Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/wCfaTTLGpudrZi13iDu_3tGE6y8.roa
File: wCfaTTLGpudrZi13iDu_3tGE6y8.roa (raw, json)
Hash identifier: Gii5DNyio2GDXwvyXQQnRZMEZUXKyBLaqu4dXHAwUYg=
Subject key identifier: C0:27:DA:4D:32:C6:A6:E7:6B:66:2D:77:88:3B:BF:DE:D1:84:EB:2F
Certificate issuer: /CN=cb952f9c339cabd14234d00c84a252d7ec71a2a2
Certificate serial: 123FA82D
Authority key identifier: CB:95:2F:9C:33:9C:AB:D1:42:34:D0:0C:84:A2:52:D7:EC:71:A2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5UvnDOcq9FCNNAMhKJS1-xxoqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/wCfaTTLGpudrZi13iDu_3tGE6y8.roa
Signing time: Sat 01 Jan 2022 05:58:54 +0000
ROA not before: Sat 01 Jan 2022 05:58:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44217
IP address blocks: 87.246.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 306161709 (0x123fa82d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb952f9c339cabd14234d00c84a252d7ec71a2a2
Validity
Not Before: Jan 1 05:58:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c027da4d32c6a6e76b662d77883bbfded184eb2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f1:06:7e:a5:18:09:35:40:62:f1:b7:8f:d3:
99:40:36:33:0e:30:f6:82:d6:16:51:cb:a1:35:d1:
6f:62:a1:75:c5:60:ff:11:63:31:48:24:4b:df:af:
bb:0e:cd:80:8c:09:c0:12:0b:84:3e:ea:78:dc:50:
ca:be:51:8b:49:bc:39:35:85:d0:68:5b:2b:1b:6a:
b9:a6:e4:ec:1f:dd:e8:72:c0:c8:62:ff:74:92:94:
99:74:35:56:50:5c:47:7c:01:0d:d9:04:45:64:20:
e9:6f:48:a9:b7:b9:0f:37:7d:8d:7a:cc:6a:66:b5:
0d:42:dd:09:34:16:fd:47:08:f5:29:52:35:8b:ef:
e4:34:70:7d:c7:a6:4b:b6:dd:9b:c1:7d:11:4c:ab:
91:f7:96:de:82:5c:63:94:fb:2b:e8:d3:3f:bb:95:
70:a3:1a:8e:08:fc:fb:78:07:50:e9:5c:52:14:79:
f0:55:ae:9f:2c:65:ca:a1:25:9f:6a:50:3d:d4:8c:
25:b5:50:4d:c6:80:6b:53:50:fb:f3:fd:1b:d0:99:
c1:e9:7d:67:ae:e2:e8:ee:2a:26:6d:6a:24:7c:fc:
22:a2:0e:8b:2b:8b:ea:52:0e:23:25:2a:e7:c4:45:
f2:09:80:e9:1e:9b:8c:f3:f9:23:81:17:8d:33:c2:
02:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:27:DA:4D:32:C6:A6:E7:6B:66:2D:77:88:3B:BF:DE:D1:84:EB:2F
X509v3 Authority Key Identifier:
keyid:CB:95:2F:9C:33:9C:AB:D1:42:34:D0:0C:84:A2:52:D7:EC:71:A2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5UvnDOcq9FCNNAMhKJS1-xxoqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/wCfaTTLGpudrZi13iDu_3tGE6y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/y5UvnDOcq9FCNNAMhKJS1-xxoqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.246.40.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:52:3e:f8:09:49:f5:a2:a8:c2:90:44:78:fe:80:87:f0:63:
f4:ab:5d:83:b1:a5:8a:c7:3b:a5:51:42:e7:8a:8f:82:e5:af:
65:4d:c0:50:71:4f:23:57:9f:e2:d3:2b:83:f2:11:e3:5c:5e:
83:07:06:40:fa:2e:52:1b:18:19:91:a6:1a:21:24:2a:40:50:
ff:e6:54:fd:72:1c:ef:fd:ca:83:4a:c6:0a:c2:ea:d7:54:21:
db:95:e3:fe:71:a7:ac:da:52:b7:2e:bf:13:19:2a:e2:c4:91:
9b:59:f8:a7:59:52:30:11:9b:98:e7:58:81:c5:7f:a8:56:19:
2d:d9:d0:39:f6:05:33:bc:9a:4a:81:39:e6:d4:76:57:b4:a6:
73:f9:4a:49:77:49:e6:7c:aa:a4:59:2f:81:11:30:ae:34:3e:
43:3c:21:49:e4:7d:f7:8a:9c:ff:61:57:80:64:20:9e:b8:df:
fc:60:45:af:ed:89:0a:b1:2b:ad:33:77:5d:d8:ab:d2:4f:0e:
eb:07:37:40:53:57:84:0e:e8:76:c1:5b:b9:81:22:34:d3:e8:
75:5c:52:15:9f:5e:c6:07:86:0a:0a:2c:40:4f:8f:dc:d1:d3:
59:6b:d4:c8:97:61:e1:cc:f8:1c:3d:af:59:02:3a:f8:aa:97:
d1:4d:fd:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:26 2023 by rpki-client on console-ams.rpki-client.org