Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wt-N9V4NezQepfSAMX4VzMZSe6g.roa
File: wt-N9V4NezQepfSAMX4VzMZSe6g.roa (raw, json)
Hash identifier: K5Ek/7BzdGqlmkZDnY9NLLeWEDi2tjlCNLyujYJLcio=
Subject key identifier: C2:DF:8D:F5:5E:0D:7B:34:1E:A5:F4:80:31:7E:15:CC:C6:52:7B:A8
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01845DB175A04281B6BD2CA8ADCC8EE7C23B
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wt-N9V4NezQepfSAMX4VzMZSe6g.roa
Signing time: Wed 09 Nov 2022 18:40:21 +0000
ROA not before: Wed 09 Nov 2022 18:40:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59432
IP address blocks: 94.241.166.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5d:b1:75:a0:42:81:b6:bd:2c:a8:ad:cc:8e:e7:c2:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Nov 9 18:40:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2df8df55e0d7b341ea5f480317e15ccc6527ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d0:2f:28:3c:1c:b7:d1:0d:e2:74:cf:e6:be:
dc:90:99:c5:09:ea:1c:4e:ec:6f:ce:f0:88:e3:30:
03:a3:33:d2:44:c9:57:e0:e2:08:78:12:dd:e4:21:
71:2b:d4:29:04:0b:26:6e:01:32:ce:3e:48:e7:9c:
ea:06:66:6f:96:23:36:5e:0a:69:80:96:5a:af:94:
86:6c:42:e2:f5:f4:80:6b:da:32:5f:ac:f4:53:32:
d3:f5:6f:86:c5:3b:a4:3e:6c:a3:3c:6c:84:d2:ec:
f6:6b:65:f5:50:8c:9f:44:6f:ed:ad:2b:77:e5:61:
66:fe:ff:04:9c:01:0f:71:12:de:fb:35:0e:6f:6b:
af:1d:1f:ff:4a:35:87:3e:18:aa:c9:e4:9d:e5:ec:
f6:0f:59:bf:de:93:0d:06:b8:19:a7:c6:03:a5:4a:
a1:22:ff:68:07:a3:b8:33:6c:1f:f5:c0:17:1f:11:
23:c6:82:fb:de:84:66:dd:50:c1:1d:b6:6d:98:2f:
ba:6f:94:aa:80:70:44:67:a0:ab:f6:7d:34:28:d0:
50:7d:86:c8:08:93:68:7c:c3:fb:1c:df:f5:83:44:
b3:0b:93:e3:3b:b0:25:2c:d6:46:01:43:ce:90:26:
2a:54:81:b1:c3:c4:be:9a:1f:ab:2c:26:8b:81:ea:
ac:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:DF:8D:F5:5E:0D:7B:34:1E:A5:F4:80:31:7E:15:CC:C6:52:7B:A8
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wt-N9V4NezQepfSAMX4VzMZSe6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.241.166.0/23
Signature Algorithm: sha256WithRSAEncryption
10:42:c6:22:c2:49:df:ef:7f:43:5c:be:ab:1a:b8:15:43:57:
6d:c8:c0:b2:db:41:cd:00:ea:66:94:d5:1b:62:0a:e1:4a:ba:
0b:7f:33:08:ac:e5:ef:74:a3:d1:6f:26:46:af:58:f4:ba:18:
dd:b9:59:fd:20:39:19:35:23:d7:6e:7e:a6:be:2e:74:fe:dc:
17:dc:d4:66:8b:24:89:c8:8a:b1:72:cb:67:24:68:b4:32:59:
b5:1a:05:dc:89:93:4c:cf:6b:2d:0f:3e:c8:31:3b:f2:db:73:
51:1f:65:1c:35:1b:b0:53:74:93:98:82:0b:5c:f2:3d:26:09:
79:07:d3:2a:17:c6:45:28:a6:f1:65:ab:de:4e:ec:a7:22:fb:
3f:31:39:e7:58:3f:1c:93:ad:c6:7f:0c:d7:30:28:6c:ee:82:
28:70:19:27:34:df:9c:a1:27:56:30:b4:3d:ee:f9:a8:e3:c2:
88:1f:9b:98:bf:e1:cf:dc:a8:75:0f:3c:1f:6a:43:22:0b:df:
48:83:df:6e:d7:5c:28:14:34:bf:d1:91:40:a0:cb:50:0e:e9:
cf:39:1e:f3:68:59:11:d7:7e:e9:a7:12:35:df:3e:4f:0c:4a:
99:a8:fd:a0:79:d9:4e:37:4f:77:cf:ba:0a:d4:75:f9:07:0f:
27:e1:3b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:45 2023 by rpki-client on console-fra.rpki-client.org