Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/WChj5iVZKEDZzLNvLwtx420C4E4.roa
File: WChj5iVZKEDZzLNvLwtx420C4E4.roa (raw, json)
Hash identifier: Z6vz0YDepVOXTQ/IauH9tR34Q8vJWvCTHymzL2npfKc=
Subject key identifier: 58:28:63:E6:25:59:28:40:D9:CC:B3:6F:2F:0B:71:E3:6D:02:E0:4E
Certificate issuer: /CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Certificate serial: 01843C5A866DA13E4C2892ECFADEF858EE1F
Authority key identifier: F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/WChj5iVZKEDZzLNvLwtx420C4E4.roa
Signing time: Thu 03 Nov 2022 07:17:56 +0000
ROA not before: Thu 03 Nov 2022 07:17:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198394
IP address blocks: 84.17.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3c:5a:86:6d:a1:3e:4c:28:92:ec:fa:de:f8:58:ee:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Validity
Not Before: Nov 3 07:17:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=582863e625592840d9ccb36f2f0b71e36d02e04e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8d:31:b3:8b:74:2a:5d:ec:ae:32:46:13:49:
12:c1:95:e0:49:f7:51:9d:43:17:a3:67:c6:8a:ac:
59:c4:2b:d1:09:09:89:ea:62:93:76:f3:1f:22:a4:
cf:9f:dd:a5:64:1d:a2:9f:a3:4e:82:a9:eb:dd:bf:
71:86:57:2a:a4:ab:b0:d5:d7:c0:d5:8d:76:07:95:
ff:7f:74:0e:11:ac:59:6a:5c:24:21:0b:12:b1:64:
ab:83:aa:9c:aa:d2:01:bd:33:12:f1:6c:de:ef:a4:
53:a5:74:23:a8:ca:96:d1:81:ad:c1:15:48:14:41:
2a:60:95:53:d7:61:a1:42:36:bb:f3:f8:84:81:f9:
1f:2f:cd:1b:b2:52:86:f1:30:37:3b:52:d9:3f:4b:
6a:45:eb:22:93:27:b6:f9:30:db:48:74:f2:10:c4:
a9:50:7d:78:02:0f:15:49:67:c4:cd:86:93:70:68:
9f:ab:75:3b:c6:9b:4b:90:f9:12:c3:2c:0a:db:db:
8e:c6:3c:26:83:c6:ca:0a:4d:ef:e4:34:c3:4d:91:
d7:8a:cf:b4:a4:53:79:a1:72:6e:ca:0f:c5:94:a5:
80:c8:98:91:19:9e:99:fb:e5:b7:27:8c:54:ae:2b:
c7:3d:a7:57:d2:94:43:d7:4d:aa:cd:4c:40:db:15:
dd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:28:63:E6:25:59:28:40:D9:CC:B3:6F:2F:0B:71:E3:6D:02:E0:4E
X509v3 Authority Key Identifier:
keyid:F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/WChj5iVZKEDZzLNvLwtx420C4E4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.17.74.0/24
Signature Algorithm: sha256WithRSAEncryption
87:e4:46:41:47:05:23:37:60:fa:42:a2:2b:45:08:27:04:d2:
d3:40:f9:38:9a:15:17:84:0e:80:b7:9d:3c:08:9e:93:79:13:
80:22:24:3d:af:bb:9d:7c:50:d4:e9:80:21:04:fb:b1:47:1a:
9f:9a:63:f9:17:ca:52:5c:d7:5c:e9:fb:f2:fc:12:6c:2a:9c:
0e:d5:06:4f:0d:24:68:07:4c:14:5d:df:76:17:21:be:ae:0a:
77:6e:44:7f:b7:e2:0f:63:9a:a4:e4:1b:b5:38:7f:2f:52:a9:
f7:2d:fa:c6:86:55:1c:be:81:48:d8:3d:5b:88:22:ea:09:e2:
6c:f5:78:d6:42:11:32:cf:ec:d5:03:d3:91:d9:fb:9b:06:4f:
64:bb:6e:28:05:f8:60:77:0d:2b:27:69:27:82:6d:04:2f:a4:
3e:0c:2f:85:0a:c8:d5:14:08:4f:22:74:58:53:42:07:51:e5:
c5:e7:6e:3b:a3:b7:d5:ce:18:5f:b8:75:6b:2b:71:bb:92:3d:
eb:25:11:a9:69:13:19:83:ef:62:88:6a:b4:8d:55:fb:20:13:
03:f7:70:52:af:0f:88:50:93:94:57:ad:77:f4:ee:f8:37:31:
c1:c2:5b:83:bc:91:7c:58:5c:0c:f1:8a:ff:43:1d:37:5b:22:
95:96:a0:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:17 2023 by rpki-client on console-ams.rpki-client.org