Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/wTNyJwIXnoIluu-3_oxm-B-2qGA.roa
File: wTNyJwIXnoIluu-3_oxm-B-2qGA.roa (raw, json)
Hash identifier: DAMkbp96a9+SkSfVXHnWV6btO/yVCKTrYg5+oC1PF4I=
Subject key identifier: C1:33:72:27:02:17:9E:82:25:BA:EF:B7:FE:8C:66:F8:1F:B6:A8:60
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 365703C8
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/wTNyJwIXnoIluu-3_oxm-B-2qGA.roa
Signing time: Sat 01 Jan 2022 13:57:17 +0000
ROA not before: Sat 01 Jan 2022 13:57:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 93.119.107.0/24 maxlen: 24
89.33.192.0/24 maxlen: 24
89.33.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 911672264 (0x365703c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jan 1 13:57:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c133722702179e8225baefb7fe8c66f81fb6a860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a9:16:b3:58:84:af:68:fd:cb:f0:32:3e:17:
d8:fd:6e:d6:ab:97:8f:d2:ba:fc:6c:fc:9a:4e:a9:
97:9f:6b:6d:cc:b2:16:7d:07:ff:cf:52:2d:f6:99:
f8:9c:eb:b2:68:e7:7f:02:e5:6d:81:0f:a4:f6:c6:
c5:b5:fb:4a:6c:d0:65:39:dc:a2:6a:42:a1:b3:96:
e8:f3:04:24:47:61:c2:aa:65:64:59:69:45:bd:ea:
e5:7b:5d:d9:37:c4:3e:03:8a:12:15:f8:81:8b:e2:
40:98:de:4c:fe:18:cd:f7:b7:e3:12:14:7c:23:23:
83:8e:ed:6b:87:35:3a:09:66:74:4c:c1:6c:55:5f:
b6:f8:eb:e3:3c:b0:4e:3e:0d:44:8c:14:16:c9:9e:
24:98:4d:8c:76:59:c0:ca:84:35:ac:ca:dd:16:96:
10:53:2d:66:ac:27:7e:46:40:cd:cb:35:fb:da:0a:
48:04:da:35:d1:48:f5:00:17:2d:5a:d0:d8:ce:b6:
81:d9:6e:9d:1d:6f:0e:ca:7f:58:dc:08:41:a7:1f:
05:1a:20:d2:49:c8:2a:83:68:f7:b8:9a:e9:0a:a7:
e7:1e:dd:2f:36:e1:30:61:f6:ef:8f:12:2f:2a:90:
78:e1:86:d8:a9:36:e6:9f:e4:79:fc:d1:ed:08:a2:
32:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:33:72:27:02:17:9E:82:25:BA:EF:B7:FE:8C:66:F8:1F:B6:A8:60
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/wTNyJwIXnoIluu-3_oxm-B-2qGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.192.0/23
93.119.107.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:fa:2c:e4:14:6f:ff:94:4d:9d:aa:15:8c:63:e6:30:ad:0c:
f0:ae:36:84:58:01:b6:21:4c:20:b2:bd:b4:dd:af:0a:3e:72:
a1:44:ff:9d:51:ee:ac:e6:7b:ee:d1:a5:87:11:16:e6:dc:08:
bb:e2:73:8f:3c:1f:a1:0f:e7:b9:a6:94:64:b1:1e:50:61:ad:
64:41:ca:ec:71:c6:09:cd:07:55:ff:46:dd:0d:65:5e:0d:c3:
37:52:b6:0f:8b:63:c7:c8:3e:ab:a7:84:ee:15:79:db:37:17:
be:d5:6b:aa:e6:12:bd:74:98:03:e1:c9:0c:0b:24:0b:b4:0b:
05:5d:73:6e:3d:ba:5d:57:88:e5:7c:b3:e1:95:17:bb:59:f0:
84:a5:ec:c9:49:ab:cb:1b:36:4b:d9:0c:b0:22:a8:85:97:05:
34:64:7b:1c:d5:0f:9e:10:c6:e5:cf:03:2f:95:66:53:10:87:
95:94:17:bb:9e:4d:ad:ed:ef:e7:e6:ea:c6:69:9f:cf:dd:78:
2f:5e:eb:5c:64:01:38:08:fa:84:2c:0f:b6:e1:2a:d5:b0:f7:
74:29:9e:4d:a0:b6:a3:1e:29:15:e9:f1:98:07:67:98:e1:a9:
9d:09:9f:96:31:35:45:0e:b6:b8:ef:90:e6:b4:b5:28:97:92:
d1:7b:88:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:03 2023 by rpki-client on console-fra.rpki-client.org