Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/1bf2e1-3392-4b6e-9597-21f3f26484d9/1/WaxCzCrSP_LTaa4mx375F4oGTj0.roa
File: WaxCzCrSP_LTaa4mx375F4oGTj0.roa (raw, json)
Hash identifier: LDXPzLX1bx4ODAz6KYzr2iS5ni7jORG1urgxwt26qaA=
Subject key identifier: 59:AC:42:CC:2A:D2:3F:F2:D3:69:AE:26:C7:7E:F9:17:8A:06:4E:3D
Certificate issuer: /CN=8e350dd6d842ebd4ddd08cad41d8ff816bfdfff8
Certificate serial: 329A18
Authority key identifier: 8E:35:0D:D6:D8:42:EB:D4:DD:D0:8C:AD:41:D8:FF:81:6B:FD:FF:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jjUN1thC69Td0IytQdj_gWv9__g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf2e1-3392-4b6e-9597-21f3f26484d9/1/WaxCzCrSP_LTaa4mx375F4oGTj0.roa
Signing time: Sat 01 Jan 2022 01:51:12 +0000
ROA not before: Sat 01 Jan 2022 01:51:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209386
IP address blocks: 46.231.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3316248 (0x329a18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e350dd6d842ebd4ddd08cad41d8ff816bfdfff8
Validity
Not Before: Jan 1 01:51:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59ac42cc2ad23ff2d369ae26c77ef9178a064e3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e1:f1:ed:3f:0a:a3:10:6e:d1:be:8a:e4:18:
fc:50:c8:88:5e:e3:ca:2c:9b:03:cc:2e:28:89:76:
66:19:a7:e8:b6:c0:65:65:ab:cb:d0:91:8e:98:31:
8a:14:e2:31:68:3e:07:31:59:85:65:7e:7d:d9:b7:
0b:75:6e:93:89:87:ab:3a:14:0f:45:17:48:e0:9c:
61:16:08:70:83:34:1d:5c:23:c4:59:04:c0:17:b0:
3b:46:4f:29:a7:02:7c:01:dc:16:6f:55:8c:41:fb:
2f:13:c5:64:99:67:58:42:f1:ec:f6:4a:aa:95:c7:
d1:fb:f1:fb:b2:a2:9e:5b:7c:b9:61:e5:51:38:a5:
38:45:1e:ee:05:41:a9:40:60:64:d9:82:4f:e1:3b:
0a:fe:f8:b0:14:16:a0:85:37:59:fb:8b:81:ca:ed:
85:86:d2:59:32:26:6f:47:b1:21:3f:3c:b8:08:28:
13:22:a8:1c:28:e7:bc:41:fa:b1:45:ac:65:0f:74:
52:1f:f5:ef:ea:6d:cd:5f:72:1f:77:19:cd:18:ed:
df:aa:b7:db:6a:cf:b8:8f:ff:76:cc:0f:c6:dd:3b:
da:71:fc:b0:de:9a:d4:fc:7b:e0:6b:f9:63:28:cd:
9c:7a:5d:f7:9e:b2:ee:a0:02:d4:1d:52:d5:da:d0:
44:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:AC:42:CC:2A:D2:3F:F2:D3:69:AE:26:C7:7E:F9:17:8A:06:4E:3D
X509v3 Authority Key Identifier:
keyid:8E:35:0D:D6:D8:42:EB:D4:DD:D0:8C:AD:41:D8:FF:81:6B:FD:FF:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jjUN1thC69Td0IytQdj_gWv9__g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf2e1-3392-4b6e-9597-21f3f26484d9/1/WaxCzCrSP_LTaa4mx375F4oGTj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf2e1-3392-4b6e-9597-21f3f26484d9/1/jjUN1thC69Td0IytQdj_gWv9__g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.231.52.0/22
Signature Algorithm: sha256WithRSAEncryption
44:5e:18:fa:35:bf:c0:3b:b4:38:6f:bc:c4:08:25:85:3e:ff:
fd:b2:84:53:08:21:ff:6d:80:2f:64:9d:ba:b3:a8:27:95:a0:
8b:6a:a3:8c:02:4a:f7:00:f6:f4:04:ef:27:09:fb:af:81:53:
e4:e9:d3:1a:a8:b4:65:5d:00:f6:5c:e6:82:17:b1:07:b7:f0:
15:c8:ec:97:2c:ae:3c:b0:1f:80:8e:5a:28:7a:d2:68:fc:84:
60:e2:ad:19:c8:58:4f:a3:6a:f1:45:2a:f1:8b:08:9c:5f:31:
76:00:dc:ff:cc:4c:b9:9e:34:00:c1:8a:b1:6d:29:68:2e:77:
66:ca:d5:79:db:84:58:49:1a:9e:2b:32:75:e1:a6:40:08:75:
0e:01:60:26:22:60:e7:2e:48:f8:00:2d:93:89:9f:52:c2:5b:
73:8a:d6:79:27:51:2c:d7:e0:05:ab:d4:18:e3:d0:88:7e:08:
34:18:c8:97:94:2b:69:e9:cc:d4:8a:34:64:e9:28:2e:90:66:
31:84:a1:97:b9:8b:56:3d:0c:e1:6e:23:01:14:c8:44:f1:c6:
05:3e:aa:de:9c:2c:9b:9e:ae:ee:bf:b5:25:9b:bb:f2:1a:49:
4d:74:59:53:b3:c3:a4:7a:c3:58:43:25:8c:48:06:94:3b:53:
b8:91:18:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:54 2024 by rpki-client on console-ams.rpki-client.org