Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/WojlaFue0_FjotDfOQV1FCgaWVQ.roa
File: WojlaFue0_FjotDfOQV1FCgaWVQ.roa (raw, json)
Hash identifier: az67vk54umQv9Vb/GX0ZsZCdqUuZmc9SSi3/dcx3GJg=
Subject key identifier: 5A:88:E5:68:5B:9E:D3:F1:63:A2:D0:DF:39:05:75:14:28:1A:59:54
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 09F6833A
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/WojlaFue0_FjotDfOQV1FCgaWVQ.roa
Signing time: Tue 28 Jun 2022 05:51:27 +0000
ROA not before: Tue 28 Jun 2022 05:51:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 2.58.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167150394 (0x9f6833a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: Jun 28 05:51:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a88e5685b9ed3f163a2d0df39057514281a5954
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6c:83:60:24:07:40:20:02:35:27:5f:9b:ad:
77:32:99:53:d5:ca:c9:3e:60:0e:98:f9:ec:2c:af:
90:14:02:f8:18:89:9a:e3:e0:1b:9f:a4:e3:f9:59:
b7:c8:69:ae:b3:19:f0:25:1e:64:40:f5:51:5b:0e:
39:1d:31:fb:5f:9b:38:e9:e7:ca:e3:cc:f0:6c:77:
7e:f5:b4:fc:a3:60:3b:f4:b4:bf:13:2b:3c:20:20:
e8:aa:72:5d:4b:95:f9:0f:95:40:01:cd:22:76:0d:
11:2c:b6:26:c9:78:04:b8:f9:b8:d0:62:ca:2f:3f:
43:c7:25:75:09:4f:e9:40:f1:17:f8:2e:32:ae:cc:
bb:c3:a6:eb:82:7e:cf:54:af:9e:f0:e6:77:ec:0b:
fc:e6:09:1d:7d:04:fa:f2:96:cc:21:e0:29:4a:00:
c0:81:f4:c1:33:67:cf:cb:2c:a3:62:f2:84:35:3d:
5e:b0:71:e4:5f:49:4a:d4:65:9e:f1:e6:b3:ae:50:
5f:e1:29:07:b0:c5:a8:44:72:a5:f2:a0:da:64:05:
23:49:af:f2:b2:dc:e9:36:e0:1c:4a:2a:24:1c:eb:
d0:ce:9a:37:6a:42:65:79:73:89:57:5d:0d:cd:d7:
dd:6e:45:69:1d:4d:6e:4a:0e:c6:e4:4b:1a:ad:68:
c6:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:88:E5:68:5B:9E:D3:F1:63:A2:D0:DF:39:05:75:14:28:1A:59:54
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/WojlaFue0_FjotDfOQV1FCgaWVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.115.0/24
Signature Algorithm: sha256WithRSAEncryption
14:0a:73:13:b6:33:44:32:fb:90:6d:90:32:41:49:f5:fd:04:
1d:89:28:b2:10:14:55:bc:d2:9c:03:67:15:66:f6:06:c1:6b:
2e:5f:fa:3a:05:f7:09:67:8e:77:fb:79:1e:f2:4b:7a:7b:3a:
c3:ea:f2:9c:3c:5d:86:4a:82:b8:d7:0a:7c:32:c8:a8:ce:b7:
48:9b:55:42:40:29:0b:63:74:55:71:bc:b9:02:eb:45:20:a0:
54:a2:0e:1a:8f:57:7b:5d:54:68:f7:cc:8d:b0:a0:ac:97:8d:
f2:22:a4:d2:79:91:f4:c3:5d:52:4b:a9:55:69:86:44:c3:74:
16:cf:7f:e8:c9:7e:22:c0:3b:8b:07:c6:7b:6b:df:29:0e:bc:
10:36:8a:be:a3:81:10:6f:ed:af:52:5d:c3:f9:b9:a9:ce:ec:
48:8f:1b:cf:76:d6:69:84:92:20:77:5d:1b:48:84:11:4a:97:
80:c4:31:0e:94:5d:0c:33:c6:02:f6:3a:d8:6f:7f:49:ff:a0:
15:7e:44:2a:05:57:44:81:e4:30:cb:d6:be:d2:92:d3:d1:91:
60:d0:b0:cd:e5:67:1d:f0:9b:71:ee:c6:ad:e5:6c:90:5d:58:
5d:a4:85:a4:48:31:e5:27:44:1a:cc:c3:e5:0d:d2:97:f6:78:
a7:5d:b3:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:08 2024 by rpki-client on console-fra.rpki-client.org