Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/W4S0z4z-d5-YRJA54IZT7cOSau4.roa
File: W4S0z4z-d5-YRJA54IZT7cOSau4.roa (raw, json)
Hash identifier: SqvtjDN5Yj/ht0OJ0kdPVu64/yGuoVderTMZnOg+LkU=
Subject key identifier: 5B:84:B4:CF:8C:FE:77:9F:98:44:90:39:E0:86:53:ED:C3:92:6A:EE
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 3A13521F
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/W4S0z4z-d5-YRJA54IZT7cOSau4.roa
Signing time: Sat 01 Jan 2022 14:00:47 +0000
ROA not before: Sat 01 Jan 2022 14:00:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211985
IP address blocks: 157.25.143.0/24 maxlen: 24
157.25.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 974344735 (0x3a13521f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 1 14:00:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b84b4cf8cfe779f98449039e08653edc3926aee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:bf:e8:d5:8b:ef:b8:24:1c:e5:bc:6c:de:e8:
45:1a:41:15:59:65:30:8f:bb:98:53:ef:bd:25:38:
6f:76:35:6c:d1:56:af:a0:c2:56:1a:7d:10:7e:5a:
c9:d1:94:b1:9a:91:1b:48:bd:74:e7:0e:e7:f9:18:
92:89:6b:81:51:67:84:60:c2:90:85:3f:a5:77:45:
18:30:7d:92:ea:9c:22:60:ba:c7:98:2b:74:3d:0e:
6b:47:ad:fc:74:90:dc:18:b2:38:b9:9a:5b:5e:c0:
83:57:d6:21:c3:ef:23:06:ed:3e:93:b3:b1:00:db:
f0:1b:88:5f:12:f6:31:0d:14:b9:58:70:83:9c:cc:
2f:71:8a:f2:61:77:5c:21:9c:af:36:21:3b:2c:53:
22:9c:3d:5d:70:a1:c2:9d:97:18:d7:ff:83:e8:f4:
1f:9a:fc:39:80:e6:92:db:cb:f0:b2:0e:ca:12:9f:
0d:48:aa:6b:09:1c:b8:50:6f:bf:bd:d2:5c:e2:11:
c0:95:a3:b3:25:22:4a:34:cc:85:0b:ce:cb:48:5e:
f9:66:73:88:c9:37:45:c2:06:eb:3c:c3:10:ac:98:
a9:9e:71:45:ff:17:87:c1:c9:81:53:62:25:cc:c6:
c9:cc:64:a0:7d:ee:ed:c8:09:91:f7:bc:b9:67:42:
ef:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:84:B4:CF:8C:FE:77:9F:98:44:90:39:E0:86:53:ED:C3:92:6A:EE
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/W4S0z4z-d5-YRJA54IZT7cOSau4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.25.143.0/24
157.25.172.0/24
Signature Algorithm: sha256WithRSAEncryption
57:02:65:d7:4d:75:c3:87:b3:45:77:cd:3c:71:d0:74:f9:bc:
97:e9:fb:f2:76:fa:4d:78:f2:38:a4:b4:3c:7e:74:e0:fe:bf:
3f:32:ca:19:91:b7:45:16:d1:be:e0:9b:39:6f:2b:7e:7b:5e:
90:67:7e:69:be:82:43:8c:58:36:e0:ba:75:a2:2f:63:97:fc:
6b:75:a9:64:2a:3f:aa:29:ed:e4:6e:ff:b4:6b:46:da:cd:f0:
fe:22:fe:ee:e8:26:6f:59:9f:e1:99:18:c8:94:3d:82:cd:3d:
07:06:81:a0:76:67:7f:a7:8f:2c:72:46:d0:e4:d0:8f:2b:f0:
5a:8b:d6:81:e1:6f:49:e7:ac:06:56:04:28:06:9e:cd:3b:3a:
40:66:9a:78:de:37:2b:69:3b:51:8a:15:ac:0d:9b:2e:b7:7d:
42:38:23:f5:6e:c3:47:d7:97:7f:92:26:e7:fe:2e:f6:a9:30:
27:d3:7c:26:53:26:c6:09:68:0e:e9:74:d9:b8:ba:dd:ee:21:
dd:23:f1:70:3a:0c:1c:75:8c:85:dd:3b:19:38:e0:8e:9d:87:
4b:c0:d6:06:fa:9b:a9:70:2f:9f:10:30:68:1b:52:4d:87:5e:
2f:f6:a8:e1:1e:5c:06:63:c4:f6:fe:3e:8e:5e:78:97:e3:08:
74:7e:86:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:01 2024 by rpki-client on console-fra.rpki-client.org