Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/wFo5sW1DYtUgXY3hIFMRPvkj_co.roa
File: wFo5sW1DYtUgXY3hIFMRPvkj_co.roa (raw, json)
Hash identifier: lTddTnmE5c3Ybj2gxttupW1w4E13D4Ld1Dj5rr3KJOI=
Subject key identifier: C0:5A:39:B1:6D:43:62:D5:20:5D:8D:E1:20:53:11:3E:F9:23:FD:CA
Certificate issuer: /CN=1f68138d4ec2ea51cacef09ff1058a370a5be190
Certificate serial: 3F083F73
Authority key identifier: 1F:68:13:8D:4E:C2:EA:51:CA:CE:F0:9F:F1:05:8A:37:0A:5B:E1:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/wFo5sW1DYtUgXY3hIFMRPvkj_co.roa
Signing time: Fri 13 May 2022 08:10:39 +0000
ROA not before: Fri 13 May 2022 08:10:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206977
IP address blocks: 192.150.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1057505139 (0x3f083f73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f68138d4ec2ea51cacef09ff1058a370a5be190
Validity
Not Before: May 13 08:10:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c05a39b16d4362d5205d8de12053113ef923fdca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:aa:6d:8d:45:3f:4d:7f:39:8c:27:e7:0e:ce:
64:6d:a4:e8:f9:bb:da:b7:6a:27:ea:fb:68:f8:16:
c4:2d:20:f5:39:14:32:29:84:0f:61:92:fc:cd:1c:
25:8e:6a:79:31:87:bc:dd:81:11:7a:d6:2d:25:62:
c7:46:ee:9d:02:3c:dd:a1:b5:01:2b:16:81:51:c5:
20:53:a0:2a:e9:64:2a:f2:13:46:87:96:8d:aa:ef:
0b:41:26:d4:31:d5:82:d3:6f:c3:83:bf:15:c8:e3:
63:cf:7e:d6:ad:28:47:d1:10:99:1b:c5:b0:ae:bb:
4c:8c:a4:b8:33:50:10:95:88:85:dd:90:ca:17:c6:
a4:cd:22:b5:f2:22:80:7f:03:92:27:2e:5a:eb:05:
24:06:ff:8c:82:13:79:56:20:57:7c:66:c7:1d:84:
2b:34:af:65:9c:cf:01:39:d3:21:ea:2a:9c:e6:ef:
ca:b5:68:fb:ee:57:ea:8b:c9:95:a8:57:ba:78:34:
e5:24:c0:02:d8:c5:ee:b5:b9:75:71:a6:cb:55:29:
ff:c3:c5:f2:f1:31:85:f8:87:e1:bf:f9:a0:76:55:
48:74:65:41:9d:53:f7:df:ec:ce:44:d6:60:b6:94:
7b:8b:d8:60:c7:be:53:e6:d1:03:b9:e3:b9:20:b1:
7a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:5A:39:B1:6D:43:62:D5:20:5D:8D:E1:20:53:11:3E:F9:23:FD:CA
X509v3 Authority Key Identifier:
keyid:1F:68:13:8D:4E:C2:EA:51:CA:CE:F0:9F:F1:05:8A:37:0A:5B:E1:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/wFo5sW1DYtUgXY3hIFMRPvkj_co.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.150.82.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:e2:a0:d8:b8:e9:3b:69:6a:d1:67:8e:37:e9:31:1e:46:02:
03:63:9f:32:9d:70:66:ca:f7:da:f9:d4:f4:ab:f8:c4:35:97:
b2:f3:2a:9c:32:7d:b1:7d:3c:c3:38:fc:b4:99:3f:aa:8c:80:
28:2a:3b:65:48:40:5f:8b:9a:40:ed:4f:6a:d1:d7:3a:fd:19:
de:53:ad:d3:ea:1a:49:18:81:61:67:43:73:8d:be:7b:bd:f5:
ba:33:fd:41:36:80:07:e2:b4:5f:de:fa:ef:72:b0:0e:21:98:
22:11:81:3d:21:6b:fb:0a:43:b0:ac:c1:76:d6:9b:0a:af:32:
d8:4e:45:04:3c:e9:d6:70:24:0f:fa:b5:3e:4d:b2:48:75:86:
a7:55:e4:cd:82:95:a6:f0:94:96:8c:6d:28:cb:b3:11:0f:06:
c8:75:18:a6:39:0d:22:8d:1a:cd:ad:56:b1:68:5e:5d:58:b2:
27:2b:83:0e:5a:aa:06:34:9c:20:27:e2:dd:bb:14:6c:51:51:
8a:54:73:24:0e:21:87:71:0f:c1:fa:7e:68:97:10:7d:89:c0:
5e:cc:f1:59:01:77:ff:61:c4:75:20:5e:d6:d2:ee:0b:ce:07:
4a:1c:38:df:33:12:ba:cf:9b:c0:26:0c:b5:8f:f6:bb:a4:fc:
3f:f6:0e:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:48 2024 by rpki-client on console-fra.rpki-client.org