Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/WNU1rGl7FS6fgqVdzOYfE2u4lmc.roa
File: WNU1rGl7FS6fgqVdzOYfE2u4lmc.roa (raw, json)
Hash identifier: cyPJBVz9pguJntfr+Ts/Nywc/XwUHqNiGDvpasfm9nI=
Subject key identifier: 58:D5:35:AC:69:7B:15:2E:9F:82:A5:5D:CC:E6:1F:13:6B:B8:96:67
Certificate issuer: /CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Certificate serial: 0A7E0B93
Authority key identifier: 92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/WNU1rGl7FS6fgqVdzOYfE2u4lmc.roa
Signing time: Sat 01 Jan 2022 08:02:21 +0000
ROA not before: Sat 01 Jan 2022 08:02:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 147.161.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176032659 (0xa7e0b93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Validity
Not Before: Jan 1 08:02:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58d535ac697b152e9f82a55dcce61f136bb89667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:8d:c6:51:95:68:5c:fb:da:a0:7e:28:9b:8f:
b4:af:eb:36:2a:a1:e4:02:ee:98:57:3d:c6:c5:2b:
0c:53:1d:f7:92:1a:f4:51:3f:73:db:8a:00:12:96:
3c:30:f3:82:82:c4:71:8e:56:62:a5:28:7c:c6:a2:
f2:f5:10:88:81:09:e5:59:57:dc:24:3e:fb:4c:58:
5b:f8:59:07:a6:f2:99:8e:e3:dd:d0:68:2a:43:a2:
8a:4e:4a:d8:88:88:ab:4a:ca:0d:8a:11:ca:ec:14:
d3:de:9a:17:b3:79:f1:68:cd:75:16:88:c8:69:53:
68:05:ea:45:fb:3e:77:ed:21:a1:f2:31:8f:0d:78:
e4:e9:41:a7:33:2d:5e:05:ee:b5:0e:43:5b:16:33:
7a:93:0d:a7:52:bf:81:09:97:df:83:6b:a9:8f:97:
6c:c0:b3:78:45:7f:ee:30:18:aa:31:bb:41:7d:1c:
02:0f:24:45:53:df:6e:ba:f8:3e:44:bc:10:b7:8e:
b7:eb:a6:8c:c4:a7:e0:37:d7:ae:a2:9f:9d:f3:d0:
3e:6d:72:b6:6f:ae:e0:53:7c:97:89:c9:03:e4:d4:
c8:fa:97:44:db:bf:2b:d0:60:04:56:69:f5:b9:da:
3a:50:73:79:b3:08:27:ae:5a:81:34:fd:bf:c8:6f:
df:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:D5:35:AC:69:7B:15:2E:9F:82:A5:5D:CC:E6:1F:13:6B:B8:96:67
X509v3 Authority Key Identifier:
keyid:92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/WNU1rGl7FS6fgqVdzOYfE2u4lmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/kucgRlxc0NqcahO0T6DYb2SeUFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.2.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:0f:05:b6:ac:37:bf:21:f2:78:9f:70:4f:1d:9f:4e:2d:c5:
06:6f:ba:2d:cd:a3:5e:27:39:ea:b5:cb:31:10:ef:c2:a3:13:
81:5c:4e:ff:bb:5b:21:d7:04:e3:d3:86:8b:bb:9f:e4:33:78:
67:a5:0f:c3:e2:34:e5:d7:8c:8c:43:25:24:57:7c:77:e7:ef:
5e:10:74:6c:d7:04:fd:55:70:09:6b:28:6c:d4:26:d8:cd:e8:
2e:86:d9:96:db:7c:3b:55:e8:7a:fd:c8:43:d5:ec:d1:c6:70:
6d:4b:47:6f:56:cb:74:7e:16:df:46:86:16:8d:22:55:ff:20:
fa:b8:b8:b8:3e:49:e1:bf:5f:85:b3:c8:e8:4f:73:2f:59:a2:
30:45:67:cb:1b:bb:11:d2:0d:21:fc:ee:aa:ff:35:10:00:9f:
77:78:11:b2:70:08:6e:d9:7d:49:79:79:8c:57:7c:f8:d3:97:
8e:b1:f4:41:ad:b2:d5:aa:af:12:94:ad:12:66:33:1c:16:1a:
7c:f7:f8:45:81:40:dd:74:10:b5:04:3c:e6:ea:28:fa:24:29:
e0:25:ff:9f:3e:04:88:16:5f:22:84:81:2b:a8:4e:b1:60:42:
2d:67:92:d3:32:1f:74:b5:30:c5:da:27:99:e4:ad:a3:de:35:
c8:33:f0:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:20 2024 by rpki-client on console-fra.rpki-client.org