Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/wbEhCVzkhsd1JN48mgbkCFQDTI8.roa
File: wbEhCVzkhsd1JN48mgbkCFQDTI8.roa (raw, json)
Hash identifier: AUQ+43jkD7BEUDn+SQAkrdfLo98JUnI3ih8JdaITnzs=
Subject key identifier: C1:B1:21:09:5C:E4:86:C7:75:24:DE:3C:9A:06:E4:08:54:03:4C:8F
Certificate issuer: /CN=5fbe65ae23f207fa695255f55a907ac1608be094
Certificate serial: 01836E6F405F8DD17C48D8B15A9F3DA25D22
Authority key identifier: 5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/wbEhCVzkhsd1JN48mgbkCFQDTI8.roa
Signing time: Sat 24 Sep 2022 07:38:48 +0000
ROA not before: Sat 24 Sep 2022 07:38:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211183
IP address blocks: 79.133.182.0/24 maxlen: 24
79.133.181.0/24 maxlen: 24
185.240.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:6e:6f:40:5f:8d:d1:7c:48:d8:b1:5a:9f:3d:a2:5d:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbe65ae23f207fa695255f55a907ac1608be094
Validity
Not Before: Sep 24 07:38:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1b121095ce486c77524de3c9a06e40854034c8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9c:cd:e6:4b:d8:ac:92:a4:cf:37:12:e0:f9:
c4:dc:dd:0a:52:f3:c4:e4:1d:71:93:6f:f9:a5:66:
2e:d7:40:a8:5f:dd:0d:da:88:de:09:f4:ba:5c:76:
c4:aa:7f:33:3f:f0:4b:a9:d2:52:b0:d1:14:a6:63:
3f:3f:44:16:cb:9d:f8:d1:02:a6:f3:30:c3:3c:6e:
c2:17:39:a9:da:ff:67:47:a2:08:e2:50:fb:c5:ef:
26:4a:18:08:9a:50:7c:3a:5f:e3:71:f4:37:1c:09:
52:57:30:03:d5:de:9c:da:7b:c2:76:9a:e5:98:1a:
36:c2:b0:b7:18:ae:be:84:ef:b7:59:bb:eb:a8:cd:
79:b9:39:50:ad:6d:10:4e:d0:9b:56:b3:52:99:30:
9b:5f:be:17:f1:af:bb:a3:68:fb:92:37:94:6e:14:
11:e2:3b:25:6c:fa:1e:6a:29:ee:95:ac:05:2b:a4:
25:70:78:eb:b4:37:cc:34:ec:b2:7b:f8:eb:fb:f8:
ab:67:47:c4:ba:e4:e1:a3:46:48:76:fd:46:d0:2c:
e2:86:e0:d3:55:9a:39:8c:ce:5e:91:dd:aa:cf:94:
ad:5d:b3:a0:e0:1e:4e:4d:cf:5f:b7:a6:1b:00:fb:
19:e3:56:3a:61:0a:9b:65:0f:d9:20:3c:e5:97:6a:
7d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:B1:21:09:5C:E4:86:C7:75:24:DE:3C:9A:06:E4:08:54:03:4C:8F
X509v3 Authority Key Identifier:
keyid:5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/wbEhCVzkhsd1JN48mgbkCFQDTI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/X75lriPyB_ppUlX1WpB6wWCL4JQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.133.181.0-79.133.182.255
185.240.103.0/24
Signature Algorithm: sha256WithRSAEncryption
45:76:65:45:b7:e0:5e:70:0e:fe:48:50:45:67:dd:ac:b6:67:
87:3c:54:6b:5e:4c:b7:f5:51:32:71:eb:98:65:d8:2b:75:54:
60:9f:65:26:5b:0a:27:34:a1:e4:db:e0:c7:6f:f2:c5:42:41:
54:dc:e4:57:c2:fd:1b:95:05:38:82:f8:bf:13:4a:33:1d:1f:
e4:52:92:3d:8a:d7:ee:fb:33:3e:8a:2f:f8:16:f6:36:ac:91:
78:01:77:8c:c5:2f:3b:c5:a6:e1:44:9e:fb:4a:d1:a0:a1:9f:
75:6f:32:fc:c1:40:08:79:35:cb:5a:96:e0:81:38:b4:c3:0c:
2f:90:e4:8f:38:2d:02:a1:e4:2c:de:e4:e7:b6:e4:f5:17:8d:
62:69:e9:e1:ce:a1:bb:4c:31:01:a0:dc:6e:20:15:6b:cc:84:
ca:85:cb:bb:11:bf:4a:22:7a:93:91:a1:87:64:46:47:0b:2f:
93:a7:ac:1d:95:f5:64:86:b5:3f:23:3a:61:4a:72:eb:8c:88:
80:85:b7:15:e5:5f:7f:48:7b:51:59:53:36:59:15:9d:38:28:
2c:37:d2:f4:27:3b:87:d6:4f:7b:a9:b2:4a:fb:f2:36:a1:8f:
fa:ba:98:8e:a3:de:3c:57:e0:fe:31:d6:be:20:fa:71:86:1f:
38:94:b5:2a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:02 2024 by rpki-client on console-ams.rpki-client.org