Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/wMg5snKxWZZyZMt2lMg0wHEuYEQ.roa
File: wMg5snKxWZZyZMt2lMg0wHEuYEQ.roa (raw, json)
Hash identifier: pjAdrtsjimk61U6Cgl6NTIFwogk0xtIfVjx4/cEcpHE=
Subject key identifier: C0:C8:39:B2:72:B1:59:96:72:64:CB:76:94:C8:34:C0:71:2E:60:44
Certificate issuer: /CN=6f846c8c0db65dc746ef64cfd82bb9c194e27f73
Certificate serial: 050E9380
Authority key identifier: 6F:84:6C:8C:0D:B6:5D:C7:46:EF:64:CF:D8:2B:B9:C1:94:E2:7F:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4RsjA22XcdG72TP2Cu5wZTif3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/wMg5snKxWZZyZMt2lMg0wHEuYEQ.roa
Signing time: Sat 01 Jan 2022 04:03:31 +0000
ROA not before: Sat 01 Jan 2022 04:03:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200597
IP address blocks: 185.32.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84841344 (0x50e9380)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f846c8c0db65dc746ef64cfd82bb9c194e27f73
Validity
Not Before: Jan 1 04:03:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0c839b272b159967264cb7694c834c0712e6044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3b:3d:b8:07:cf:89:80:2a:ef:da:d2:be:b9:
07:73:65:17:e6:82:c0:54:5d:ce:65:46:5d:82:03:
eb:d0:a9:16:b0:54:26:04:a9:8b:27:09:62:43:4b:
c6:83:b2:c9:88:49:ad:86:91:ca:e3:ef:31:bf:77:
ad:9f:22:d2:91:09:2e:11:3d:08:06:86:7a:28:a9:
0e:ed:94:eb:c7:7e:64:9f:e5:28:e1:34:6c:38:2b:
f0:9a:b6:a9:f6:e2:55:c4:bd:7c:54:e1:01:77:15:
47:4a:ce:69:d6:33:c5:d4:80:57:de:6d:9d:65:a9:
15:0e:5d:6a:5b:80:87:ae:1d:97:31:a6:61:71:96:
79:eb:71:ba:fd:9a:1d:de:1a:aa:6f:56:b3:6f:26:
96:23:85:5a:19:c8:01:db:bb:c9:3e:2e:a7:84:c6:
26:c6:db:bb:ab:dc:7b:a0:5b:3c:4f:d6:25:4f:4c:
9c:3d:e0:42:85:19:fe:e2:f9:13:4e:7f:79:82:ec:
1f:0a:80:d7:bf:92:18:18:39:f9:0e:1e:11:ff:f0:
6a:10:95:9e:b3:22:5b:34:95:9f:54:cb:86:b7:5d:
b7:56:69:7f:67:13:be:fa:c1:54:54:46:44:97:ad:
c1:26:73:1b:78:c7:ce:92:85:13:ae:02:e2:ef:8d:
67:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:C8:39:B2:72:B1:59:96:72:64:CB:76:94:C8:34:C0:71:2E:60:44
X509v3 Authority Key Identifier:
keyid:6F:84:6C:8C:0D:B6:5D:C7:46:EF:64:CF:D8:2B:B9:C1:94:E2:7F:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4RsjA22XcdG72TP2Cu5wZTif3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/wMg5snKxWZZyZMt2lMg0wHEuYEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/b4RsjA22XcdG72TP2Cu5wZTif3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.77.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:62:da:33:fe:b2:77:d5:ea:1b:15:8a:f9:16:6a:ac:2f:e3:
48:27:bf:53:9c:7d:4e:21:4f:7e:e3:a9:6a:bd:68:a3:69:59:
36:16:e2:32:c7:74:f0:0e:21:32:04:3a:68:58:a2:23:0c:d5:
00:6a:c2:a6:5e:fb:df:e0:cb:d3:24:28:41:21:42:8c:7d:a8:
82:11:12:bb:c0:76:7a:d9:d8:8a:4d:f9:1d:b1:ed:8a:c5:ee:
1c:01:c4:96:33:0e:ee:5c:c7:7a:ca:00:82:c7:ff:35:c8:cc:
99:c6:f6:ba:fe:37:b7:07:7d:81:24:f1:f4:25:08:d2:eb:96:
4b:16:2c:00:80:31:c3:1f:36:8c:2c:f5:38:28:d1:90:01:02:
f9:c2:af:19:49:5e:68:07:19:e2:b5:25:90:1f:0b:55:c0:10:
73:29:f0:b2:4e:27:42:33:13:8f:cf:49:b6:66:7d:7b:8a:98:
e2:3a:32:66:b0:e3:a3:44:41:3f:f9:17:6f:7b:0e:c4:a2:71:
4a:cd:13:e2:e4:28:ff:1b:25:c9:54:46:cc:2b:21:22:a9:5b:
81:ab:00:3e:1d:0d:bb:dc:a9:b7:98:02:34:8d:2e:f8:ab:c9:
1a:ed:55:05:03:22:e9:9e:36:ff:7a:74:48:be:bd:b9:53:d3:
d8:ee:0e:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:15 2023 by rpki-client on console-ams.rpki-client.org