Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/WZ_4_ftFzqFqxoqFSIE9u_yjB8g.roa
File: WZ_4_ftFzqFqxoqFSIE9u_yjB8g.roa (raw, json)
Hash identifier: B+WV9VIC2cAkAiX8v2VcVwpBFiJUiN4Pk3JU1jVE/Lg=
Subject key identifier: 59:9F:F8:FD:FB:45:CE:A1:6A:C6:8A:85:48:81:3D:BB:FC:A3:07:C8
Certificate issuer: /CN=49e14bf76f42da4f2ac003a6c69d61c2320e2cd8
Certificate serial: 019D7739
Authority key identifier: 49:E1:4B:F7:6F:42:DA:4F:2A:C0:03:A6:C6:9D:61:C2:32:0E:2C:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeFL929C2k8qwAOmxp1hwjIOLNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/WZ_4_ftFzqFqxoqFSIE9u_yjB8g.roa
Signing time: Sat 01 Jan 2022 12:53:59 +0000
ROA not before: Sat 01 Jan 2022 12:53:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 185.21.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27096889 (0x19d7739)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e14bf76f42da4f2ac003a6c69d61c2320e2cd8
Validity
Not Before: Jan 1 12:53:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=599ff8fdfb45cea16ac68a8548813dbbfca307c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f4:0c:9e:06:b2:2e:65:ec:8b:57:cc:31:93:
04:20:e4:a3:71:96:6f:61:16:9f:3b:a4:8d:82:09:
11:cd:4e:73:e6:2f:ca:72:cb:42:cb:01:09:9a:40:
42:53:ed:48:24:5e:4e:19:90:a3:89:5d:53:51:87:
cb:05:66:ac:6a:97:15:d1:84:59:07:c1:1b:a3:d9:
9f:32:5d:85:e7:42:80:d2:8f:18:80:45:35:27:46:
70:29:95:4e:2d:fc:4f:b1:51:de:f8:50:45:8a:1d:
f9:bb:66:30:5d:1a:7f:65:5a:7b:7a:3a:09:d5:bb:
27:85:0f:52:3a:88:06:b2:ff:8a:49:47:a7:7d:22:
d3:2d:50:29:92:a0:5b:4e:0b:62:10:44:fc:c7:92:
bd:09:cb:06:6c:27:e3:35:72:05:0f:c5:08:6f:41:
7e:22:41:e2:a9:a8:7a:b4:91:ab:6d:08:5c:38:0f:
dc:0d:1c:d3:35:d1:11:ef:bc:d9:28:47:89:51:ba:
a9:d1:ae:97:4c:b2:8c:01:59:57:01:8f:07:d8:70:
80:32:32:e6:05:5f:97:fd:2e:e4:3b:31:da:1e:b1:
88:fc:ad:1c:05:6e:0b:8a:94:ea:c7:a1:40:82:10:
e5:a4:d7:56:0e:b0:2d:a8:08:9b:b0:61:97:31:d4:
17:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:9F:F8:FD:FB:45:CE:A1:6A:C6:8A:85:48:81:3D:BB:FC:A3:07:C8
X509v3 Authority Key Identifier:
keyid:49:E1:4B:F7:6F:42:DA:4F:2A:C0:03:A6:C6:9D:61:C2:32:0E:2C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeFL929C2k8qwAOmxp1hwjIOLNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/WZ_4_ftFzqFqxoqFSIE9u_yjB8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/SeFL929C2k8qwAOmxp1hwjIOLNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.131.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:bb:ce:95:fe:ae:16:a2:74:fc:d1:27:cd:2e:39:1d:73:55:
70:44:b2:2b:04:2a:63:7f:e1:d7:5d:aa:a4:b2:d8:da:a5:07:
07:7c:7b:98:fa:34:6d:18:46:d7:a0:64:58:db:6d:d6:a1:a5:
36:1c:6c:3c:7d:4b:bf:05:d0:2a:c3:1f:42:6b:67:40:25:de:
33:08:b1:c1:78:09:c1:f5:1b:ab:9a:57:a6:4a:c2:7f:16:5c:
4f:b8:fc:20:47:74:3a:18:a4:2a:16:21:23:a1:92:d4:3b:f9:
a4:a3:24:75:41:1c:bd:ea:3a:08:73:16:04:8a:91:44:12:71:
3c:f8:6e:98:b6:20:42:8a:a0:0f:d0:40:fc:16:7b:de:2e:9a:
80:6b:da:b0:a1:2c:ea:00:94:fa:0b:ef:bb:41:fb:dd:31:59:
f3:29:77:76:42:6c:d6:55:68:f8:f1:0f:20:b1:f1:59:46:e0:
30:c8:72:77:f0:a5:5a:fc:9c:32:5f:75:e9:47:48:89:da:aa:
18:98:dc:ab:cb:c1:9a:7a:7c:40:37:79:f4:12:c7:a8:71:6d:
e1:a4:75:7f:63:4f:f6:15:3c:fb:09:94:3f:45:3d:db:9a:b0:
b7:74:06:ba:61:8f:a4:bc:1a:9b:af:c8:a2:a8:dd:c8:49:df:
4d:8b:c9:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:49 2023 by rpki-client on console-ams.rpki-client.org