Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/df5bad-ac59-413e-9ad0-5995ae8acb9f/1/WX1FXuq30_WbZoTkmnSjun3GKC0.roa
File: WX1FXuq30_WbZoTkmnSjun3GKC0.roa (raw, json)
Hash identifier: E1c5kZT+pUkRbQj3GlxyWxbDziqp5p12jUxBfa9tT6g=
Subject key identifier: 59:7D:45:5E:EA:B7:D3:F5:9B:66:84:E4:9A:74:A3:BA:7D:C6:28:2D
Certificate issuer: /CN=79a1cf1aa8fbc4e33378673ebd05364880e2a91f
Certificate serial: 0682A4B6
Authority key identifier: 79:A1:CF:1A:A8:FB:C4:E3:33:78:67:3E:BD:05:36:48:80:E2:A9:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eaHPGqj7xOMzeGc-vQU2SIDiqR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/df5bad-ac59-413e-9ad0-5995ae8acb9f/1/WX1FXuq30_WbZoTkmnSjun3GKC0.roa
Signing time: Sat 01 Jan 2022 03:57:05 +0000
ROA not before: Sat 01 Jan 2022 03:57:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 553
IP address blocks: 141.87.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109225142 (0x682a4b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a1cf1aa8fbc4e33378673ebd05364880e2a91f
Validity
Not Before: Jan 1 03:57:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=597d455eeab7d3f59b6684e49a74a3ba7dc6282d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:17:f2:59:18:3f:bb:44:01:9d:87:72:a1:5d:
71:a0:22:c6:f0:e9:7f:29:76:98:f5:0c:d1:97:7f:
f7:b8:4c:6c:35:76:15:02:61:4c:93:55:b7:c8:37:
70:a9:6a:f7:4f:63:a8:4b:5e:97:8f:49:8b:25:65:
f1:14:ce:60:f6:9b:fa:20:b2:33:c0:53:93:21:fa:
2f:8d:08:e1:76:39:c1:7f:45:c6:4f:75:45:4d:8a:
76:9e:c2:6a:54:3c:0e:4a:58:3a:24:e8:0b:8f:99:
be:ac:60:6d:c9:ea:2a:9f:28:c1:1c:6d:bd:83:cd:
64:04:af:3d:a3:24:7e:ca:a7:b2:37:52:44:37:29:
47:2d:0f:be:21:88:6a:b4:d0:c0:73:47:4d:52:23:
a5:88:f9:a0:b1:5a:10:ce:9e:29:8b:c9:44:43:5e:
10:fd:ea:b3:7a:76:53:39:0b:a9:23:ca:6d:3e:a1:
81:f6:bf:f8:58:e2:31:39:7a:00:19:1d:67:8b:38:
90:7e:43:df:92:5f:83:f7:7c:d1:5f:54:5f:cb:46:
8b:c3:d6:90:97:0f:79:3b:0e:b4:a1:9c:1f:cd:12:
12:95:a8:91:e0:0d:21:ea:d9:12:6f:cd:3b:bf:19:
df:ea:ae:d5:43:55:ba:e4:ba:32:ef:7e:08:e8:3b:
51:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:7D:45:5E:EA:B7:D3:F5:9B:66:84:E4:9A:74:A3:BA:7D:C6:28:2D
X509v3 Authority Key Identifier:
keyid:79:A1:CF:1A:A8:FB:C4:E3:33:78:67:3E:BD:05:36:48:80:E2:A9:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eaHPGqj7xOMzeGc-vQU2SIDiqR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/df5bad-ac59-413e-9ad0-5995ae8acb9f/1/WX1FXuq30_WbZoTkmnSjun3GKC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/df5bad-ac59-413e-9ad0-5995ae8acb9f/1/eaHPGqj7xOMzeGc-vQU2SIDiqR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.87.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a0:09:a8:aa:51:ec:98:9e:b5:f0:99:ee:c3:b5:12:c8:a8:6d:
28:8b:86:b1:c7:b0:3f:c6:de:a8:17:ad:e9:d2:c2:bd:2c:0c:
c9:f1:27:60:07:29:5d:8b:62:60:25:d9:26:dd:80:b9:9e:3e:
38:cd:c7:d1:e4:1b:81:20:31:8f:fe:2a:4c:5a:fa:14:34:87:
1a:a4:b4:20:12:89:de:72:ab:a0:3b:e0:6a:4b:56:7e:d3:d3:
9d:39:b1:51:0a:9f:ca:7e:95:84:6c:0a:a2:69:a6:fc:98:e0:
86:bc:77:df:85:08:95:8b:70:c3:d6:bb:0e:48:5a:2a:97:54:
48:5a:f6:e7:dc:ac:b8:94:2a:50:db:e1:f6:df:3a:1d:53:14:
c8:0d:ef:58:9b:8c:0d:9e:0e:45:81:06:46:e5:57:05:1d:22:
b1:29:57:ee:fd:4a:a5:11:16:16:7c:53:c8:2a:27:c2:87:59:
65:a7:69:bf:c5:77:2c:b9:a5:ef:7a:02:00:6b:05:94:a8:7a:
22:a0:a3:e6:b2:1c:ff:e7:c8:f6:10:59:88:92:28:03:36:eb:
83:d3:96:df:56:2a:5c:f5:20:01:29:6f:b4:bb:8e:ca:de:5c:
9f:44:1b:89:9b:9d:17:f8:c4:0f:15:c5:43:67:e7:69:9a:dc:
3b:be:3f:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:34 2024 by rpki-client on console-ams.rpki-client.org