Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/1a6888-b9ad-4b81-b935-6beaee5b58a3/1/W4qPUH4Db127yr9FrFqJ-QoLcSs.roa
File: W4qPUH4Db127yr9FrFqJ-QoLcSs.roa (raw, json)
Hash identifier: 5bL+XUCGZdMxBy+JsSYRUgqk9OT4kFG9eeYOf27k6iA=
Subject key identifier: 5B:8A:8F:50:7E:03:6F:5D:BB:CA:BF:45:AC:5A:89:F9:0A:0B:71:2B
Certificate issuer: /CN=8546af18f7078aac00c2fcd2ca67f93280217e15
Certificate serial: 089F303C
Authority key identifier: 85:46:AF:18:F7:07:8A:AC:00:C2:FC:D2:CA:67:F9:32:80:21:7E:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUavGPcHiqwAwvzSymf5MoAhfhU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/1a6888-b9ad-4b81-b935-6beaee5b58a3/1/W4qPUH4Db127yr9FrFqJ-QoLcSs.roa
Signing time: Sat 01 Jan 2022 03:54:23 +0000
ROA not before: Sat 01 Jan 2022 03:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43046
IP address blocks: 194.102.131.0/24 maxlen: 24
2001:67c:53c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144650300 (0x89f303c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8546af18f7078aac00c2fcd2ca67f93280217e15
Validity
Not Before: Jan 1 03:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b8a8f507e036f5dbbcabf45ac5a89f90a0b712b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:94:29:51:db:0e:73:50:3b:cd:84:aa:57:af:
21:95:26:12:bc:b7:06:8c:fe:6b:36:ca:24:eb:c6:
44:a5:d9:23:e8:f9:4f:a5:96:f9:2d:29:0b:c8:28:
a7:b4:42:af:0c:83:92:d1:51:76:4a:04:f6:7d:7b:
36:81:fe:62:63:0f:63:40:38:22:0c:9e:6b:e1:38:
5e:4c:43:dc:5f:1a:42:ec:da:9d:f0:22:82:98:e2:
50:91:b2:7f:67:e1:0f:7a:94:9f:f2:be:c8:67:b7:
4e:87:41:7d:eb:15:f8:19:04:17:58:36:c3:e4:3e:
53:51:b6:a5:f2:87:a5:36:f9:ee:99:e1:0c:5c:c5:
bd:73:ce:bd:1f:39:a7:82:f6:31:a2:90:93:7d:c1:
b3:09:53:f8:c3:0b:fb:32:72:ec:78:97:69:65:89:
3c:bb:35:69:b0:62:c5:a9:0b:64:42:f5:87:d2:a4:
79:3b:c1:0e:10:73:c6:16:80:b0:b1:63:ac:a4:b7:
21:df:27:2e:9b:f8:4c:c1:f8:3d:51:c9:32:d5:ac:
90:b5:6b:3e:14:2c:68:7e:67:23:cc:cb:4f:22:40:
d5:d6:4b:18:69:ac:0e:a3:b4:09:71:d1:d6:40:28:
93:5b:ff:61:f0:30:c0:44:7c:34:6a:38:d6:90:db:
64:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:8A:8F:50:7E:03:6F:5D:BB:CA:BF:45:AC:5A:89:F9:0A:0B:71:2B
X509v3 Authority Key Identifier:
keyid:85:46:AF:18:F7:07:8A:AC:00:C2:FC:D2:CA:67:F9:32:80:21:7E:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUavGPcHiqwAwvzSymf5MoAhfhU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1a6888-b9ad-4b81-b935-6beaee5b58a3/1/W4qPUH4Db127yr9FrFqJ-QoLcSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1a6888-b9ad-4b81-b935-6beaee5b58a3/1/hUavGPcHiqwAwvzSymf5MoAhfhU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.102.131.0/24
IPv6:
2001:67c:53c::/48
Signature Algorithm: sha256WithRSAEncryption
2c:5c:55:cf:a4:a2:9a:b4:34:37:11:39:a5:d3:47:8a:e3:dc:
b3:b7:e3:8b:6c:4b:92:b8:a3:95:83:2c:98:1a:52:64:dd:45:
6d:c8:da:1d:bf:b9:3e:23:e0:f3:66:ba:bd:2b:e5:40:87:60:
23:57:99:d9:89:29:15:70:7d:b9:64:9f:5b:f7:5b:6f:b9:d2:
b8:5a:c7:ba:ac:66:3c:6f:83:30:83:a5:35:16:58:e1:26:51:
50:24:b6:54:e1:ad:40:60:75:1f:ad:df:c1:98:8e:c7:7d:f3:
8b:ff:9e:fe:31:27:22:61:ac:17:d5:49:bb:a3:8a:b9:c2:36:
48:7b:03:f8:6a:a4:45:f4:1e:36:db:92:3d:ed:ac:70:31:02:
41:cf:0c:ff:9a:d4:79:18:f9:df:40:87:6d:8a:e3:c3:36:4b:
19:23:13:74:fa:08:0d:43:6c:4e:ca:bd:1e:73:83:99:5a:49:
7f:78:31:fa:7b:54:f4:1b:0c:88:2f:b1:59:b5:1b:59:97:67:
4a:49:5a:5a:50:81:fc:5f:b2:ed:73:11:c2:51:14:bd:ec:d8:
7e:65:cb:8b:63:56:ad:67:d5:d4:e6:67:cb:04:a7:e7:95:ed:
96:92:eb:db:61:c6:f2:45:e9:c2:17:e5:0d:c2:4e:ad:57:e8:
43:3b:5e:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:30 2024 by rpki-client on console-ams.rpki-client.org