Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/b42027-6637-48e7-a354-9e0b196a0487/1/wxBG9ddR3-mk51sL1J07l2WdYx4.roa
File: wxBG9ddR3-mk51sL1J07l2WdYx4.roa (raw, json)
Hash identifier: fJ4blPnh1PtRb1TMWsUG+a2gqLvBIj30Z9V0mT6/yzw=
Subject key identifier: C3:10:46:F5:D7:51:DF:E9:A4:E7:5B:0B:D4:9D:3B:97:65:9D:63:1E
Certificate issuer: /CN=4ab9f900ba618be8e7c920963cdf757b9050e509
Certificate serial: 08888F46
Authority key identifier: 4A:B9:F9:00:BA:61:8B:E8:E7:C9:20:96:3C:DF:75:7B:90:50:E5:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Srn5ALphi-jnySCWPN91e5BQ5Qk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/b42027-6637-48e7-a354-9e0b196a0487/1/wxBG9ddR3-mk51sL1J07l2WdYx4.roa
Signing time: Sat 01 Jan 2022 14:07:43 +0000
ROA not before: Sat 01 Jan 2022 14:07:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15600
IP address blocks: 185.148.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143167302 (0x8888f46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ab9f900ba618be8e7c920963cdf757b9050e509
Validity
Not Before: Jan 1 14:07:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c31046f5d751dfe9a4e75b0bd49d3b97659d631e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b0:4f:af:5b:eb:99:22:b3:f1:1c:aa:f7:38:
aa:86:cd:dc:1b:80:df:c8:e9:ce:6f:c7:be:24:da:
97:17:29:7e:6f:b9:ad:8f:20:71:bc:fe:4f:cf:6e:
ef:06:e8:e3:b1:3f:ae:56:79:62:0d:8c:43:8a:d9:
db:e1:1c:c5:d4:a2:1a:e9:a0:e2:54:a4:56:87:3c:
ff:f2:08:db:e9:3d:19:ed:da:98:91:cb:a0:4f:e9:
47:04:ba:99:d1:ba:7c:d9:b3:82:89:a8:c7:43:21:
11:3c:61:e4:17:66:47:09:b4:5c:b8:b3:7b:35:4c:
b2:5f:d6:07:c5:3c:c5:18:1f:78:d0:11:34:7f:71:
25:14:bc:8c:82:5c:08:44:8f:bc:24:84:f2:82:d7:
f2:5f:db:ba:4b:cc:7c:0b:2a:b8:c9:e8:48:1e:98:
2f:1b:2d:29:3c:03:60:b3:f9:9b:cb:9b:67:c6:9b:
07:1d:2a:34:d5:99:ce:2d:ca:00:07:59:f8:27:31:
bd:17:ec:b1:fb:e4:07:f4:f6:d4:b3:b4:6f:82:f0:
e8:4f:32:ac:c8:ad:1f:db:7f:f8:34:f3:55:34:34:
8e:1d:bf:92:88:ca:22:a9:db:34:8c:76:bc:47:cf:
79:e1:99:f6:1c:6c:c5:7b:99:e5:4c:ef:a8:ad:b3:
58:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:10:46:F5:D7:51:DF:E9:A4:E7:5B:0B:D4:9D:3B:97:65:9D:63:1E
X509v3 Authority Key Identifier:
keyid:4A:B9:F9:00:BA:61:8B:E8:E7:C9:20:96:3C:DF:75:7B:90:50:E5:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Srn5ALphi-jnySCWPN91e5BQ5Qk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/b42027-6637-48e7-a354-9e0b196a0487/1/wxBG9ddR3-mk51sL1J07l2WdYx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/b42027-6637-48e7-a354-9e0b196a0487/1/Srn5ALphi-jnySCWPN91e5BQ5Qk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.124.0/22
Signature Algorithm: sha256WithRSAEncryption
92:ed:86:45:d5:e2:10:85:46:4e:e8:46:e4:3d:aa:ae:82:be:
a2:79:2b:c4:27:9c:4d:43:8d:f4:74:82:e4:aa:10:62:61:fb:
61:3b:b6:f2:a1:97:e2:fe:24:c2:b9:29:bc:86:bd:dd:59:a2:
7d:f1:d7:36:8e:32:f1:01:00:68:36:79:01:1b:c6:a6:ce:68:
16:86:da:61:f1:fd:3a:cb:ba:75:91:88:c7:a5:37:be:8d:ab:
a6:31:3b:e3:a2:56:a9:44:60:df:c8:c8:ea:57:13:f7:01:0b:
fa:7e:c5:ee:05:b4:98:75:74:e2:f1:58:cc:8b:47:87:dd:a4:
47:eb:27:3b:a6:1a:5a:f9:c0:4e:a8:c9:7b:b8:b1:6b:e8:52:
5c:d7:8b:66:23:d1:dd:83:d2:7b:07:7a:52:76:21:40:06:53:
8b:ff:dd:af:cc:2a:14:b3:55:e1:68:81:f7:6d:7a:df:79:f8:
8d:4d:aa:25:ef:48:9d:7e:06:75:f4:7e:c3:5c:1a:7c:bd:dd:
90:f7:f0:c2:02:a0:a7:5b:6e:a9:bb:70:47:a2:d0:71:5d:51:
8d:fa:06:ed:47:d0:c1:35:ed:85:32:15:c1:82:98:7d:9a:65:
c7:52:cd:b3:ef:df:8e:a8:7c:56:62:b9:eb:09:43:ed:a1:e0:
d6:c7:bf:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:20 2024 by rpki-client on console-ams.rpki-client.org