Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/wFEqe8RS5mfxMeCgHHdHFuEICqk.roa
File: wFEqe8RS5mfxMeCgHHdHFuEICqk.roa (raw, json)
Hash identifier: s8ihlag/h3KTW/3HISOWc4/TbJaquc+vgCPmxCC8cTE=
Subject key identifier: C0:51:2A:7B:C4:52:E6:67:F1:31:E0:A0:1C:77:47:16:E1:08:0A:A9
Certificate issuer: /CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06
Certificate serial: 154AA73B
Authority key identifier: B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/wFEqe8RS5mfxMeCgHHdHFuEICqk.roa
Signing time: Sat 01 Jan 2022 07:57:31 +0000
ROA not before: Sat 01 Jan 2022 07:57:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198949
IP address blocks: 87.198.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357214011 (0x154aa73b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06
Validity
Not Before: Jan 1 07:57:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0512a7bc452e667f131e0a01c774716e1080aa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bc:a0:5f:f4:8f:22:7d:38:66:47:0e:1d:d2:
87:34:f4:c6:4f:57:ef:62:7a:2b:24:36:6a:14:f1:
7c:89:99:35:22:89:32:86:64:a9:a0:48:f1:00:de:
61:89:e2:75:be:b5:6c:5e:a9:b2:0e:20:c4:89:7b:
eb:4b:2c:d7:03:57:5f:04:e0:7d:b2:17:4e:85:fe:
90:c0:d6:1a:ba:22:30:bd:99:90:d6:ce:99:ce:d0:
67:69:d9:43:56:71:2e:a6:21:50:5a:47:5d:0c:d5:
ac:c3:0f:5d:f0:76:25:4a:a1:fe:46:71:76:28:a2:
da:a9:c0:20:12:02:3e:10:8f:c9:b1:36:d0:dd:06:
98:2d:9a:3e:21:77:51:ae:1b:22:d3:65:46:90:35:
46:37:d6:a3:bd:61:ba:ed:7d:87:af:e3:79:24:65:
aa:e0:79:2f:cb:ed:86:6b:4c:10:67:66:93:de:41:
d1:2a:95:d4:8f:8e:e3:45:ad:fa:72:79:53:e5:5d:
c9:b6:61:9f:dc:83:a2:79:9c:b8:d4:47:c6:68:6d:
a7:38:24:c6:d6:11:c7:16:c7:ff:62:73:75:c8:4b:
dc:0a:d1:1a:68:1c:df:d5:c2:70:2d:c4:5c:d1:56:
b1:1c:dd:db:a7:5b:c4:94:77:7e:b6:94:85:7e:42:
b4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:51:2A:7B:C4:52:E6:67:F1:31:E0:A0:1C:77:47:16:E1:08:0A:A9
X509v3 Authority Key Identifier:
keyid:B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/wFEqe8RS5mfxMeCgHHdHFuEICqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.198.212.0/24
Signature Algorithm: sha256WithRSAEncryption
01:ed:fb:80:2a:a7:28:b5:34:fa:65:eb:54:55:73:8c:01:15:
cb:38:b8:1c:91:2e:46:d6:8b:2c:24:dd:85:75:87:33:1b:fb:
b2:f9:e8:40:ab:33:e7:48:54:f7:c8:31:13:18:c8:7b:81:4a:
3f:5d:fa:41:0d:38:0f:5f:d6:ef:ce:86:ee:82:12:8d:ea:82:
e5:a6:a6:2e:93:2c:e5:1e:84:30:bc:2e:ac:77:67:71:ae:87:
8c:48:6b:27:7c:77:d0:f1:05:1c:02:ad:fa:0f:76:1d:41:94:
c9:99:f2:b7:e7:01:c4:1b:5a:2c:e3:3d:02:8d:b9:7e:f4:e8:
d8:90:33:a3:5c:7a:8f:b6:80:c7:27:b2:db:3a:18:45:c1:55:
cb:6d:43:1a:6e:06:0f:15:6a:33:08:4c:f7:0d:07:b5:53:44:
a0:15:20:da:0c:ad:db:47:41:73:1f:a5:22:df:fb:39:5c:09:
e6:a9:22:52:e9:6a:5d:72:5b:29:39:03:f8:6d:e7:3d:b2:d8:
ea:65:b6:6b:5c:97:95:09:95:bd:2c:49:ec:5b:c8:36:39:67:
8e:b7:aa:e4:b1:b9:1f:9f:a7:9f:f3:40:2e:68:16:28:c9:25:
83:d5:f0:91:59:88:5a:d9:8b:fa:bc:5f:a1:3c:50:2d:16:ec:
e8:fc:47:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:56 2023 by rpki-client on console-ams.rpki-client.org