Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/wcPaMikCBkakeByWl3GvfR2RgJM.roa
File: wcPaMikCBkakeByWl3GvfR2RgJM.roa (raw, json)
Hash identifier: TJnffPkqLpHLEI2xJ9BdTDZwXg6apMkPF8dwt+aZO9c=
Subject key identifier: C1:C3:DA:32:29:02:06:46:A4:78:1C:96:97:71:AF:7D:1D:91:80:93
Certificate issuer: /CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06
Certificate serial: 1549ECA4
Authority key identifier: B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/wcPaMikCBkakeByWl3GvfR2RgJM.roa
Signing time: Sat 01 Jan 2022 07:57:30 +0000
ROA not before: Sat 01 Jan 2022 07:57:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47443
IP address blocks: 87.232.134.0/24 maxlen: 24
37.26.72.0/23 maxlen: 24
2a01:14f::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357166244 (0x1549eca4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b38bb62a47b1a2aedb70f32f58c979ba0c777f06
Validity
Not Before: Jan 1 07:57:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1c3da3229020646a4781c969771af7d1d918093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4e:c4:9c:0b:1c:31:a5:a2:77:1b:e8:9c:45:
5b:38:73:62:ad:4e:7b:e7:7f:8f:39:b3:81:0e:f8:
d4:7b:28:19:d0:10:87:56:cb:ad:53:a9:bc:00:e2:
4c:45:53:cb:1b:d9:6b:12:ff:e0:f7:6d:cd:49:db:
74:eb:59:dd:06:55:14:c8:6c:29:0e:0b:a7:f9:2f:
fa:e3:33:3f:9d:58:77:e5:25:d8:01:fa:a7:eb:f5:
60:7d:cc:b4:53:54:f9:65:74:69:ab:fa:e2:2c:d5:
a7:7c:ff:28:d7:0a:b3:55:2f:1e:08:aa:84:8d:01:
3e:b0:33:48:d6:e4:55:5a:7b:a2:29:b2:94:f8:11:
ae:22:2b:e2:4d:09:1b:07:01:64:9b:25:03:27:14:
00:44:90:2c:c8:0e:d6:be:39:ea:22:18:61:11:4a:
7d:b5:14:48:51:b2:ce:7d:26:68:5d:ab:74:2c:89:
6f:d9:6c:6a:de:01:8a:6c:da:65:ac:52:39:50:eb:
f3:72:47:a0:9e:7f:c4:41:e5:b5:50:7b:2d:bd:62:
b9:0c:a2:0d:9c:cb:64:d7:06:85:ff:cc:53:e2:4e:
cc:a6:b8:1f:3f:a3:8b:f0:d0:3d:d4:32:ac:b8:18:
36:31:33:7d:15:04:95:fd:15:51:ab:f0:37:af:56:
f0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:C3:DA:32:29:02:06:46:A4:78:1C:96:97:71:AF:7D:1D:91:80:93
X509v3 Authority Key Identifier:
keyid:B3:8B:B6:2A:47:B1:A2:AE:DB:70:F3:2F:58:C9:79:BA:0C:77:7F:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s4u2Kkexoq7bcPMvWMl5ugx3fwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/wcPaMikCBkakeByWl3GvfR2RgJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f682c-1c57-4ce5-bb98-0605c089fc38/1/s4u2Kkexoq7bcPMvWMl5ugx3fwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.72.0/23
87.232.134.0/24
IPv6:
2a01:14f::/32
Signature Algorithm: sha256WithRSAEncryption
76:69:90:64:c6:5f:a0:0e:b3:e0:b7:53:57:ec:c3:9a:95:b1:
4e:36:0a:b9:0b:09:c8:7b:2f:8c:dc:fd:56:d0:a0:09:5d:88:
25:53:32:6f:6a:97:1e:7f:49:d3:5b:bb:df:bb:79:22:7e:9f:
6e:00:f7:81:68:0d:1b:bf:f4:2a:14:42:4d:19:df:bc:95:4d:
26:6d:59:74:94:c8:1b:72:e9:bf:85:50:bf:08:3c:90:a2:29:
9e:a2:a3:39:0c:70:7e:54:ac:df:c9:67:4b:06:32:0a:1c:d9:
ee:00:f7:e8:64:f0:64:a1:be:7b:51:57:44:c0:e1:13:58:5e:
10:96:05:c8:48:33:0a:cd:97:56:58:a8:fb:10:98:b9:95:d5:
b3:ea:03:bb:b5:07:ba:06:c5:42:14:b4:71:df:c0:f6:68:55:
a5:f6:8d:f8:14:e0:08:66:88:43:56:03:4b:81:a2:54:f1:c0:
aa:3d:22:11:7d:99:35:c6:37:17:72:3b:d7:36:50:c9:c0:74:
5a:7a:06:86:55:c2:fa:02:fe:b8:c8:c5:bd:17:43:1b:53:a3:
e7:4a:c1:78:80:50:cd:10:81:d2:71:91:9d:df:21:ad:8e:ab:
d7:45:0a:e6:d7:51:f4:b5:00:c9:29:4a:24:ac:98:2e:82:66:
e0:da:eb:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:57 2023 by rpki-client on console-ams.rpki-client.org