Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/bcea5d-514e-4f52-b49a-90fb57d40ca7/1/WUvlMDGdmmT3cpEFKAei541OXGM.roa
File: WUvlMDGdmmT3cpEFKAei541OXGM.roa (raw, json)
Hash identifier: GXzKNl36d2CeU1+thBE6AkCg1XbhZfLQQDvq28DjSfU=
Subject key identifier: 59:4B:E5:30:31:9D:9A:64:F7:72:91:05:28:07:A2:E7:8D:4E:5C:63
Certificate issuer: /CN=cac9804e227eaac9ac09b0821fc07ee2817777b5
Certificate serial: F406FE
Authority key identifier: CA:C9:80:4E:22:7E:AA:C9:AC:09:B0:82:1F:C0:7E:E2:81:77:77:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ysmATiJ-qsmsCbCCH8B-4oF3d7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/bcea5d-514e-4f52-b49a-90fb57d40ca7/1/WUvlMDGdmmT3cpEFKAei541OXGM.roa
Signing time: Sat 01 Jan 2022 08:59:24 +0000
ROA not before: Sat 01 Jan 2022 08:59:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 45.91.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15992574 (0xf406fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cac9804e227eaac9ac09b0821fc07ee2817777b5
Validity
Not Before: Jan 1 08:59:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=594be530319d9a64f77291052807a2e78d4e5c63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8a:81:82:04:97:f2:3f:81:61:7c:f1:d6:b1:
1d:47:90:6b:a0:9b:84:7a:bf:f1:fd:a0:d1:88:6e:
31:43:ae:31:ca:08:b0:29:13:98:88:7c:31:cc:34:
68:17:cc:b5:09:ca:6f:a8:79:11:95:63:a7:2d:76:
16:c0:ab:b3:2f:c5:b2:e2:79:45:13:7b:e7:c2:1d:
30:46:09:fb:cf:2f:f8:99:3d:08:d4:1e:dc:33:a1:
30:fa:70:19:cc:f1:28:aa:74:f1:be:8d:3e:24:7b:
3e:ea:f7:32:74:5e:31:27:45:f9:4a:4d:3e:fc:fb:
2a:c2:7a:3b:9d:9c:6d:2b:23:b2:29:86:f8:7a:f9:
5d:ad:55:56:da:c3:24:d8:4b:d1:8f:24:ed:85:eb:
60:df:1a:d1:47:c8:ed:77:fb:ad:31:5d:f9:0f:71:
0f:94:db:a7:cf:b4:7d:f3:2a:c6:61:f2:90:43:87:
7e:a9:19:43:6a:1e:ee:f8:5b:18:71:b0:a5:02:82:
50:4f:a2:80:41:b6:8b:f5:d1:63:08:cf:40:82:cd:
c5:88:82:16:53:b3:50:ab:3a:1c:76:4f:08:db:8f:
af:3b:e5:03:d8:eb:36:b2:2f:7a:f8:85:70:22:84:
82:a2:2d:7c:bb:a4:84:78:a9:bd:ef:8b:4c:c8:45:
2b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:4B:E5:30:31:9D:9A:64:F7:72:91:05:28:07:A2:E7:8D:4E:5C:63
X509v3 Authority Key Identifier:
keyid:CA:C9:80:4E:22:7E:AA:C9:AC:09:B0:82:1F:C0:7E:E2:81:77:77:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ysmATiJ-qsmsCbCCH8B-4oF3d7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/bcea5d-514e-4f52-b49a-90fb57d40ca7/1/WUvlMDGdmmT3cpEFKAei541OXGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/bcea5d-514e-4f52-b49a-90fb57d40ca7/1/ysmATiJ-qsmsCbCCH8B-4oF3d7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.254.0/24
Signature Algorithm: sha256WithRSAEncryption
46:ef:da:62:8d:8f:f3:2d:0e:f6:df:09:69:cd:05:8f:f3:e6:
00:06:c3:d3:7f:7b:d6:5b:6c:de:34:a1:c0:98:fb:22:9b:60:
fe:92:d4:1a:9e:36:5b:7d:6a:9c:f3:e1:49:8b:50:e0:bb:74:
4c:11:52:09:54:d3:88:53:11:96:12:6f:17:29:bb:72:cb:3b:
36:af:0d:55:9a:25:e8:95:dc:70:69:32:53:5d:ab:ee:29:a6:
53:4d:92:f7:08:fb:72:3e:ce:3e:60:d1:b4:a4:85:07:2e:74:
9f:1a:4b:bb:f1:ad:ff:3c:e6:5a:0e:0d:55:c9:89:83:0b:3a:
05:46:83:00:e4:78:33:bc:5f:3f:77:3c:3a:42:d5:bc:9d:9a:
28:07:b9:70:88:f9:a0:4d:ce:a1:37:b4:68:da:ca:a3:58:e7:
f5:2b:f9:16:af:61:cc:4d:f8:8f:1b:9b:8f:1f:65:f0:56:79:
e4:97:b5:57:32:ae:8f:fb:a9:ab:4c:23:cc:20:3f:f3:0c:18:
4a:8a:bc:94:bc:11:e1:a9:82:60:eb:8e:a0:cd:fe:bf:11:23:
72:0f:19:30:1a:86:4b:93:0f:8a:a9:45:92:7a:00:50:7d:a5:
50:9e:fa:de:ef:9e:66:63:40:80:58:e3:4a:23:3c:46:2e:f2:
21:84:a7:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:18 2024 by rpki-client on console-fra.rpki-client.org