Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/wp_aK_snfHvJEm3nH5vMKuh31oA.roa
File: wp_aK_snfHvJEm3nH5vMKuh31oA.roa (raw, json)
Hash identifier: x59Xt10E8as73A8ZtzLONv7Nw+xv1cy2wjggyUSMqD8=
Subject key identifier: C2:9F:DA:2B:FB:27:7C:7B:C9:12:6D:E7:1F:9B:CC:2A:E8:77:D6:80
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 01847FA7F5BCA5C91E5499DE0D62794EAB57
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/wp_aK_snfHvJEm3nH5vMKuh31oA.roa
Signing time: Wed 16 Nov 2022 08:57:04 +0000
ROA not before: Wed 16 Nov 2022 08:57:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34254
IP address blocks: 217.8.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7f:a7:f5:bc:a5:c9:1e:54:99:de:0d:62:79:4e:ab:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Nov 16 08:57:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c29fda2bfb277c7bc9126de71f9bcc2ae877d680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a6:1b:01:59:47:21:0f:ff:0e:9c:16:39:19:
15:23:8e:53:f7:37:0a:07:28:d6:d5:4b:7c:58:38:
51:8b:38:f7:c3:44:70:f8:6c:ef:e6:9a:16:22:9a:
12:2b:99:9b:f1:f5:b7:0f:67:23:60:fb:e5:a2:5d:
b8:6c:66:fd:41:5c:9d:99:1f:1e:de:1e:7d:73:02:
89:42:23:7e:b1:90:39:be:f7:59:6a:f9:a3:54:b6:
d9:f8:5c:09:55:a2:20:33:5c:7e:64:bc:89:1a:92:
32:03:c3:4b:81:e4:40:99:99:5e:08:dd:11:86:0a:
b7:99:ed:cb:98:aa:02:53:f8:ef:86:62:af:d7:d1:
dd:51:6f:1c:a0:2e:b2:96:13:24:e1:65:2d:bc:41:
92:d6:3d:f6:20:43:93:82:7d:47:6a:73:12:cb:58:
47:be:95:5f:92:f7:a5:97:2c:33:3c:98:da:3f:41:
58:af:f3:b8:95:a4:91:b9:74:b3:b5:63:38:c0:4f:
2a:ca:1e:4f:aa:73:8a:ee:a7:49:a5:7e:49:3c:e4:
db:44:fc:32:05:24:1c:4b:c4:92:05:6d:c1:f5:6b:
92:de:7a:55:66:29:eb:d6:a4:c0:53:53:d7:df:22:
71:3c:1b:5a:b6:55:81:99:12:db:53:74:18:82:f8:
16:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:9F:DA:2B:FB:27:7C:7B:C9:12:6D:E7:1F:9B:CC:2A:E8:77:D6:80
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/wp_aK_snfHvJEm3nH5vMKuh31oA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.8.175.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:df:15:ad:7f:fc:4f:6d:98:23:71:61:b8:05:1c:8d:8f:fd:
16:83:0f:47:71:87:ef:b1:38:36:67:52:42:1d:56:ac:24:1f:
28:98:03:45:67:ba:16:55:27:b6:e0:73:02:69:ee:de:2d:9b:
a4:ba:64:49:19:4d:02:05:54:69:b1:91:21:b7:9e:3d:cc:b0:
97:12:39:d5:fa:76:dd:cd:04:6e:e8:3e:66:c0:2a:57:4a:6a:
59:b7:fa:bd:d3:d7:60:86:5e:bf:ed:53:39:9e:78:d0:03:e5:
af:51:f1:a9:2f:f7:49:48:80:b4:6f:d2:51:83:3b:ac:5e:db:
11:a5:3c:f3:98:f5:2e:d7:a4:58:ed:fc:22:a9:b7:e2:fe:2b:
66:a7:f0:d6:3c:1b:c0:90:87:37:ad:a0:0e:34:af:3f:29:b9:
b4:93:b6:37:eb:13:59:0d:0b:a1:86:14:21:db:80:d3:42:11:
8e:b0:4b:38:95:2f:4c:ea:5e:b2:07:e4:2a:3c:63:d7:ed:58:
a1:af:fa:6e:fe:a3:41:25:22:db:8a:ad:8f:fc:46:a5:5a:fb:
1e:16:4d:fe:99:f3:22:0f:32:44:1a:0d:4e:7f:26:41:55:fc:
85:6f:d0:1d:00:05:aa:41:ff:a1:59:79:b3:e1:90:44:6d:99:
0d:18:47:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:10 2023 by rpki-client on console-fra.rpki-client.org