Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/wQj8uwpxti2LZRkX-6jUxmgBaV0.roa
File: wQj8uwpxti2LZRkX-6jUxmgBaV0.roa (raw, json)
Hash identifier: WQN0eMpI88NX6pO7ywF/GXVp5Kd/diQH8dUM9fRfBLU=
Subject key identifier: C1:08:FC:BB:0A:71:B6:2D:8B:65:19:17:FB:A8:D4:C6:68:01:69:5D
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 136BBC77
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/wQj8uwpxti2LZRkX-6jUxmgBaV0.roa
Signing time: Sat 01 Jan 2022 05:58:24 +0000
ROA not before: Sat 01 Jan 2022 05:58:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47518
IP address blocks: 83.133.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325827703 (0x136bbc77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c108fcbb0a71b62d8b651917fba8d4c66801695d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:25:0a:cc:19:5f:95:9a:94:b7:6e:f1:d6:88:
2b:01:17:40:8f:62:f2:09:16:6d:10:d1:bf:dd:40:
e8:bc:4d:0f:18:9e:f2:94:75:ab:b2:88:db:d0:58:
80:e7:4b:98:17:09:8f:43:3c:f3:0b:7e:7b:e5:d0:
14:6c:c9:bf:59:7c:d3:43:6e:04:38:3f:18:a9:83:
30:a4:28:05:2f:3e:e6:04:f0:ad:fe:8c:80:b6:5b:
f1:79:f4:fd:d2:b5:73:14:1a:77:6a:43:24:49:2e:
3a:b5:94:14:de:ad:d1:0e:1c:87:0f:97:1d:0b:97:
df:83:3b:c3:5a:49:6a:a7:ba:a6:dc:bc:c4:0f:28:
0b:9d:56:45:3c:f8:3a:c7:7f:fd:3c:ac:d6:fb:c6:
0f:22:3a:27:83:fe:92:a6:22:30:b7:96:53:77:eb:
9a:63:33:0c:f1:ec:7a:46:2a:2a:eb:22:f7:f6:17:
86:96:13:a0:a7:19:9b:9c:84:f1:35:61:6b:ae:7e:
9d:e9:05:88:8b:c8:7a:11:f2:68:c3:22:2f:23:7d:
5a:36:32:13:d3:19:da:b6:88:20:10:5f:4f:c5:ae:
48:8a:6c:56:d8:06:9c:c3:4a:2b:5f:31:62:6c:4b:
a1:81:96:88:82:6c:62:44:27:6e:e0:47:09:cd:1e:
f4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:08:FC:BB:0A:71:B6:2D:8B:65:19:17:FB:A8:D4:C6:68:01:69:5D
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/wQj8uwpxti2LZRkX-6jUxmgBaV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.133.69.0/24
Signature Algorithm: sha256WithRSAEncryption
47:00:b6:1f:52:bd:8c:fa:3e:24:f7:33:f8:f7:d8:64:09:3e:
bf:b6:59:8b:03:f4:8a:54:fd:a7:35:3f:01:3c:7e:24:69:17:
bd:27:a5:c1:85:97:d3:ac:5b:d1:80:62:8b:0f:bc:ba:0e:ed:
99:1e:1b:de:93:3f:58:78:f5:bf:51:8d:f2:85:7d:63:8d:4a:
33:2e:83:d9:54:86:24:95:28:6c:d2:41:98:bd:30:11:33:b6:
18:fb:37:fa:21:1d:16:7a:12:b8:3b:bd:3b:9a:3a:b4:9b:96:
ac:15:7a:58:b8:29:a7:b0:d8:b5:62:df:9b:9f:32:ff:6e:d5:
ee:bb:3c:92:e5:5e:79:75:dc:df:0f:07:16:0d:74:0a:2b:cb:
22:7a:d3:40:cb:a8:f2:de:d6:dd:96:c9:18:36:b5:4a:d4:63:
87:79:4a:a3:78:f1:f4:08:42:a6:19:cf:17:f4:1b:2e:d3:b8:
fb:ac:ae:27:36:94:9b:6d:77:84:cb:51:38:08:bc:2b:bb:e8:
31:b4:65:d6:7f:fa:65:96:e5:76:5f:a8:d8:54:8d:75:88:15:
61:ab:5b:29:7f:22:10:e3:fc:b4:7c:d3:b5:45:1e:a0:73:7e:
16:9e:84:84:cd:8b:32:9a:23:cc:03:d4:ad:81:88:b3:3e:8a:
92:44:49:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:30 2023 by rpki-client on console-ams.rpki-client.org