Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/f6cfd7-a228-4591-9ef5-5f4b87ada4b5/1/waaxQBM9uvDQPEl8MUbIh7Kk3_0.roa
File: waaxQBM9uvDQPEl8MUbIh7Kk3_0.roa (raw, json)
Hash identifier: YkUh5sTryVZvn8J1Bb6mqrX1LcboqaoaKvdGAY1Ei9A=
Subject key identifier: C1:A6:B1:40:13:3D:BA:F0:D0:3C:49:7C:31:46:C8:87:B2:A4:DF:FD
Certificate issuer: /CN=a3190f6efd79ea7333f9bccd85a04352d915b239
Certificate serial: 053073A5
Authority key identifier: A3:19:0F:6E:FD:79:EA:73:33:F9:BC:CD:85:A0:43:52:D9:15:B2:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oxkPbv156nMz-bzNhaBDUtkVsjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/f6cfd7-a228-4591-9ef5-5f4b87ada4b5/1/waaxQBM9uvDQPEl8MUbIh7Kk3_0.roa
Signing time: Sat 01 Jan 2022 06:02:09 +0000
ROA not before: Sat 01 Jan 2022 06:02:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50343
IP address blocks: 109.233.152.0/21 maxlen: 24
185.169.112.0/22 maxlen: 24
2a01:8780::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87061413 (0x53073a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3190f6efd79ea7333f9bccd85a04352d915b239
Validity
Not Before: Jan 1 06:02:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1a6b140133dbaf0d03c497c3146c887b2a4dffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:90:0c:63:ba:f5:f3:93:72:e4:43:46:5c:fa:
57:4d:26:4f:da:1f:ae:50:7a:f8:32:cd:9e:5e:a9:
8d:a7:6c:ff:00:52:ac:0c:aa:8e:8c:6b:43:52:95:
b3:e2:38:f1:c4:de:43:f1:55:1a:0e:22:02:66:30:
19:03:3b:0e:dd:39:01:d4:81:d0:21:a2:5d:2b:b3:
a1:de:09:7e:99:ae:b3:26:d8:ba:4f:13:e7:46:7a:
77:a6:3c:48:4f:fc:56:29:42:77:7a:9b:18:e1:b8:
19:27:62:47:2f:e2:48:b7:57:ee:8a:8b:d1:be:ab:
7e:d5:b8:73:35:8c:6f:ea:8c:18:40:f2:de:3b:a2:
25:9d:e6:9b:01:ee:36:77:4a:23:b2:f9:af:51:2b:
65:dd:c0:88:52:12:47:04:a8:cc:aa:e0:30:42:fe:
26:48:a6:c4:a3:74:4e:15:93:36:4d:2b:42:19:2d:
43:d0:74:f5:85:a7:4b:87:5d:59:4f:8a:c3:cd:51:
a9:d8:da:19:ab:8c:82:16:7d:cd:5f:f3:85:40:41:
af:e8:57:27:c2:ae:d3:a9:ab:ba:b5:74:93:3f:e4:
9e:23:1a:1f:e1:25:df:ff:d5:1e:ec:01:0c:46:f3:
af:a8:15:b3:67:3f:80:91:75:c7:86:f0:07:29:82:
27:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:A6:B1:40:13:3D:BA:F0:D0:3C:49:7C:31:46:C8:87:B2:A4:DF:FD
X509v3 Authority Key Identifier:
keyid:A3:19:0F:6E:FD:79:EA:73:33:F9:BC:CD:85:A0:43:52:D9:15:B2:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oxkPbv156nMz-bzNhaBDUtkVsjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f6cfd7-a228-4591-9ef5-5f4b87ada4b5/1/waaxQBM9uvDQPEl8MUbIh7Kk3_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f6cfd7-a228-4591-9ef5-5f4b87ada4b5/1/oxkPbv156nMz-bzNhaBDUtkVsjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.233.152.0/21
185.169.112.0/22
IPv6:
2a01:8780::/29
Signature Algorithm: sha256WithRSAEncryption
03:e2:b7:d2:aa:1d:7b:46:a3:6f:77:a8:22:7f:06:83:6a:65:
de:c4:3f:87:5e:44:e0:78:c8:2b:af:24:2e:9f:20:e2:78:da:
64:2b:b5:52:6a:89:fa:ec:da:ee:71:3c:e6:90:88:17:7b:8d:
27:f6:76:20:32:82:a5:b3:4c:4c:21:87:f8:50:4b:60:1e:4e:
cd:0d:f1:c3:b2:f6:69:c5:7e:85:4b:19:9c:7c:0f:a4:fd:13:
68:46:1d:2c:85:e6:77:9e:ba:5f:95:e9:c6:3f:14:94:3d:2d:
86:ea:0c:c2:d2:67:77:28:a7:b9:90:bc:45:0a:08:c0:5e:c9:
99:42:cf:15:9d:2d:bf:c7:bf:00:7f:f6:82:1d:2d:2a:9e:c6:
63:b7:38:d5:9d:2a:66:e4:67:78:ad:62:91:de:6b:00:1d:ba:
a8:44:25:63:6b:31:07:c0:72:10:23:9c:fb:52:ba:bb:b5:93:
d9:ae:2a:de:b7:1e:92:66:14:86:28:21:20:98:dd:b2:b2:94:
28:28:ed:fb:e4:79:bc:99:78:40:64:fc:05:b5:2a:40:b3:49:
af:d8:46:4d:53:de:c0:e0:75:86:6a:ef:33:d1:fb:a6:e8:23:
e5:b2:3a:2e:6e:e4:66:9c:20:3e:fc:d5:a1:4a:eb:99:4c:42:
7c:0f:8c:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:36 2023 by rpki-client on console-fra.rpki-client.org