Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/whe69ABnYhlCRuZzhXKrsMjGJak.roa
File: whe69ABnYhlCRuZzhXKrsMjGJak.roa (raw, json)
Hash identifier: xdS0scYkYx6s3F+p0YYP/WYW3jfMU+JU5TWkbz1XJWM=
Subject key identifier: C2:17:BA:F4:00:67:62:19:42:46:E6:73:85:72:AB:B0:C8:C6:25:A9
Certificate issuer: /CN=925069a5d764da255954db2ee9d1243de16b9101
Certificate serial: 01838FC6B7FBBFBE9C937EACFB4084EEDECF
Authority key identifier: 92:50:69:A5:D7:64:DA:25:59:54:DB:2E:E9:D1:24:3D:E1:6B:91:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klBppddk2iVZVNsu6dEkPeFrkQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/whe69ABnYhlCRuZzhXKrsMjGJak.roa
Signing time: Fri 30 Sep 2022 19:01:48 +0000
ROA not before: Fri 30 Sep 2022 19:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39622
IP address blocks: 193.168.140.0/24 maxlen: 24
193.168.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8f:c6:b7:fb:bf:be:9c:93:7e:ac:fb:40:84:ee:de:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=925069a5d764da255954db2ee9d1243de16b9101
Validity
Not Before: Sep 30 19:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c217baf4006762194246e6738572abb0c8c625a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b0:82:f4:5b:6f:8c:3a:11:e4:f7:da:e5:24:
3e:4e:a8:65:cd:18:fc:e6:12:a1:2c:b3:ed:64:32:
eb:fd:78:c7:d6:50:f3:de:10:6a:f1:69:a4:ff:df:
93:9c:5c:6f:db:da:b1:8b:e0:25:7a:c4:93:50:7f:
47:c2:af:2a:eb:7e:d5:96:3b:11:1e:fe:87:f2:89:
90:80:61:ca:56:b2:72:31:60:39:cd:1a:43:56:c5:
f8:48:23:ef:48:0c:ad:04:ab:47:39:ac:86:14:8e:
c4:6d:44:74:9e:fc:03:18:ac:c1:2e:d4:c0:6f:17:
34:a9:7a:c0:0c:38:38:dd:c3:66:76:b9:83:25:06:
23:3e:f3:e9:b0:76:04:de:91:ec:be:28:d6:09:b3:
9d:7a:5c:d9:d1:34:bb:78:23:b4:08:e2:0a:a8:67:
69:e8:d6:2e:f7:38:09:ea:a1:0b:8c:6b:27:8a:5d:
65:61:b7:d8:36:28:f2:b0:ab:b0:0a:20:47:55:65:
49:1c:ec:7b:68:a0:c1:a4:28:98:21:e5:28:a5:8c:
9a:f0:b3:da:c0:e3:b8:db:98:bd:84:26:41:25:ff:
13:a1:df:11:f6:36:6d:7c:61:05:63:64:16:a3:36:
53:f5:3f:da:12:26:c5:22:2e:f7:39:4c:84:6b:9d:
14:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:17:BA:F4:00:67:62:19:42:46:E6:73:85:72:AB:B0:C8:C6:25:A9
X509v3 Authority Key Identifier:
keyid:92:50:69:A5:D7:64:DA:25:59:54:DB:2E:E9:D1:24:3D:E1:6B:91:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klBppddk2iVZVNsu6dEkPeFrkQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/whe69ABnYhlCRuZzhXKrsMjGJak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/klBppddk2iVZVNsu6dEkPeFrkQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.140.0/23
Signature Algorithm: sha256WithRSAEncryption
71:2a:39:fd:36:85:92:84:59:79:e6:01:f1:12:83:66:81:80:
3b:ba:d3:82:1a:82:9f:fb:49:e1:a0:57:fc:2c:a1:c2:0e:06:
09:41:22:da:a2:18:e8:8a:51:46:d0:2c:5b:47:8a:bf:2a:71:
7d:a4:0c:1c:38:e2:ea:d3:ac:a1:52:de:1e:cb:9b:67:fd:54:
63:7b:3d:08:c5:42:81:12:82:47:fa:58:63:d5:ee:35:ab:40:
d5:2c:25:4d:a1:ef:29:ea:aa:e2:9a:ce:4c:5c:ba:fd:1a:e2:
ac:81:f5:5d:26:b8:51:2b:8e:f9:a5:f4:01:5b:c3:d2:54:e9:
52:cb:74:09:b7:3d:2f:07:14:04:f7:62:e2:7b:41:94:a8:e1:
f8:53:be:7e:73:89:03:1f:b6:bd:60:b1:76:94:cd:c6:7a:44:
d6:bb:41:98:03:de:31:a7:ce:a6:90:69:2b:54:ff:e8:b0:dc:
ed:ad:bd:5a:39:02:78:2f:e7:77:ac:a9:07:bf:83:2b:a0:ae:
8e:fd:af:51:0f:86:ec:07:fb:ea:3d:c8:bc:cb:17:28:b3:ad:
ca:42:d6:2e:ca:01:58:f9:71:81:f2:09:ab:b4:c4:62:47:ef:
97:94:fc:55:33:4b:bf:c4:77:7e:93:24:84:c2:d7:46:61:e6:
ed:e0:a5:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:05 2024 by rpki-client on console-ams.rpki-client.org