Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/015e90-5204-4d09-8b26-fceacbd73845/1/WbzWGAF2MpV3VfjdrxNsbei2kO0.roa
File: WbzWGAF2MpV3VfjdrxNsbei2kO0.roa (raw, json)
Hash identifier: C3S20ckc6mbhUGuFseG61J+T3XcAEJvA9fuVMpAe7wU=
Subject key identifier: 59:BC:D6:18:01:76:32:95:77:55:F8:DD:AF:13:6C:6D:E8:B6:90:ED
Certificate issuer: /CN=e5cbde75d536e91b28a23469349d1cf28b884a3b
Certificate serial: 055E14CB
Authority key identifier: E5:CB:DE:75:D5:36:E9:1B:28:A2:34:69:34:9D:1C:F2:8B:88:4A:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5cveddU26RsoojRpNJ0c8ouISjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/015e90-5204-4d09-8b26-fceacbd73845/1/WbzWGAF2MpV3VfjdrxNsbei2kO0.roa
Signing time: Sat 01 Jan 2022 05:02:44 +0000
ROA not before: Sat 01 Jan 2022 05:02:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396501
IP address blocks: 185.159.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90051787 (0x55e14cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5cbde75d536e91b28a23469349d1cf28b884a3b
Validity
Not Before: Jan 1 05:02:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59bcd618017632957755f8ddaf136c6de8b690ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d7:7d:b0:37:ae:dd:ea:5e:24:f9:32:16:85:
bb:46:f9:30:ac:ce:bb:b2:7d:92:d2:b1:6c:45:35:
f8:d2:8c:9d:1a:9d:82:5d:cd:f3:18:15:c3:0a:97:
11:fd:be:2f:b8:0c:69:7a:04:b9:c0:6e:74:0c:d1:
fb:dd:74:00:8f:72:83:ac:cd:fe:e3:b4:37:91:df:
4a:07:e3:f4:92:ec:17:98:a6:c7:a4:f4:24:76:01:
55:92:52:be:e3:e4:1d:d5:85:79:d6:2a:e2:38:24:
dc:14:9a:20:2b:e0:a1:ae:13:80:db:e6:3b:06:57:
92:04:38:d8:dc:f3:6f:5b:74:d6:2a:11:9e:ee:bd:
ed:b0:cf:c3:b7:d9:d6:4c:44:73:93:ed:18:4b:25:
94:56:01:9b:52:d0:d4:c9:f2:ee:ae:58:f2:2a:cd:
fc:cf:33:dc:19:8d:98:81:5d:24:d9:a9:81:66:f4:
3a:07:4e:92:66:08:af:27:5e:b9:74:4f:5e:42:86:
89:b6:6b:61:9d:7e:96:3f:5c:d1:04:3c:ad:17:7d:
2e:e2:cd:df:39:93:d1:d5:3f:56:b2:ee:f3:ec:5c:
29:58:4d:06:47:10:72:3e:87:2d:ec:a0:22:39:c6:
3a:23:d3:62:88:42:77:e4:c4:4e:56:aa:fa:42:05:
68:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:BC:D6:18:01:76:32:95:77:55:F8:DD:AF:13:6C:6D:E8:B6:90:ED
X509v3 Authority Key Identifier:
keyid:E5:CB:DE:75:D5:36:E9:1B:28:A2:34:69:34:9D:1C:F2:8B:88:4A:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5cveddU26RsoojRpNJ0c8ouISjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/015e90-5204-4d09-8b26-fceacbd73845/1/WbzWGAF2MpV3VfjdrxNsbei2kO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/015e90-5204-4d09-8b26-fceacbd73845/1/5cveddU26RsoojRpNJ0c8ouISjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.199.0/24
Signature Algorithm: sha256WithRSAEncryption
05:ad:87:2f:15:d8:fb:bc:f7:2f:0d:7c:a0:62:fd:42:9a:46:
4b:14:1f:bf:be:20:e4:70:1a:a9:59:dd:4f:f2:5b:ed:74:89:
43:e9:8e:f2:b2:6e:f4:94:7f:bd:ae:c1:8a:4c:8a:c9:78:25:
99:36:18:83:f3:c8:79:56:39:69:27:15:21:f5:aa:d8:0d:ae:
bc:fe:32:f3:32:d1:ee:63:4c:ce:10:92:d3:53:6d:f2:1b:5e:
99:07:c3:2c:83:06:98:88:47:7f:ae:5b:fb:41:8e:82:e3:d7:
de:db:d2:e4:a8:bc:b4:39:63:1f:d0:59:13:ef:f1:06:9e:5b:
64:56:6b:65:aa:9c:71:3a:6b:53:9c:60:3e:73:d1:a4:2b:09:
46:1f:42:55:f6:a1:4b:34:34:8c:9c:04:30:03:f8:a7:29:cf:
4b:8c:87:28:ee:ed:10:20:79:f5:f0:60:d3:f1:90:56:5c:f2:
7a:0d:f4:bf:ce:b8:08:d6:bd:08:f7:a9:07:fc:24:00:f0:a0:
03:89:c2:5b:d5:52:ad:69:27:04:ae:36:1d:e5:7b:23:91:89:
c8:65:a7:27:39:b2:11:34:fb:de:c8:46:25:87:da:1d:40:8b:
e9:e1:52:07:74:99:c4:d9:cc:66:36:ca:db:37:fc:64:73:d2:
0d:a5:84:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:15 2024 by rpki-client on console-ams.rpki-client.org