Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/WFI3gQ8K3vKIecul5QPNtkuC2Ls.roa
File: WFI3gQ8K3vKIecul5QPNtkuC2Ls.roa (raw, json)
Hash identifier: mG32KaOu30zjVCM6iYSm4wLUBpIeRNwvK7VIApzXzxs=
Subject key identifier: 58:52:37:81:0F:0A:DE:F2:88:79:CB:A5:E5:03:CD:B6:4B:82:D8:BB
Certificate issuer: /CN=a6562d0869480dc11b74a552cd167b6f6339c8ba
Certificate serial: 01857082BA5F5458421DD4304422B1099474
Authority key identifier: A6:56:2D:08:69:48:0D:C1:1B:74:A5:52:CD:16:7B:6F:63:39:C8:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/plYtCGlIDcEbdKVSzRZ7b2M5yLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/WFI3gQ8K3vKIecul5QPNtkuC2Ls.roa
Signing time: Mon 02 Jan 2023 03:24:53 +0000
ROA not before: Mon 02 Jan 2023 03:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201281
IP address blocks: 45.154.62.0/24 maxlen: 24
2a0f:b100:200::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:ba:5f:54:58:42:1d:d4:30:44:22:b1:09:94:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6562d0869480dc11b74a552cd167b6f6339c8ba
Validity
Not Before: Jan 2 03:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=585237810f0adef28879cba5e503cdb64b82d8bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:96:24:49:3a:f4:cd:5c:fd:f2:0b:dd:22:ed:
7b:a0:47:86:37:94:2f:f3:33:68:6a:74:4a:b6:ad:
8f:da:1c:5f:6b:7c:9f:ad:0c:28:4a:08:92:4f:94:
5a:e9:03:39:3f:a1:2b:5f:e5:35:22:93:6e:21:0f:
03:24:2e:1d:c7:b1:cd:a3:b7:7a:a4:d3:40:75:2a:
db:5d:e6:ef:a4:8f:d2:7c:f9:bb:c3:22:54:17:c4:
18:86:a3:02:09:ab:78:96:c0:26:75:66:77:26:39:
5c:60:6e:fd:ce:b5:40:74:60:3d:b5:3e:6b:c7:36:
37:8f:4e:55:b1:27:f1:44:62:6f:04:3d:37:db:e2:
aa:fc:33:9b:36:55:46:ac:fa:7a:c0:27:88:21:c7:
d5:06:a8:a5:d1:18:dd:aa:a2:a6:10:96:29:f3:10:
11:03:c3:08:25:25:bf:ed:d9:79:76:d7:b2:58:cd:
0a:e7:a4:a5:b9:f6:8c:7a:fd:4d:5a:04:bd:ae:14:
9d:c3:f9:24:04:10:e1:92:29:69:e8:c4:3d:9c:46:
d7:ff:00:8a:dc:c4:49:c9:81:da:0b:80:45:27:dd:
72:cd:0e:14:ae:6b:49:a6:23:df:c3:8f:76:95:bd:
db:5e:47:28:32:0e:55:a0:4e:04:37:af:40:36:9a:
0a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:52:37:81:0F:0A:DE:F2:88:79:CB:A5:E5:03:CD:B6:4B:82:D8:BB
X509v3 Authority Key Identifier:
keyid:A6:56:2D:08:69:48:0D:C1:1B:74:A5:52:CD:16:7B:6F:63:39:C8:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/plYtCGlIDcEbdKVSzRZ7b2M5yLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/WFI3gQ8K3vKIecul5QPNtkuC2Ls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/plYtCGlIDcEbdKVSzRZ7b2M5yLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.62.0/24
IPv6:
2a0f:b100:200::/40
Signature Algorithm: sha256WithRSAEncryption
2c:55:b1:39:fe:bf:6b:b2:1b:83:cf:e4:d6:86:6f:95:d0:7b:
f0:ec:a3:87:7f:27:c7:75:93:10:29:22:48:cd:17:b3:8f:a7:
04:01:78:be:3d:83:0f:d2:38:61:c2:9f:92:5c:36:a0:b8:95:
3b:7a:58:74:60:6e:57:3a:81:2b:ba:25:62:86:80:c4:12:c5:
fd:da:3e:6e:30:b2:41:47:6e:e0:87:53:78:7c:9e:5e:94:1c:
5e:17:02:46:fc:4c:f5:44:bd:e8:f3:3d:fc:bd:ae:1b:fd:73:
8f:5c:e4:b7:d5:e1:d8:0a:91:73:55:4c:20:c1:2e:64:75:87:
5e:35:0c:9d:02:72:f2:30:4b:66:01:a0:12:ee:6c:15:f2:c4:
13:6c:75:3d:45:e7:c4:02:56:a2:86:9b:96:bb:0a:58:cd:c6:
b2:c0:01:e1:0c:f9:c8:8c:2f:03:6e:19:c0:93:86:b8:6b:80:
c1:fe:13:de:a4:16:15:f3:7e:e7:f2:eb:63:a5:5a:98:e4:62:
c7:6d:36:3c:5d:13:b8:67:8d:2b:1b:4d:fb:59:eb:f7:be:6d:
df:06:86:2d:79:fc:51:f8:d7:9d:4a:f9:17:98:6f:6d:e3:ee:
80:38:25:80:a7:83:b1:d3:02:60:d3:41:08:90:c9:5d:fc:1e:
4d:6a:74:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:27 2025 by rpki-client