Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/bf7a28-bf1e-4835-beed-b3d86aa43bc5/1/WIA1W8jLadZjt4buwsTmfr60F4Y.roa
File: WIA1W8jLadZjt4buwsTmfr60F4Y.roa (raw, json)
Hash identifier: fkJuhpl9CW6xjQh//BCIAj2ytxqERawrc3XsBLklpYg=
Subject key identifier: 58:80:35:5B:C8:CB:69:D6:63:B7:86:EE:C2:C4:E6:7E:BE:B4:17:86
Certificate issuer: /CN=cb20606de730456edd7335cc882cbdf4396f3460
Certificate serial: 33D45788
Authority key identifier: CB:20:60:6D:E7:30:45:6E:DD:73:35:CC:88:2C:BD:F4:39:6F:34:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yyBgbecwRW7dczXMiCy99DlvNGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/bf7a28-bf1e-4835-beed-b3d86aa43bc5/1/WIA1W8jLadZjt4buwsTmfr60F4Y.roa
Signing time: Sat 01 Jan 2022 05:52:07 +0000
ROA not before: Sat 01 Jan 2022 05:52:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209269
IP address blocks: 188.125.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 869554056 (0x33d45788)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb20606de730456edd7335cc882cbdf4396f3460
Validity
Not Before: Jan 1 05:52:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5880355bc8cb69d663b786eec2c4e67ebeb41786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:09:ef:12:64:82:ea:cc:16:72:e9:52:f4:dd:
1d:df:87:2c:d4:73:f0:5e:a0:1c:6a:4c:b4:fb:f0:
bc:a1:e1:50:7d:5c:95:c3:5a:62:10:73:3a:35:22:
7f:13:af:af:e5:67:fe:13:2a:b3:a4:77:7f:4c:97:
65:50:0a:dc:5f:ec:9e:8d:67:1a:ea:67:19:9b:b2:
79:5f:7a:cf:8b:76:19:56:d0:06:bf:4a:92:1c:52:
19:bb:fb:90:83:a3:23:de:02:4a:cf:18:69:3b:c4:
cf:35:eb:a3:6e:0f:ab:7c:7a:ad:52:dc:fb:89:3a:
d2:4d:45:1a:ca:8e:9b:93:9e:b5:b5:33:e1:20:d6:
d1:77:42:42:a8:81:ad:c1:42:14:0d:a7:3e:05:b1:
d7:4c:a6:a6:b7:fc:ca:08:b3:0c:0a:48:55:62:6b:
fa:8c:6c:1c:3e:36:17:d1:a4:e2:90:7e:1d:34:0c:
c8:6a:ad:e6:67:17:7f:48:10:6d:75:24:ef:35:16:
d7:1a:cf:3f:b1:e0:71:2b:b6:1f:56:24:40:c9:a7:
30:53:98:ab:b7:06:ef:4f:d1:56:33:18:57:aa:4e:
34:c6:0b:e7:f5:cc:2d:7c:9a:61:1d:41:df:b0:8b:
e5:0c:b1:75:90:06:6a:60:33:28:17:9a:5e:54:d1:
52:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:80:35:5B:C8:CB:69:D6:63:B7:86:EE:C2:C4:E6:7E:BE:B4:17:86
X509v3 Authority Key Identifier:
keyid:CB:20:60:6D:E7:30:45:6E:DD:73:35:CC:88:2C:BD:F4:39:6F:34:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yyBgbecwRW7dczXMiCy99DlvNGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/bf7a28-bf1e-4835-beed-b3d86aa43bc5/1/WIA1W8jLadZjt4buwsTmfr60F4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/bf7a28-bf1e-4835-beed-b3d86aa43bc5/1/yyBgbecwRW7dczXMiCy99DlvNGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.125.158.0/24
Signature Algorithm: sha256WithRSAEncryption
10:b8:17:ae:17:2d:f2:21:9f:5c:47:4b:2e:36:b2:dc:54:b2:
88:ed:31:d2:80:5e:6d:df:e0:e1:bf:c6:9d:48:21:93:ae:aa:
03:ca:d7:c1:58:5d:95:95:3d:93:f8:44:c7:ab:22:cd:40:9e:
5d:45:d8:e0:1a:80:22:29:06:4d:4b:b8:56:a5:4d:e8:29:b8:
18:02:64:03:41:04:e2:18:27:8d:97:82:ae:18:ad:1e:37:69:
37:eb:7d:f1:13:9e:b5:c0:a9:91:e8:57:9e:91:61:d7:ae:91:
77:fe:f9:bf:9e:9b:96:38:d4:c1:b3:42:73:9a:f5:f3:54:5a:
05:7a:46:ae:3a:24:39:f2:7c:86:85:6d:48:90:90:1b:cf:a5:
cd:70:a5:da:36:71:bf:12:a7:ee:6a:5a:75:78:e9:e1:51:49:
7d:ae:a4:b7:e7:95:47:06:82:e8:b7:7f:74:5f:f2:18:71:32:
43:2e:76:65:9f:2d:37:b4:4a:2b:c8:2c:4a:2d:b6:76:63:ca:
62:ca:04:f6:b2:80:c4:41:78:ff:6d:13:ee:6e:04:49:90:78:
0d:65:54:39:41:75:4c:39:82:81:a3:1c:f1:7f:89:c7:5f:df:
51:3e:c2:de:e9:af:aa:86:d2:ff:08:5e:28:13:23:fc:81:29:
cc:7a:8f:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:43 2024 by rpki-client on console-fra.rpki-client.org