Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/c5383c-d0c4-4c19-90cb-35e14f73425c/1/WNCd53aXui49hmuSDZrgcYsXvTg.roa
File: WNCd53aXui49hmuSDZrgcYsXvTg.roa (raw, json)
Hash identifier: Hd7Iuyc0M24+dgEeWftmBZgpIW7ziqabrWYHiuYKAgU=
Subject key identifier: 58:D0:9D:E7:76:97:BA:2E:3D:86:6B:92:0D:9A:E0:71:8B:17:BD:38
Certificate issuer: /CN=8e1b91d483609626138371c6550a1fcd0c057e12
Certificate serial: FD5674
Authority key identifier: 8E:1B:91:D4:83:60:96:26:13:83:71:C6:55:0A:1F:CD:0C:05:7E:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhuR1INgliYTg3HGVQofzQwFfhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/c5383c-d0c4-4c19-90cb-35e14f73425c/1/WNCd53aXui49hmuSDZrgcYsXvTg.roa
Signing time: Mon 07 Mar 2022 17:31:13 +0000
ROA not before: Mon 07 Mar 2022 17:31:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 146.19.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16602740 (0xfd5674)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1b91d483609626138371c6550a1fcd0c057e12
Validity
Not Before: Mar 7 17:31:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58d09de77697ba2e3d866b920d9ae0718b17bd38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:95:7e:c4:2e:74:ae:1a:a0:01:96:07:89:93:
94:a2:0e:79:e0:39:21:db:e7:9e:07:f3:ad:43:b2:
22:8c:87:bd:03:27:36:d4:8e:f6:d4:e7:10:90:8a:
bf:f6:bb:b3:b6:04:66:6b:2b:fb:d7:48:3b:13:e2:
f4:55:18:ab:63:40:1f:31:24:36:ef:f4:22:9f:c4:
a4:cb:02:59:cc:c5:45:fd:62:cf:d5:dc:16:db:58:
06:e2:f0:d4:54:c3:23:f9:64:c9:8a:9e:82:3a:05:
48:c8:5c:5f:a7:08:56:dc:fd:d1:d9:e2:b6:6f:9b:
1a:54:c7:20:2a:e8:66:05:c8:38:7f:0e:79:03:fb:
05:ea:67:e4:cd:fc:e1:13:e7:ab:05:ac:51:84:69:
51:1b:70:00:23:70:60:bf:ca:73:ec:37:b4:5b:8a:
50:9d:44:2b:d7:94:b2:72:8e:1c:cd:3c:31:ad:d7:
3a:1d:21:a6:d0:23:d7:41:65:9d:75:14:7a:dd:16:
e7:02:1b:bf:23:39:95:05:aa:da:21:e4:0f:20:d5:
6a:73:3e:7b:83:6c:b4:00:06:d4:6b:b9:b3:4d:be:
35:b0:80:d4:3b:40:17:11:56:7a:40:59:ca:75:77:
af:ea:00:49:3e:6a:9d:0a:7a:20:e4:5f:3a:cc:d3:
37:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:D0:9D:E7:76:97:BA:2E:3D:86:6B:92:0D:9A:E0:71:8B:17:BD:38
X509v3 Authority Key Identifier:
keyid:8E:1B:91:D4:83:60:96:26:13:83:71:C6:55:0A:1F:CD:0C:05:7E:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhuR1INgliYTg3HGVQofzQwFfhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c5383c-d0c4-4c19-90cb-35e14f73425c/1/WNCd53aXui49hmuSDZrgcYsXvTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c5383c-d0c4-4c19-90cb-35e14f73425c/1/jhuR1INgliYTg3HGVQofzQwFfhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.151.0/24
Signature Algorithm: sha256WithRSAEncryption
15:fa:67:17:67:23:12:8e:bb:cf:aa:03:fc:81:52:19:4e:bc:
da:c3:15:11:3f:b1:05:e4:9b:85:a8:be:37:28:d2:13:66:f5:
ab:75:17:7c:87:41:66:4a:52:8d:d9:37:23:8a:1b:4b:80:28:
46:e4:c4:58:9d:af:e3:78:60:47:3a:ab:63:d1:17:a9:21:8b:
8e:f8:b9:41:73:46:5e:1d:7b:47:fa:0f:4c:a8:e1:05:ba:d2:
2e:44:66:04:cc:d0:f5:c5:54:fe:ac:f2:33:84:6d:e4:df:74:
d8:16:67:ff:8f:44:b6:1d:4d:2f:30:13:cf:f9:c7:c4:16:b1:
f4:ee:3c:5f:9f:18:1b:38:4a:02:e7:ae:41:d7:89:cd:d9:32:
c3:39:a0:a5:67:fd:99:b0:d3:01:55:74:56:4f:ca:d1:1b:07:
45:72:3b:a3:06:4c:e0:bb:f1:a3:a1:98:09:85:1f:b1:71:75:
26:51:97:4a:39:8c:13:ea:52:0e:ee:fd:60:0a:88:e0:39:c0:
27:70:8e:d5:9a:0e:a9:a8:79:a3:44:4f:de:21:34:ce:c7:ec:
6a:f4:95:fd:13:cb:0e:c5:19:7e:ee:0b:fb:52:21:12:70:a1:
e9:e0:4d:c6:53:d3:6b:b0:49:cc:12:33:39:ae:54:9b:ab:c9:
46:02:49:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:46 2023 by rpki-client on console-fra.rpki-client.org