Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/63564f-aca1-463d-be1e-e5520aa7ba37/1/WR_zRCJTcoGaOzYda_povmEFjBM.roa
File: WR_zRCJTcoGaOzYda_povmEFjBM.roa (raw, json)
Hash identifier: 6ESEVd8RTbMDm39K8QTfvb8w8gE8S7PVfsnkgetV0Go=
Subject key identifier: 59:1F:F3:44:22:53:72:81:9A:3B:36:1D:6B:FA:68:BE:61:05:8C:13
Certificate issuer: /CN=f563da6eb3b7a07fdc4525883004970d640b036b
Certificate serial: 09B4D94A
Authority key identifier: F5:63:DA:6E:B3:B7:A0:7F:DC:45:25:88:30:04:97:0D:64:0B:03:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9WPabrO3oH_cRSWIMASXDWQLA2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/63564f-aca1-463d-be1e-e5520aa7ba37/1/WR_zRCJTcoGaOzYda_povmEFjBM.roa
Signing time: Sat 01 Jan 2022 08:04:22 +0000
ROA not before: Sat 01 Jan 2022 08:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25094
IP address blocks: 194.154.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162847050 (0x9b4d94a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f563da6eb3b7a07fdc4525883004970d640b036b
Validity
Not Before: Jan 1 08:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=591ff344225372819a3b361d6bfa68be61058c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ca:76:5d:75:b3:72:2b:46:39:6b:2f:6c:37:
71:85:30:3e:bb:12:55:68:63:de:21:5b:88:07:16:
17:93:ba:29:cb:2f:3a:69:93:57:f6:7a:80:2d:92:
60:c4:ab:0f:c7:29:ef:27:fa:35:da:90:ba:5c:e0:
92:c2:61:24:51:4f:4d:e8:6c:02:0e:c6:f2:cd:b7:
68:01:ef:9f:bc:93:57:b4:10:54:0f:65:d8:42:fc:
13:04:f4:92:52:f8:c4:94:9d:a7:c6:da:56:89:7b:
39:78:81:f5:21:29:7c:d3:d9:91:4e:8d:3f:f3:a2:
2b:fa:b5:d1:3d:71:09:9e:23:d5:8b:6f:1d:65:69:
d4:06:37:0d:0e:e6:12:cb:bc:af:b7:a8:0f:ce:ab:
94:b9:f3:c7:29:63:5a:6f:7c:a6:09:4b:7b:fd:35:
8d:fc:49:45:b8:83:d4:76:d2:24:23:9b:d1:ef:27:
15:05:56:5a:f1:ef:f0:64:0a:04:44:29:7c:e8:83:
b3:64:db:11:74:82:74:bf:34:f0:89:6d:5b:31:c7:
a9:f7:c7:ca:bf:cd:90:db:18:4b:f6:ec:28:c2:ef:
ac:78:7f:2a:84:b0:94:69:61:77:59:3e:b5:69:9c:
1b:0a:e7:a5:05:ec:78:20:19:f4:f9:3a:8a:e0:bb:
e0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:1F:F3:44:22:53:72:81:9A:3B:36:1D:6B:FA:68:BE:61:05:8C:13
X509v3 Authority Key Identifier:
keyid:F5:63:DA:6E:B3:B7:A0:7F:DC:45:25:88:30:04:97:0D:64:0B:03:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9WPabrO3oH_cRSWIMASXDWQLA2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/63564f-aca1-463d-be1e-e5520aa7ba37/1/WR_zRCJTcoGaOzYda_povmEFjBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/63564f-aca1-463d-be1e-e5520aa7ba37/1/9WPabrO3oH_cRSWIMASXDWQLA2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.154.205.0/24
Signature Algorithm: sha256WithRSAEncryption
12:1b:65:5c:d1:ea:79:d1:ed:21:3b:b2:3e:c7:8b:5d:53:eb:
6c:60:b9:29:01:5e:ad:e0:49:ad:98:5e:2f:2d:04:4d:6e:7b:
48:78:22:fb:c6:5d:32:72:fe:1e:ff:c5:1e:85:9a:06:e2:28:
3b:e2:81:3c:b5:64:58:08:02:ce:be:59:21:82:41:42:21:7a:
3b:11:4c:ab:2a:53:05:1d:a4:28:39:00:ae:f2:03:04:46:1b:
56:6a:a4:6b:6a:0a:d2:8b:1d:a8:d1:98:bc:52:fa:f5:5f:14:
d5:42:23:d9:a7:0f:3e:e7:fc:ae:2c:b2:ad:a1:b2:61:39:80:
65:d4:e9:96:25:48:6f:7f:7a:14:a1:70:04:af:61:6d:2b:4c:
13:0e:47:25:45:5d:d5:0a:77:d0:db:d2:85:4a:9d:ac:e2:62:
bf:b2:6a:4e:6a:cb:33:8c:6b:c7:71:e9:f5:7b:fb:ce:5a:d7:
0d:47:8c:27:bf:91:02:e7:db:98:2b:d5:1c:03:9b:f9:0d:2d:
30:75:2a:9f:c9:d7:61:b8:b9:52:d8:12:ff:8d:ce:50:1e:0c:
4e:ff:d7:25:50:03:dc:64:57:3d:c9:ae:9e:d8:93:32:b5:f6:
13:73:29:da:17:90:31:a2:82:3c:0a:b3:26:9b:c9:97:2e:ea:
20:08:be:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:32 2023 by rpki-client on console-ams.rpki-client.org