Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/wCvbuqqhDZQtKuZeXAZ25crXW6Y.roa
File: wCvbuqqhDZQtKuZeXAZ25crXW6Y.roa (raw, json)
Hash identifier: 207yETeHNhrt6jX7N+BsOzWkDSCbMiaa/Z++cwmjMwA=
Subject key identifier: C0:2B:DB:BA:AA:A1:0D:94:2D:2A:E6:5E:5C:06:76:E5:CA:D7:5B:A6
Certificate issuer: /CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Certificate serial: 01849B6F0C32768234C4810EAA5B0C2D624E
Authority key identifier: B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/wCvbuqqhDZQtKuZeXAZ25crXW6Y.roa
Signing time: Mon 21 Nov 2022 18:24:16 +0000
ROA not before: Mon 21 Nov 2022 18:24:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206861
IP address blocks: 185.173.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9b:6f:0c:32:76:82:34:c4:81:0e:aa:5b:0c:2d:62:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Validity
Not Before: Nov 21 18:24:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c02bdbbaaaa10d942d2ae65e5c0676e5cad75ba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:be:d4:a3:e1:62:35:70:b9:48:06:ba:c8:02:
a2:1e:1a:e0:18:10:ed:8b:bd:d8:3f:e2:01:ca:04:
3d:b2:90:7d:d5:2e:aa:42:cb:12:cd:a6:23:3a:da:
2c:5e:c9:de:0c:80:47:28:72:ba:f1:6d:2e:c2:90:
7c:6a:86:44:28:f2:21:98:55:22:4b:f4:5f:d8:41:
71:21:dd:f3:69:33:2c:b5:3a:cc:fb:cc:d2:24:7a:
b7:d9:16:97:08:5e:4d:34:18:dd:3f:f8:0f:fb:9a:
44:e4:c6:c9:5a:94:a8:f5:d1:2c:98:10:65:3c:37:
f1:17:47:91:12:a0:b0:1c:83:01:2c:1b:75:f9:5c:
a0:cd:fe:59:ed:46:25:9a:27:39:0d:a8:49:cf:f1:
0e:3a:71:5a:9b:67:38:ff:67:fc:5b:a0:d8:dd:02:
28:b0:e4:32:40:e3:9b:96:c5:ce:2f:a9:3b:e1:49:
6f:b2:09:9c:82:5d:fa:94:ee:95:3e:12:68:b3:a1:
50:e3:86:b3:7c:bf:4c:ff:97:1c:d6:73:fb:d4:ea:
a2:ca:e7:7e:ee:66:cb:bf:ee:f3:a9:9b:1e:71:95:
05:86:95:95:f4:29:31:a3:c2:8c:4f:ca:83:e8:3b:
1b:eb:00:8e:ea:06:bd:17:b3:7b:7c:4e:a8:3f:5b:
45:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:2B:DB:BA:AA:A1:0D:94:2D:2A:E6:5E:5C:06:76:E5:CA:D7:5B:A6
X509v3 Authority Key Identifier:
keyid:B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/wCvbuqqhDZQtKuZeXAZ25crXW6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.132.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:99:24:f8:04:89:7b:5f:23:3f:77:7d:e0:c0:c0:69:f3:d8:
c3:dc:61:9a:1a:2d:c4:10:c1:5d:c9:7a:8b:8e:c5:b7:dc:f6:
a3:35:61:43:e8:a2:9b:20:1b:eb:dd:7f:f4:76:51:1b:ef:b0:
0e:8c:ce:07:57:f3:7d:62:16:aa:04:f8:44:04:5d:5a:0d:bf:
f5:1b:43:b0:92:f3:4c:69:9a:63:e8:1b:e0:42:7a:92:3c:bd:
aa:f9:36:df:ff:bd:d4:34:87:67:d0:8c:16:6c:fe:59:e0:85:
09:d7:fe:d5:99:26:fe:0c:72:68:31:40:1f:8d:68:64:a0:3b:
86:3c:02:a9:e3:fd:6a:e5:c2:4e:e3:1a:e4:93:31:a0:3f:31:
36:24:73:85:9a:5b:0a:69:a4:e0:c6:18:76:77:17:c8:8e:ca:
17:9b:9e:6b:79:a7:f0:fc:0f:1e:9d:41:39:cc:e2:77:46:09:
f0:44:0e:28:a8:aa:4a:6a:14:39:32:a6:6f:37:a9:5d:a3:b8:
38:ce:38:c6:05:0d:c7:9f:42:ee:3b:2b:46:f2:e0:1e:98:f1:
83:ee:2e:d1:f8:b3:5a:99:57:6e:79:52:92:36:45:20:5f:12:
84:3a:00:2e:f5:21:24:2b:70:6c:ac:2f:7a:76:6b:0f:96:4e:
a6:6f:93:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:49 2024 by rpki-client on console-fra.rpki-client.org