Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/W9EmsyhDDcX_8a3B7VarEKeyTn8.roa
File: W9EmsyhDDcX_8a3B7VarEKeyTn8.roa (raw, json)
Hash identifier: tQlXhT+ECstT68mkYW97pfGd4/Pm1cuqQT2gAi0DKZ8=
Subject key identifier: 5B:D1:26:B3:28:43:0D:C5:FF:F1:AD:C1:ED:56:AB:10:A7:B2:4E:7F
Certificate issuer: /CN=51239a702b9b44119fc0efb00524e7dd12dea8f6
Certificate serial: 0183EB9BAD135877F440A2EA52F45681F600
Authority key identifier: 51:23:9A:70:2B:9B:44:11:9F:C0:EF:B0:05:24:E7:DD:12:DE:A8:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USOacCubRBGfwO-wBSTn3RLeqPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/W9EmsyhDDcX_8a3B7VarEKeyTn8.roa
Signing time: Tue 18 Oct 2022 14:59:51 +0000
ROA not before: Tue 18 Oct 2022 14:59:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42166
IP address blocks: 194.0.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:eb:9b:ad:13:58:77:f4:40:a2:ea:52:f4:56:81:f6:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51239a702b9b44119fc0efb00524e7dd12dea8f6
Validity
Not Before: Oct 18 14:59:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bd126b328430dc5fff1adc1ed56ab10a7b24e7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:84:85:3d:19:c2:5f:c0:36:4b:43:ee:ec:5e:
87:11:9c:ea:5d:a2:b2:37:c0:58:99:9a:48:de:31:
91:db:df:7e:47:1f:5c:1e:68:d3:8c:76:b2:d9:47:
ca:19:26:9c:ed:67:d2:85:a2:c1:a4:5d:2e:b2:ab:
8e:6b:d9:32:e1:21:bb:0a:33:0f:a4:5a:88:d7:71:
3c:6f:f6:eb:30:32:13:76:19:0e:29:da:56:09:96:
56:9e:04:e8:d6:a0:64:bc:ed:bd:ee:ac:5f:14:7f:
1f:98:2f:fe:ec:ad:da:ab:48:38:51:14:92:a0:e6:
0e:23:ea:8a:59:62:1d:b7:c9:19:58:c0:7a:0f:c2:
33:aa:66:b5:a7:60:28:87:0b:58:97:70:77:3a:9e:
a4:a7:11:30:5d:b1:df:e5:e1:ad:c4:06:02:9c:aa:
95:39:3c:2d:d0:7b:7b:91:40:9c:26:bb:1a:3f:90:
f3:6c:93:3e:f5:e2:27:f7:fc:14:5e:7c:d3:f3:2f:
f9:f0:85:a8:59:42:08:70:70:2c:38:33:bf:4e:d7:
6d:1f:79:38:0b:ba:ad:a1:34:85:3b:fc:bd:ac:2c:
f4:0f:2c:34:78:b2:bf:9e:33:4e:b1:09:ee:ae:c4:
e4:dc:9b:11:62:15:40:cf:68:0c:5f:fe:5f:ed:2c:
54:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:D1:26:B3:28:43:0D:C5:FF:F1:AD:C1:ED:56:AB:10:A7:B2:4E:7F
X509v3 Authority Key Identifier:
keyid:51:23:9A:70:2B:9B:44:11:9F:C0:EF:B0:05:24:E7:DD:12:DE:A8:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USOacCubRBGfwO-wBSTn3RLeqPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/W9EmsyhDDcX_8a3B7VarEKeyTn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/170738-4fb5-4293-a925-d44fe60d1948/1/USOacCubRBGfwO-wBSTn3RLeqPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.149.0/24
Signature Algorithm: sha256WithRSAEncryption
15:5e:6c:c2:bd:e6:ad:89:a4:ff:f3:ac:4c:d7:bc:e4:88:c9:
11:d2:53:d3:91:84:ea:c6:42:bb:37:c8:75:4d:e1:df:3a:ca:
33:9a:ae:0c:f5:11:f4:69:1b:5c:5e:2c:5c:5c:f3:a3:c0:77:
b8:4d:10:0c:a2:29:e1:6a:62:15:7a:a6:d6:6a:12:1e:c4:9b:
cf:00:69:08:29:35:30:6a:44:78:c6:df:8b:ce:da:e3:1f:bf:
94:53:b0:29:c5:8b:7c:20:2e:19:da:53:c7:2d:01:58:57:1c:
16:71:4e:72:94:16:8f:27:b9:13:c5:0f:3d:fa:64:3c:55:7c:
a9:b8:0e:cd:56:8d:fb:3c:da:9e:fa:b7:c9:04:79:bb:26:4a:
0b:70:93:13:46:55:88:63:9d:41:6e:01:64:24:49:59:f5:4d:
42:99:5e:e3:18:c6:42:35:a0:cd:9b:9f:3b:87:11:35:b6:dc:
4c:48:9c:5a:08:f4:70:a9:fc:d0:67:f2:08:9f:86:fc:5c:c0:
5d:c1:0e:32:9b:46:22:58:60:94:e2:79:3c:5c:b2:38:ae:92:
98:d3:c2:19:6e:76:60:bb:07:53:25:6a:5d:8f:e7:a1:ff:9e:
87:69:ad:91:f7:73:f3:df:eb:32:9f:7a:4d:e9:d3:72:10:c5:
8e:e0:60:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:07 2024 by rpki-client on console-fra.rpki-client.org