Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/_W-CWYj6AuZkpksI_8UIh0Rgy3Y.roa
File: _W-CWYj6AuZkpksI_8UIh0Rgy3Y.roa (raw, json)
Hash identifier: n0zSCzgh//brC6xQ9owiNaoKWNN+qfG4HFQSNFmqngg=
Subject key identifier: FD:6F:82:59:88:FA:02:E6:64:A6:4B:08:FF:C5:08:87:44:60:CB:76
Certificate issuer: /CN=1c4c26273da2821fce26075aa0a6e2301ec84927
Certificate serial: 01856DA657B75E5CEEB90E208FFEB096D692
Authority key identifier: 1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/_W-CWYj6AuZkpksI_8UIh0Rgy3Y.roa
Signing time: Sun 01 Jan 2023 14:04:55 +0000
ROA not before: Sun 01 Jan 2023 14:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1213
IP address blocks: 143.239.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:57:b7:5e:5c:ee:b9:0e:20:8f:fe:b0:96:d6:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c4c26273da2821fce26075aa0a6e2301ec84927
Validity
Not Before: Jan 1 14:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd6f825988fa02e664a64b08ffc508874460cb76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c7:8a:f1:6b:87:91:f5:ff:d2:71:4d:57:a2:
ba:ca:32:f5:c9:b0:bc:8d:08:57:a6:f1:00:6f:f7:
bf:ba:6c:07:b2:45:36:93:fd:fe:b9:3e:f9:c7:cf:
d1:55:89:48:b5:37:b7:b5:d3:39:7c:fa:27:82:5e:
6b:44:49:5a:30:63:ae:b4:0a:21:5d:9e:9a:12:ff:
dd:26:dd:e1:f4:f3:4b:33:60:8b:73:ca:fb:22:5f:
cd:d6:84:ae:92:5c:3a:a5:c0:26:da:18:1d:17:05:
98:51:81:f3:91:3e:00:58:05:a3:f7:88:e1:6a:35:
19:19:5a:bd:14:fa:73:29:1c:a1:86:aa:ad:f3:2f:
33:d0:45:36:9b:00:f6:f9:eb:71:5b:07:18:70:60:
0b:27:7a:4a:ad:fd:9c:05:c6:eb:2d:02:54:82:c5:
cb:2f:ca:af:f2:79:af:4a:3f:4e:0e:b8:08:5b:e7:
7d:76:e5:c3:10:22:a6:8d:73:0b:5e:f1:2b:3c:04:
17:f7:d2:28:c3:be:e1:54:e4:c3:80:be:3e:30:ad:
78:08:0a:b6:89:8c:9b:44:4c:32:a6:e6:39:57:a8:
3f:48:15:41:86:c3:28:8c:89:30:65:d8:9e:22:c0:
39:a7:97:e5:97:c6:68:96:08:e1:02:f4:a3:2e:17:
aa:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:6F:82:59:88:FA:02:E6:64:A6:4B:08:FF:C5:08:87:44:60:CB:76
X509v3 Authority Key Identifier:
keyid:1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/_W-CWYj6AuZkpksI_8UIh0Rgy3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.239.0.0/16
Signature Algorithm: sha256WithRSAEncryption
43:74:a3:c4:af:2b:c0:e7:54:7e:56:e0:a1:a0:59:a2:90:ff:
4c:24:5b:0d:62:7b:03:51:29:fd:30:8a:a5:68:0c:c2:01:0a:
7d:76:a4:bc:39:41:78:b9:ec:67:e4:0e:49:f5:e2:22:1d:9f:
5b:eb:0e:a8:2b:e8:b4:0e:56:dd:9b:f5:a8:b1:8b:b7:a9:e2:
63:99:3e:0c:5a:a0:5e:a4:7d:27:b0:8a:cb:5b:6a:bc:ea:95:
5c:71:6c:68:3d:9f:04:ec:f6:44:48:ee:1e:07:d4:9c:e1:aa:
66:6e:38:1b:62:c7:09:56:e8:33:01:96:d4:b6:f7:7b:5f:cc:
e7:c5:4a:af:55:97:7f:d6:f2:5c:57:5d:ba:8b:a8:0c:60:af:
b8:d3:25:4c:51:4e:4e:8d:c4:cf:83:7e:90:0d:64:7f:7f:32:
7f:bb:63:45:23:e5:79:14:65:03:4a:11:50:25:5b:dc:6f:41:
0f:d1:c4:da:0a:cf:21:81:91:60:37:4c:62:c6:91:fc:fc:07:
9b:36:d8:54:7c:96:dd:36:8b:2e:b9:41:ca:46:3c:2f:e5:c5:
e1:ee:0f:59:c5:86:3b:23:f3:ff:ce:76:66:b9:d2:12:33:92:
22:06:b4:a3:c8:67:85:55:d5:69:01:3d:1a:cd:69:81:28:61:
c3:02:66:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:30:28 2025 by rpki-client