Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3b3dcf-cbab-465b-8e90-da738a390f6e/1/wGGNGaGgfBbrldsmvsfMKjBjInw.roa
File: wGGNGaGgfBbrldsmvsfMKjBjInw.roa (raw, json)
Hash identifier: g5g8q7IbNOebWEOSl4iCzDV7hZyTRjNqCdaREGPTBec=
Subject key identifier: C0:61:8D:19:A1:A0:7C:16:EB:95:DB:26:BE:C7:CC:2A:30:63:22:7C
Certificate issuer: /CN=df14fe6cda90c9afe807590d2d50374a76a28e13
Certificate serial: 02F0A8D4
Authority key identifier: DF:14:FE:6C:DA:90:C9:AF:E8:07:59:0D:2D:50:37:4A:76:A2:8E:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3xT-bNqQya_oB1kNLVA3SnaijhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3b3dcf-cbab-465b-8e90-da738a390f6e/1/wGGNGaGgfBbrldsmvsfMKjBjInw.roa
Signing time: Sat 01 Jan 2022 05:04:40 +0000
ROA not before: Sat 01 Jan 2022 05:04:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196816
IP address blocks: 94.143.24.0/21 maxlen: 24
185.21.32.0/22 maxlen: 24
2a01:4480::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49326292 (0x2f0a8d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df14fe6cda90c9afe807590d2d50374a76a28e13
Validity
Not Before: Jan 1 05:04:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0618d19a1a07c16eb95db26bec7cc2a3063227c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:be:bc:d1:11:28:03:23:d8:02:15:95:60:ac:
8b:3e:ad:24:e2:57:1a:33:18:e1:9b:17:c8:9b:be:
10:25:b8:68:11:81:16:38:89:2e:6b:c5:df:4f:ab:
73:b6:7a:a2:fe:87:ac:de:27:8f:8a:25:e8:2f:24:
4c:69:40:e4:39:c0:71:3c:67:88:24:5f:96:fa:ad:
3f:09:ad:32:6f:9f:1d:7d:9f:a9:95:44:ba:97:2b:
6e:27:4a:d5:87:4d:75:90:82:0f:5a:90:36:de:d0:
e5:df:9f:e2:5d:ab:63:1c:b4:0c:d4:17:88:13:18:
65:92:a5:e5:93:b0:06:41:dd:a4:b4:57:6b:e7:d7:
d5:d4:00:30:08:48:a3:84:3a:bb:35:13:62:bd:a8:
57:d3:2c:db:a8:23:4f:96:41:f9:62:ef:b4:f2:7a:
91:b3:60:c0:9c:c5:9a:c7:33:4d:5f:d7:c5:38:61:
29:e4:55:48:51:04:3f:b8:a2:7a:8c:c5:7a:6d:40:
57:99:9c:bc:b3:e4:ee:7d:21:f8:07:8b:44:23:b3:
79:d2:ba:18:d3:90:ef:10:74:dc:57:a8:33:a5:94:
8a:94:45:6b:e6:b5:b9:89:08:77:c1:31:b7:d1:40:
bd:b6:5e:96:c1:ec:74:fd:6a:3d:fc:d0:c2:a6:07:
9b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:61:8D:19:A1:A0:7C:16:EB:95:DB:26:BE:C7:CC:2A:30:63:22:7C
X509v3 Authority Key Identifier:
keyid:DF:14:FE:6C:DA:90:C9:AF:E8:07:59:0D:2D:50:37:4A:76:A2:8E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3xT-bNqQya_oB1kNLVA3SnaijhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3b3dcf-cbab-465b-8e90-da738a390f6e/1/wGGNGaGgfBbrldsmvsfMKjBjInw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3b3dcf-cbab-465b-8e90-da738a390f6e/1/3xT-bNqQya_oB1kNLVA3SnaijhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.143.24.0/21
185.21.32.0/22
IPv6:
2a01:4480::/32
Signature Algorithm: sha256WithRSAEncryption
01:4d:49:f8:a6:e6:61:40:ff:f7:34:75:b1:29:01:88:ad:91:
53:74:b2:11:0b:6b:29:8d:ba:2c:73:70:1a:7c:67:d5:17:87:
48:cd:2f:fa:62:9f:39:c8:9c:02:dd:16:08:30:e5:78:f7:fe:
53:17:b2:09:d8:27:62:36:c8:28:12:a4:d5:f1:70:d7:81:2e:
f5:9b:5b:b6:b1:56:f3:a2:ae:aa:d3:6d:6f:a2:a4:d7:5d:bf:
48:1a:5f:fc:19:48:25:bb:19:b3:46:d5:6f:a6:ec:fb:f6:a8:
48:2a:d4:b5:3e:a7:4c:40:21:4c:c5:1d:2d:21:87:41:7e:95:
18:16:be:55:aa:00:7a:e7:14:cb:08:52:17:d9:bf:7f:32:25:
47:ea:ab:e2:7b:a9:65:bd:81:38:85:0c:04:b2:6b:24:1e:3b:
2a:fa:84:b6:bf:d5:ab:6c:56:42:e1:1a:e3:37:f7:5f:b2:2d:
66:5f:a6:71:a9:b1:ac:c7:82:78:31:30:22:aa:a7:db:9e:ca:
b2:99:fb:58:77:d3:62:38:64:12:ac:fe:2b:a3:2c:7d:70:ac:
56:d2:80:d9:c4:84:7d:ff:0f:af:d4:90:86:fb:f7:ed:71:e4:
65:56:52:65:d2:85:dc:15:ae:b7:46:40:b8:27:5b:19:f4:18:
14:17:c6:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:39 2023 by rpki-client on console-fra.rpki-client.org