Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/wKkUWKff8vi6OkOPLd6MDGZasW0.roa
File: wKkUWKff8vi6OkOPLd6MDGZasW0.roa (raw, json)
Hash identifier: i7NaghYU7Y6bmlAqctW+95WFRB1Q4NYE5VBg40MJGUU=
Subject key identifier: C0:A9:14:58:A7:DF:F2:F8:BA:3A:43:8F:2D:DE:8C:0C:66:5A:B1:6D
Certificate issuer: /CN=925069a5d764da255954db2ee9d1243de16b9101
Certificate serial: 01838FC6B713EEF2461BA213582C2C7702D7
Authority key identifier: 92:50:69:A5:D7:64:DA:25:59:54:DB:2E:E9:D1:24:3D:E1:6B:91:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klBppddk2iVZVNsu6dEkPeFrkQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/wKkUWKff8vi6OkOPLd6MDGZasW0.roa
Signing time: Fri 30 Sep 2022 19:01:48 +0000
ROA not before: Fri 30 Sep 2022 19:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3561
IP address blocks: 193.168.142.0/24 maxlen: 24
193.168.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8f:c6:b7:13:ee:f2:46:1b:a2:13:58:2c:2c:77:02:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=925069a5d764da255954db2ee9d1243de16b9101
Validity
Not Before: Sep 30 19:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0a91458a7dff2f8ba3a438f2dde8c0c665ab16d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:eb:33:c7:4b:4b:ad:0c:5f:b8:67:eb:fa:93:
b6:b2:5d:96:40:01:0d:09:0d:bd:cf:1e:72:7b:98:
e6:a8:a8:d9:8f:12:39:ac:28:d0:79:46:85:5e:ac:
90:29:da:7e:dd:3c:24:0f:01:3e:5c:64:0f:e0:7e:
44:ef:2b:f4:0f:02:7a:15:34:91:1b:18:3f:bf:05:
a9:cd:95:f7:7c:7d:38:5d:c4:f6:5c:78:49:f6:ed:
79:7c:c1:c3:5c:9d:72:20:e7:2e:ce:c7:60:32:84:
6b:11:50:58:5b:f9:0c:98:6a:3a:c5:74:32:70:bd:
9d:1d:53:ea:fc:82:3c:b0:68:f7:db:64:fa:9f:42:
4d:b3:69:34:d7:51:9b:ff:14:a0:a9:84:a4:7b:14:
c8:fe:d7:81:24:37:89:ea:ef:f2:9d:27:f1:c3:17:
cf:a3:d4:3a:a6:a1:88:e5:a3:37:0a:92:7d:f2:60:
b2:2d:f2:bd:29:c5:40:bd:07:09:c2:01:ba:c4:5d:
99:94:ff:d7:63:f3:59:2b:0d:57:c2:fa:f0:c4:a5:
96:33:62:28:92:fd:e3:b5:f5:d1:26:38:fc:ff:2d:
84:11:29:5c:f9:98:2d:08:50:4f:9c:49:8f:11:0f:
16:28:42:a7:9c:87:bb:fc:2d:91:bc:eb:66:87:87:
a7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A9:14:58:A7:DF:F2:F8:BA:3A:43:8F:2D:DE:8C:0C:66:5A:B1:6D
X509v3 Authority Key Identifier:
keyid:92:50:69:A5:D7:64:DA:25:59:54:DB:2E:E9:D1:24:3D:E1:6B:91:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klBppddk2iVZVNsu6dEkPeFrkQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/wKkUWKff8vi6OkOPLd6MDGZasW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/klBppddk2iVZVNsu6dEkPeFrkQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.142.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:a0:99:7a:b1:7e:9a:8d:67:85:94:67:e7:7f:b7:97:b4:69:
e8:1d:cd:38:a6:55:f0:2c:e5:dc:79:fd:6e:1d:ec:07:df:9e:
19:ad:74:0c:e1:4d:e4:3b:78:34:43:f3:65:c0:e9:89:8c:7f:
3b:2b:68:a0:2c:94:bd:2e:de:6f:19:62:05:98:13:08:ca:81:
c5:2c:59:3a:45:c8:12:c6:eb:ad:fd:49:ad:47:5a:0d:0f:08:
d9:47:01:ca:bc:c6:65:64:46:9a:1b:ec:cb:79:14:28:07:d8:
f8:1d:4b:70:67:26:0c:b0:01:0f:43:56:51:54:d3:34:2a:79:
ba:95:63:35:92:d6:7e:a1:ef:fd:40:1e:18:0f:d4:35:5e:2a:
6a:cd:4c:c0:52:de:d6:bb:65:8e:6a:2a:7d:02:1f:2e:bf:a3:
37:5f:78:a5:e3:46:69:ce:af:1c:f0:a4:4c:0a:c4:0a:15:53:
12:99:c0:4e:53:e8:1e:80:44:81:df:1e:bf:7a:c5:68:ec:b5:
48:83:d2:ce:1f:8b:08:7b:a7:83:c1:d9:4d:3c:ac:68:6f:ee:
d5:71:3d:82:21:1b:71:33:20:1a:80:d4:ac:a7:1c:f0:4f:b0:
08:b2:ca:e9:dc:98:cf:66:71:37:2d:9a:19:d3:07:2d:41:ea:
d5:96:18:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:05 2024 by rpki-client on console-ams.rpki-client.org