Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/wMt_B5LFaM-w8PMngS3Kr8s2hpA.roa
File: wMt_B5LFaM-w8PMngS3Kr8s2hpA.roa (raw, json)
Hash identifier: K/VcMXZ+GvD/ldJSi88b8vso9P8SoYqep9rNERva4wM=
Subject key identifier: C0:CB:7F:07:92:C5:68:CF:B0:F0:F3:27:81:2D:CA:AF:CB:36:86:90
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018A93C5D45E65ED44C00FEA121FF26D3EBD
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/wMt_B5LFaM-w8PMngS3Kr8s2hpA.roa
Signing time: Thu 14 Sep 2023 12:58:50 +0000
ROA not before: Thu 14 Sep 2023 12:58:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203245
IP address blocks: 194.71.146.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:93:c5:d4:5e:65:ed:44:c0:0f:ea:12:1f:f2:6d:3e:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Sep 14 12:58:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0cb7f0792c568cfb0f0f327812dcaafcb368690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:73:6a:51:6d:f9:89:59:d1:d1:82:fb:de:c0:
4a:15:4f:b4:5b:87:d9:9a:b5:02:8c:de:11:a8:14:
9b:02:8b:b8:1c:2a:a5:9c:b0:be:1e:c6:ee:e2:cd:
d5:6c:9f:50:38:11:42:d4:e5:88:f3:15:f5:a5:1c:
0d:84:0b:e4:ac:6b:40:8d:b4:93:5e:cd:9a:ae:44:
98:8f:a5:32:bc:17:93:4f:83:f8:3a:7f:c5:0f:fb:
12:83:c2:6e:fc:c3:63:17:1e:dc:bc:1d:44:21:5f:
16:b5:40:42:96:99:44:27:ab:bd:17:67:3d:78:fb:
89:eb:af:6b:87:12:cc:73:c2:ef:c0:d2:89:cf:23:
83:66:73:33:95:e7:0a:76:3d:3c:03:69:da:32:fc:
24:a5:32:f3:90:c0:c6:af:fb:87:f5:75:90:1a:15:
ad:e4:53:0d:59:c9:90:97:07:c3:01:12:ce:a2:fa:
76:0b:00:9d:c4:26:36:ae:1b:ec:40:44:eb:5f:c7:
74:9e:a3:28:fd:95:14:80:02:67:28:e8:64:34:e0:
3d:e3:25:43:43:2b:02:a5:2d:d8:39:fa:22:e1:18:
ac:a2:97:26:9b:0d:ec:87:87:43:95:95:0a:a9:5a:
db:69:16:9c:c3:17:be:c5:96:9a:fa:bd:78:8c:1d:
3b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:CB:7F:07:92:C5:68:CF:B0:F0:F3:27:81:2D:CA:AF:CB:36:86:90
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/wMt_B5LFaM-w8PMngS3Kr8s2hpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.71.146.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:7e:49:b4:a5:73:75:98:51:de:b3:6f:4a:04:0e:6c:3c:4a:
c7:ff:2c:89:7a:5a:30:9f:c0:ca:50:61:ed:cd:72:e3:2d:27:
42:6c:d5:56:d5:34:cf:ee:f4:a3:01:17:05:0e:b6:b4:74:50:
37:ea:ae:75:2f:58:32:12:7b:8b:bd:3c:72:ae:b1:b1:ad:75:
44:e0:8f:95:e0:20:88:31:e6:b5:d5:ef:b0:50:81:ac:8f:b5:
bd:49:65:db:9a:9a:d8:7f:fd:a1:ba:91:6f:dd:f6:95:1e:e7:
76:57:d3:ee:69:30:14:79:b1:a1:71:1f:e3:8f:50:f5:24:9e:
3e:2a:7f:2f:9f:7f:a1:9b:25:18:c9:41:c3:45:29:a2:ac:93:
8b:04:55:3b:1e:ff:d2:13:44:81:46:7c:a7:00:de:0e:07:9e:
b4:75:83:60:35:37:c8:c6:1a:cb:da:05:66:7c:3f:6a:7d:34:
f5:fa:7a:ed:63:02:0b:f2:b1:1b:83:7a:99:82:0e:39:f0:29:
a4:e7:bd:b4:27:6c:04:1c:ce:3a:6c:bb:7a:61:cd:d7:d2:f0:
42:54:13:10:7d:af:33:54:41:7d:9d:a8:33:e2:b3:be:bd:eb:
b6:66:23:92:a7:6c:96:3c:cd:23:79:ea:c7:c5:30:3d:6f:07:
90:4e:b8:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:55 2025 by rpki-client