Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/WkY1z6kW7iNnJEet8J7nBXlscoA.roa
File: WkY1z6kW7iNnJEet8J7nBXlscoA.roa (raw, json)
Hash identifier: FI+gVtQ90cGdDJkTF4Ul/9MFYH6EFJJLovh2ZPO6h6Q=
Subject key identifier: 5A:46:35:CF:A9:16:EE:23:67:24:47:AD:F0:9E:E7:05:79:6C:72:80
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0183B4E1D2D17E36CEFE53B20E6DC94FC5A2
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/WkY1z6kW7iNnJEet8J7nBXlscoA.roa
Signing time: Fri 07 Oct 2022 23:57:21 +0000
ROA not before: Fri 07 Oct 2022 23:57:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 176.105.228.0/24 maxlen: 24
95.214.178.0/23 maxlen: 24
45.132.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b4:e1:d2:d1:7e:36:ce:fe:53:b2:0e:6d:c9:4f:c5:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Oct 7 23:57:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a4635cfa916ee23672447adf09ee705796c7280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:44:2b:3e:cc:52:f9:73:64:fa:06:46:fc:0d:
29:90:55:44:fe:21:ca:c0:4d:21:62:3a:b3:5d:97:
a6:77:0b:3a:79:66:02:d4:13:cf:29:df:5b:11:cd:
0f:65:fe:f7:21:51:a0:14:e1:ea:74:9e:2f:26:f2:
0c:c0:37:59:af:19:fa:a6:81:be:e2:b4:15:e9:f6:
2d:14:e0:a5:5a:7a:ba:33:bb:0a:f9:8f:91:0b:22:
18:c9:42:63:c4:ca:3f:1e:6c:3e:95:19:97:d4:17:
3a:26:b9:c8:9f:4d:12:b1:c9:a7:0a:2a:d2:8b:20:
90:50:b0:78:cf:51:2c:78:f1:dd:a9:50:83:a3:c5:
55:1c:f8:c6:fa:0a:55:79:c4:09:32:41:44:88:d3:
75:71:12:95:06:0e:4c:3e:73:0a:c7:e9:58:0c:58:
d3:14:a3:76:e3:01:d8:18:39:f1:f7:d8:43:43:1a:
82:57:fb:22:61:1b:5b:b8:ca:2f:6a:04:a0:71:d0:
97:21:92:e2:cb:28:f1:67:e7:bb:2b:b5:06:b0:e8:
3c:44:45:e8:62:8d:9d:10:af:6c:da:2f:0c:9b:bc:
d5:39:d5:16:5e:e9:be:00:92:86:88:8a:0c:bf:e0:
71:34:bb:bf:03:99:0a:f4:0b:93:0c:1a:03:af:37:
d2:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:46:35:CF:A9:16:EE:23:67:24:47:AD:F0:9E:E7:05:79:6C:72:80
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/WkY1z6kW7iNnJEet8J7nBXlscoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.80.0/22
95.214.178.0/23
176.105.228.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:cc:19:49:b0:cf:82:79:4a:73:94:bb:d7:44:f4:cf:26:64:
9e:44:60:f3:f1:1c:08:ad:07:52:2d:a2:2c:f9:2e:30:16:d0:
60:83:09:49:ea:60:a4:b5:af:31:64:d7:62:5a:00:c2:9d:d5:
d8:78:c1:fe:67:c1:f7:d3:8e:91:f6:21:b9:1d:fd:85:6e:36:
d7:21:f8:46:00:57:44:be:63:5a:78:3a:8b:c1:31:ea:7f:f2:
a0:04:46:c0:eb:b5:08:07:d1:12:9b:f2:5a:4c:5d:10:55:ea:
c4:cf:13:1c:78:34:26:b4:95:39:86:d0:32:db:82:75:a7:74:
86:70:d3:f0:5b:74:df:03:ec:52:8b:99:4e:59:87:ec:7a:fd:
b4:53:fe:38:b7:05:a8:00:e0:6f:09:64:87:6f:56:ad:3f:c5:
d5:16:3d:b7:3f:18:28:6b:8a:d5:ca:10:fb:6f:c2:1e:6e:f9:
50:3c:83:fd:0b:44:95:27:90:f0:92:5a:a6:fb:46:7f:a1:93:
86:51:96:f7:c1:10:49:77:ae:13:7a:9e:8f:13:08:02:eb:2f:
ab:e4:f0:fa:ce:e6:97:8f:b0:6e:2b:92:f8:3f:4e:23:da:a5:
1b:19:3b:90:55:d6:1f:bf:0a:31:67:be:86:fd:8f:4f:3e:6c:
cc:e8:ac:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:43 2024 by rpki-client on console-ams.rpki-client.org