Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/WSV6RACLaoo-1vRTG3y4nfVO7u4.roa
File: WSV6RACLaoo-1vRTG3y4nfVO7u4.roa (raw, json)
Hash identifier: MTA4ZZPyP+FqfAgDscxtfrB3G4mgvTeGG/TJsUAHpsk=
Subject key identifier: 59:25:7A:44:00:8B:6A:8A:3E:D6:F4:53:1B:7C:B8:9D:F5:4E:EE:EE
Certificate issuer: /CN=33fbdbb20c2d97073c0de8b7caa75ec1eeb191b8
Certificate serial: 066B54FE
Authority key identifier: 33:FB:DB:B2:0C:2D:97:07:3C:0D:E8:B7:CA:A7:5E:C1:EE:B1:91:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M_vbsgwtlwc8Dei3yqdewe6xkbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/WSV6RACLaoo-1vRTG3y4nfVO7u4.roa
Signing time: Sat 01 Jan 2022 16:05:10 +0000
ROA not before: Sat 01 Jan 2022 16:05:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 217.169.72.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107697406 (0x66b54fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33fbdbb20c2d97073c0de8b7caa75ec1eeb191b8
Validity
Not Before: Jan 1 16:05:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59257a44008b6a8a3ed6f4531b7cb89df54eeeee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:21:7b:0a:57:1e:76:e5:55:fc:aa:99:c9:1b:
50:62:0e:f4:56:c8:68:d1:a1:79:40:d1:58:83:eb:
3f:f1:db:21:f2:77:c9:56:b3:a5:b0:33:43:2e:45:
43:14:13:f3:c4:19:af:4b:6d:48:76:69:fe:59:59:
9c:c1:cf:76:a7:07:74:c8:99:4a:09:fa:e7:40:27:
e5:da:f1:76:f0:7e:23:75:b9:92:c9:19:83:52:1b:
47:64:f5:13:36:d1:de:2f:8b:5b:47:2b:9d:41:d7:
14:19:a9:57:36:3f:1d:ed:c0:59:8e:3d:a3:ec:b7:
12:bd:df:71:d1:0a:30:31:ac:04:5f:dc:00:a9:d2:
b6:5c:72:2e:29:c8:2a:c2:a7:8d:55:be:3e:e6:5a:
a3:b6:72:74:28:6e:bb:9e:41:dc:0a:db:82:bc:d0:
b4:ce:c7:55:c7:23:b9:29:d9:d2:b6:fd:06:ce:19:
10:32:86:d5:2e:3e:e2:01:d0:2d:fa:7f:c5:62:d9:
71:04:e1:54:c0:e3:5b:d8:03:2d:61:f6:98:60:6d:
af:ab:ba:97:54:79:12:e0:0e:57:fc:0a:88:26:76:
30:0d:bb:09:41:79:f2:25:fa:c0:7c:fe:04:4e:2a:
04:e8:59:20:ed:bc:9c:33:c0:f6:0b:c7:75:4b:62:
03:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:25:7A:44:00:8B:6A:8A:3E:D6:F4:53:1B:7C:B8:9D:F5:4E:EE:EE
X509v3 Authority Key Identifier:
keyid:33:FB:DB:B2:0C:2D:97:07:3C:0D:E8:B7:CA:A7:5E:C1:EE:B1:91:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M_vbsgwtlwc8Dei3yqdewe6xkbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/WSV6RACLaoo-1vRTG3y4nfVO7u4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3a362d-4198-4b08-bb0a-dbe41fc8399e/1/M_vbsgwtlwc8Dei3yqdewe6xkbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.169.72.0/21
Signature Algorithm: sha256WithRSAEncryption
6b:00:a1:1b:64:38:55:d3:f6:fd:3a:13:48:da:b2:0b:01:c9:
73:25:fe:19:d6:9d:76:57:63:8f:0a:2a:e0:30:18:eb:1d:c6:
a7:f7:50:35:74:91:54:3f:4c:8f:d2:87:0c:35:17:bb:94:cf:
38:28:17:ee:9d:63:93:52:5c:2b:70:07:6e:44:77:db:83:1c:
46:28:4e:74:ca:68:44:05:84:60:f0:f4:bb:93:e7:6c:c7:55:
db:c4:05:70:04:d4:ef:b2:91:09:de:bc:d3:ee:bb:a3:33:65:
e6:cc:c2:b6:8e:7f:a6:95:da:ba:c2:dc:28:87:55:32:7b:63:
a6:60:39:87:5a:44:ea:68:f1:60:63:e5:c6:8b:80:da:52:f7:
58:a0:e7:ea:c0:51:c6:bf:92:fa:a4:4d:c5:f9:5d:0f:18:04:
c1:48:ce:7f:34:22:79:d3:25:d1:81:ef:7c:1a:39:a2:92:f2:
95:0f:8d:46:64:e3:fb:3a:53:85:08:f8:82:1f:df:13:81:fa:
ce:48:c6:7d:03:10:2d:b9:00:09:1b:2c:12:61:77:54:b2:d7:
9e:41:c9:48:73:19:26:7e:5e:40:fd:d1:e2:c2:c0:29:28:70:
6d:3d:66:3b:0f:a8:80:e2:c7:45:e4:a1:39:06:d0:9b:f4:ed:
74:04:a0:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:57 2024 by rpki-client on console-ams.rpki-client.org