Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/d47163-80ea-444a-a79f-03aa29b6a76a/1/wnnl4RUaXNaJCaa8AdYZRlMpvm0.roa
File: wnnl4RUaXNaJCaa8AdYZRlMpvm0.roa (raw, json)
Hash identifier: dOq/DsPrBdzhsHV6qx2W4Xp4iC9EFNReVh/ouDuTGyI=
Subject key identifier: C2:79:E5:E1:15:1A:5C:D6:89:09:A6:BC:01:D6:19:46:53:29:BE:6D
Certificate issuer: /CN=d389b418da34aa3934ecde2b731df1d4ed7ec80e
Certificate serial: 03AFCCCA
Authority key identifier: D3:89:B4:18:DA:34:AA:39:34:EC:DE:2B:73:1D:F1:D4:ED:7E:C8:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04m0GNo0qjk07N4rcx3x1O1-yA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/d47163-80ea-444a-a79f-03aa29b6a76a/1/wnnl4RUaXNaJCaa8AdYZRlMpvm0.roa
Signing time: Sat 01 Jan 2022 10:53:28 +0000
ROA not before: Sat 01 Jan 2022 10:53:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212523
IP address blocks: 5.133.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61852874 (0x3afccca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d389b418da34aa3934ecde2b731df1d4ed7ec80e
Validity
Not Before: Jan 1 10:53:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c279e5e1151a5cd68909a6bc01d619465329be6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:80:f6:7c:91:7a:39:e7:fa:64:f8:2c:23:7d:
54:34:1f:c7:2e:b6:8a:a6:ae:9e:f0:36:2e:ec:9a:
4d:10:18:d3:cf:8f:3f:1d:d4:72:82:a5:9c:54:fe:
3a:f3:df:2b:2d:2b:c5:42:57:aa:ed:de:30:a3:9f:
bd:22:84:41:85:1c:be:7b:23:31:f2:32:b7:3b:22:
17:6d:29:f2:04:2e:f4:ed:e5:e6:b4:b9:e8:ee:af:
6c:9f:1d:e4:b8:51:fa:2c:be:8b:4a:25:eb:65:0b:
6a:e8:b9:75:f6:25:c3:5b:b7:c2:d1:9e:c2:af:54:
88:f5:45:a8:23:e1:11:b6:f7:19:f1:06:52:35:28:
e5:74:2c:9f:34:dd:46:27:9b:3e:7e:0a:db:73:20:
36:a1:f6:b4:8f:8a:8d:1a:f1:ba:0c:c0:6f:52:58:
c1:7c:3c:46:6b:cd:a6:b4:9f:ea:ca:fb:16:2e:4c:
29:47:33:aa:93:d3:ad:ec:d5:b7:3f:de:91:5c:ac:
62:4e:fe:d9:98:5e:60:15:a1:26:4b:fc:bd:0f:d7:
0c:d7:5e:23:d1:fd:01:71:19:4d:f1:10:ca:ad:81:
9d:0a:86:85:f7:1e:07:a9:52:53:b4:43:65:6b:3d:
50:a4:6c:df:4c:d9:20:74:c5:01:9c:26:0e:73:35:
e1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:79:E5:E1:15:1A:5C:D6:89:09:A6:BC:01:D6:19:46:53:29:BE:6D
X509v3 Authority Key Identifier:
keyid:D3:89:B4:18:DA:34:AA:39:34:EC:DE:2B:73:1D:F1:D4:ED:7E:C8:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04m0GNo0qjk07N4rcx3x1O1-yA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/d47163-80ea-444a-a79f-03aa29b6a76a/1/wnnl4RUaXNaJCaa8AdYZRlMpvm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/d47163-80ea-444a-a79f-03aa29b6a76a/1/04m0GNo0qjk07N4rcx3x1O1-yA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.115.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:85:27:3b:0c:a6:1d:f1:bc:ae:d7:11:5b:cc:6e:21:09:12:
cf:27:4c:30:91:da:78:51:74:6a:cc:ba:50:23:85:b4:b1:df:
e6:be:6e:d8:f9:dc:19:db:ea:6b:cd:17:2b:b9:f2:bd:a1:95:
96:08:24:fa:1a:9d:0b:e4:1a:da:6f:e3:87:1f:4d:c9:f3:d3:
23:bd:73:91:50:dc:e8:c2:17:56:8c:d0:f1:61:d4:33:ed:1c:
27:53:ce:14:d4:d5:7d:84:d8:60:90:62:17:4d:2c:ef:f0:3b:
e2:18:b1:ac:2b:50:7b:3b:bd:1d:c8:e0:3f:27:5a:d4:36:79:
ad:b2:d1:01:ec:68:f6:72:ed:32:42:d3:e7:48:a8:c1:a8:3a:
21:cd:5f:54:fc:c1:c2:2b:29:93:a7:0a:40:a3:9a:16:40:a4:
d0:0f:dd:53:ff:f3:5b:9c:4d:8f:cb:77:f6:85:3d:ed:2b:e0:
ee:b0:d4:4e:a6:3b:cb:88:46:c3:2a:aa:1f:14:17:2d:99:04:
e6:b9:09:6f:a3:ad:44:92:e3:ac:8e:b1:54:26:c6:bf:cb:a5:
7d:55:60:50:40:f7:84:67:ba:e5:3b:65:77:3c:1c:55:2f:bd:
12:8f:aa:78:21:50:8d:f8:fa:d8:6f:88:07:a1:2c:62:ca:32:
29:91:16:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:40 2023 by rpki-client on console-ams.rpki-client.org