, json)
Hash identifier: PYdGieizLiaDJ7Q+yk6FMU/txNmnZNDjBpuAwPJ5JPM=
Subject key identifier: C1:AB:C6:7C:40:92:4D:8D:D1:5E:4A:77:D9:24:32:8B:62:65:00:13
Certificate issuer: /CN=4c6319fe7859c342f7cd9f711306f56590828d60
Certificate serial: 01838EF33AF796364A92CC03FA477182AFEA
Authority key identifier: 4C:63:19:FE:78:59:C3:42:F7:CD:9F:71:13:06:F5:65:90:82:8D:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TGMZ_nhZw0L3zZ9xEwb1ZZCCjWA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/01e7df-1410-491f-a71b-55830f9edde4/1/wavGfECSTY3RXkp32SQyi2JlABM.roa
Signing time: Fri 30 Sep 2022 15:10:48 +0000
ROA not before: Fri 30 Sep 2022 15:10:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202666
IP address blocks: 89.40.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8e:f3:3a:f7:96:36:4a:92:cc:03:fa:47:71:82:af:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c6319fe7859c342f7cd9f711306f56590828d60
Validity
Not Before: Sep 30 15:10:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1abc67c40924d8dd15e4a77d924328b62650013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0f:87:72:72:a7:8c:09:d1:09:c0:19:ea:b2:
9a:d7:c9:c8:aa:01:a1:32:9a:d7:f0:3a:47:2f:cd:
24:12:6b:c9:0b:ec:f0:40:9f:75:34:93:07:db:ea:
e1:e2:00:62:cc:48:a5:42:9d:f5:42:5d:e1:af:23:
26:43:4d:12:f0:73:ec:94:1a:50:d5:bb:47:a7:a7:
c7:61:cf:8c:20:16:8f:fc:51:25:ba:ab:7d:ee:6c:
9b:ae:34:c6:ec:91:5f:5f:fb:fa:ba:a6:2d:48:be:
8b:c1:37:6e:af:18:82:67:01:de:a2:da:ba:d5:e0:
d8:8d:40:00:aa:67:3c:85:66:7b:3f:b4:87:1d:ad:
83:50:60:a2:57:ae:f0:ff:0e:fc:7c:7b:c8:bb:c5:
72:c6:53:f3:dc:99:2f:38:f9:9b:cf:2b:57:40:4f:
a1:7c:8f:b4:e1:ee:96:f2:9f:8b:f5:19:ac:b5:64:
6c:ca:19:45:76:09:ff:f0:e2:6f:38:9d:4a:44:b0:
24:bf:61:3d:06:1a:4e:d8:81:47:ea:7f:19:7d:f7:
0a:5d:86:fa:49:5a:bf:3b:ce:2a:37:cb:ee:8b:c8:
d9:47:1e:94:27:dc:71:49:f0:83:6d:14:e9:a1:39:
05:5a:66:1f:e8:a1:dc:24:7e:86:29:4b:7a:ad:a9:
e2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:AB:C6:7C:40:92:4D:8D:D1:5E:4A:77:D9:24:32:8B:62:65:00:13
X509v3 Authority Key Identifier:
keyid:4C:63:19:FE:78:59:C3:42:F7:CD:9F:71:13:06:F5:65:90:82:8D:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TGMZ_nhZw0L3zZ9xEwb1ZZCCjWA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/01e7df-1410-491f-a71b-55830f9edde4/1/wavGfECSTY3RXkp32SQyi2JlABM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/01e7df-1410-491f-a71b-55830f9edde4/1/TGMZ_nhZw0L3zZ9xEwb1ZZCCjWA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.168.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:d5:db:e2:05:a5:41:5f:ed:79:3b:4c:08:99:4e:eb:63:4b:
31:96:4f:38:8e:d0:dc:50:e1:ae:bb:51:cb:6b:29:a7:14:bf:
14:8b:24:c4:1c:da:13:23:95:28:cd:97:12:ec:5b:17:d3:77:
25:ed:fb:9f:96:8e:28:bb:96:e5:da:d2:7d:75:0f:32:08:d3:
bc:6e:10:42:86:7e:de:ad:33:01:0b:25:8e:c6:9b:92:f1:e0:
92:e2:9b:5d:6c:8e:9a:ac:17:bf:28:12:0e:94:6a:8d:64:f6:
9c:2e:42:5c:18:8d:dd:8b:00:d2:0d:92:0a:26:cc:fd:f4:8e:
06:e4:d5:a2:bd:cf:40:47:ba:2b:02:56:7c:60:67:6d:4b:d7:
d9:e2:11:b2:bf:3b:52:d2:3e:fb:06:81:32:90:32:0d:13:3a:
17:43:d4:09:3f:cb:3c:c1:d7:8b:bd:a2:92:dd:fe:08:9a:71:
33:e1:fe:48:c1:f2:dd:73:ae:0d:5b:1c:6f:e4:66:4b:eb:cc:
f2:e7:f1:e6:90:48:61:9a:d1:85:40:08:a6:4a:74:7d:cf:16:
04:3c:04:6e:c0:8c:3c:f6:e0:5c:a6:fc:22:4f:4a:a9:2b:b9:
cb:34:11:be:a6:91:e5:f7:c8:ba:10:3b:85:4d:48:cb:39:89:
f4:c2:6c:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:20 2023 by rpki-client on console-ams.rpki-client.org