Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/WV89bgR5Q3Ji0iHaHcuIp7EKN94.roa
File: WV89bgR5Q3Ji0iHaHcuIp7EKN94.roa (raw, json)
Hash identifier: GhB0EtHDUdui01GuOxPYe2JrqvGqvBqvpMyZYcZLEH4=
Subject key identifier: 59:5F:3D:6E:04:79:43:72:62:D2:21:DA:1D:CB:88:A7:B1:0A:37:DE
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 379809C5
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/WV89bgR5Q3Ji0iHaHcuIp7EKN94.roa
Signing time: Sat 01 Jan 2022 09:06:05 +0000
ROA not before: Sat 01 Jan 2022 09:06:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200654
IP address blocks: 5.11.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 932710853 (0x379809c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Jan 1 09:06:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=595f3d6e0479437262d221da1dcb88a7b10a37de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:74:1f:1d:84:7e:f4:ad:2b:98:a6:32:f9:29:
ed:a0:4f:16:28:49:3f:ed:6a:c6:14:aa:b5:dd:0f:
61:8c:c4:7d:ad:44:f4:f7:68:d9:1c:7b:67:4c:67:
14:aa:85:85:64:06:4f:50:ee:9c:45:2b:db:92:58:
b4:1d:38:48:9a:01:8f:c5:f9:49:ed:a9:54:02:a7:
df:59:40:08:28:34:c9:24:3c:4f:f2:1e:38:43:58:
47:30:23:e7:1d:cc:48:3e:2a:28:2f:be:a1:81:74:
f2:b1:cd:d5:45:38:88:c8:6f:a9:a6:86:08:8e:f9:
59:ee:b8:2e:5b:76:c3:54:d6:cc:7e:6c:ac:27:46:
d0:66:7f:2e:d5:d4:53:77:25:57:7c:58:7e:bb:a3:
2e:87:e9:c6:13:36:53:09:2d:89:e9:00:5f:a2:e9:
cf:c8:ba:1a:26:c5:5c:fa:10:19:1a:e7:4f:18:b8:
ac:be:9c:82:63:b8:85:81:89:b7:15:50:ca:52:16:
f9:3a:e5:f4:c2:1c:41:d9:62:d6:d6:ef:fb:70:2a:
7a:8e:e1:a3:0d:db:88:2f:b9:2c:3b:ee:3a:f5:da:
f6:f7:63:3c:67:e2:02:31:06:f6:21:33:fc:42:83:
67:ed:12:3f:89:ca:e8:b9:d2:bd:18:d1:94:20:2e:
1b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:5F:3D:6E:04:79:43:72:62:D2:21:DA:1D:CB:88:A7:B1:0A:37:DE
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/WV89bgR5Q3Ji0iHaHcuIp7EKN94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.18.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:19:c4:99:f1:ee:7f:17:2f:24:7b:74:22:1e:f0:aa:8a:83:
05:94:d1:3b:45:36:ef:9d:a8:8c:0a:ea:22:77:86:12:95:6f:
c8:7e:0c:4c:bd:db:75:5a:f2:6a:f7:bf:53:80:7c:fa:34:b8:
58:92:8d:cd:c7:49:11:6b:11:26:0a:8d:fb:43:77:9d:1d:4e:
5c:39:c4:18:df:34:d6:05:b4:8d:01:bf:39:82:65:75:4b:ff:
0d:ce:fd:4f:d9:e4:6f:d6:14:bb:00:e3:58:8f:c5:b5:c0:15:
d4:db:5d:b4:a8:5d:b4:ce:03:cc:f3:fa:a8:f1:3b:d9:b3:a1:
4b:73:ac:80:74:55:49:f0:34:db:62:fc:0a:b8:c5:97:fc:0a:
bd:6a:28:a1:af:9c:82:97:42:03:83:ca:f7:02:33:85:d0:71:
6c:e7:5d:4f:38:12:d4:e6:a0:0e:d3:d4:28:ba:c2:77:e3:c8:
e2:b4:11:01:f9:a5:67:07:26:c8:b1:8d:06:a2:4d:25:d5:54:
e3:e5:56:39:5f:98:12:14:47:b5:69:c3:18:cd:c7:64:b3:30:
00:b9:8e:b4:73:f4:32:f9:4d:9b:a7:f3:f9:15:a2:9e:16:bd:
b5:49:a5:93:f1:bc:c1:64:26:37:cd:23:1d:fa:26:bc:26:0f:
e2:06:58:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:06 2024 by rpki-client on console-fra.rpki-client.org