Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8ec60b-9cc1-4e5e-9f2e-ae05ae1291f2/1/wWRMcO6rDoMg32cGUqv8fuYY8Ks.roa
File: wWRMcO6rDoMg32cGUqv8fuYY8Ks.roa (raw, json)
Hash identifier: xj0EEa0ibMgBJaMilgL2cOR4BnrE9FjQGEa65rzXfqA=
Subject key identifier: C1:64:4C:70:EE:AB:0E:83:20:DF:67:06:52:AB:FC:7E:E6:18:F0:AB
Certificate issuer: /CN=607d7b0e5fe6d69b4d797dec3d112c47b8a19224
Certificate serial: 02B1601B
Authority key identifier: 60:7D:7B:0E:5F:E6:D6:9B:4D:79:7D:EC:3D:11:2C:47:B8:A1:92:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YH17Dl_m1ptNeX3sPREsR7ihkiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8ec60b-9cc1-4e5e-9f2e-ae05ae1291f2/1/wWRMcO6rDoMg32cGUqv8fuYY8Ks.roa
Signing time: Sat 01 Jan 2022 00:56:34 +0000
ROA not before: Sat 01 Jan 2022 00:56:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51903
IP address blocks: 194.106.218.0/23 maxlen: 23
91.221.124.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45178907 (0x2b1601b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607d7b0e5fe6d69b4d797dec3d112c47b8a19224
Validity
Not Before: Jan 1 00:56:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1644c70eeab0e8320df670652abfc7ee618f0ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:cf:50:2a:15:89:33:30:e5:7d:77:31:b6:d4:
9d:da:68:72:c4:e8:ea:2d:66:03:19:1c:01:0f:22:
84:dc:e5:c4:3b:20:b8:90:b3:d5:c0:0f:8c:3d:86:
2d:8f:f3:a4:fb:98:23:e9:d7:a0:33:33:e9:7a:97:
f7:97:18:f3:5d:c5:ff:9a:ff:23:2e:2b:54:1e:dc:
4b:23:27:17:d1:a0:1d:9f:e4:3f:c9:82:b5:b0:a2:
c7:82:71:c8:b2:87:86:64:0a:96:f5:94:59:a1:6d:
5b:c8:89:d6:85:ec:02:41:f0:37:19:28:31:23:d1:
e8:90:1b:bd:11:e8:8d:f9:01:2f:67:c6:54:22:c3:
97:80:3e:ae:ee:6f:ef:96:db:92:28:4a:59:d6:2e:
9c:d2:96:a6:fe:72:9c:22:a0:50:d4:0d:3f:45:a1:
c3:8f:8f:0d:5d:70:5f:21:40:9a:89:a4:90:d3:f2:
c6:f6:56:5d:72:d1:01:20:ec:d8:1f:6e:3c:6b:f0:
0f:b6:1a:4c:bf:c1:2b:97:6e:ab:45:a8:f3:eb:f8:
c8:da:8b:f7:d0:0d:2c:63:02:dd:6b:56:70:6a:7f:
93:2e:84:d8:b4:c8:41:47:dc:b9:98:e0:c8:cd:89:
65:12:b8:8a:80:c1:78:e0:86:38:ab:56:79:4a:44:
8f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:64:4C:70:EE:AB:0E:83:20:DF:67:06:52:AB:FC:7E:E6:18:F0:AB
X509v3 Authority Key Identifier:
keyid:60:7D:7B:0E:5F:E6:D6:9B:4D:79:7D:EC:3D:11:2C:47:B8:A1:92:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YH17Dl_m1ptNeX3sPREsR7ihkiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8ec60b-9cc1-4e5e-9f2e-ae05ae1291f2/1/wWRMcO6rDoMg32cGUqv8fuYY8Ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8ec60b-9cc1-4e5e-9f2e-ae05ae1291f2/1/YH17Dl_m1ptNeX3sPREsR7ihkiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.124.0/23
194.106.218.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:8e:37:f5:8a:f6:00:87:32:57:d1:38:96:5d:4e:fe:c3:52:
19:cf:ba:16:92:54:78:84:6d:c7:44:00:a1:75:eb:3f:04:23:
4c:e6:77:a4:14:00:21:22:f5:c0:a0:cf:50:f3:c8:8c:c1:ba:
16:53:4d:37:37:2e:de:d6:91:c7:84:02:4c:45:5c:26:f9:55:
c4:5b:2e:6c:a9:b6:34:59:dd:4e:aa:97:47:1a:7b:4e:84:e5:
b3:03:12:08:bd:f7:40:f4:72:c2:15:d2:45:72:c2:6d:0c:25:
fb:27:85:76:7e:80:a4:10:7f:f1:64:ab:d9:b7:d8:06:2c:00:
51:35:8b:ef:a5:3c:e8:d4:e3:58:0f:bc:7c:e4:cf:36:f2:dc:
84:6e:94:a8:2c:8b:c4:08:b5:f8:9b:8b:3d:32:bf:4a:d4:11:
28:7b:d6:27:24:0d:1e:07:ef:6b:15:df:b4:9f:3d:d6:84:8e:
d4:db:5e:23:03:a0:5b:08:9b:30:09:9e:07:44:f9:3b:1b:b3:
1f:83:f4:07:bd:c7:bf:fb:03:fc:a9:8a:f4:d8:4f:cd:ab:78:
12:2e:7f:f6:af:46:10:90:67:de:86:e8:9e:21:7e:ba:38:d0:
d7:59:0e:e7:70:13:b7:f5:aa:c3:be:2d:18:53:9c:f3:fd:23:
64:a2:bc:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:25 2025 by rpki-client