Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/37cb9c-220a-45e4-8d66-c71aa1b1d6e2/1/wlftGX5RAXi169p4OCPDYK4E_K8.roa
File: wlftGX5RAXi169p4OCPDYK4E_K8.roa (raw, json)
Hash identifier: VIz65hhSMNaOVqCAOxvlj2I6S+n6XkbrWZaFEJRdyhA=
Subject key identifier: C2:57:ED:19:7E:51:01:78:B5:EB:DA:78:38:23:C3:60:AE:04:FC:AF
Certificate issuer: /CN=0f5026e94fe0598f7eb6f46236a6397e62f01e7c
Certificate serial: 0184E78EB57802AF4E6FA07700ED744130A9
Authority key identifier: 0F:50:26:E9:4F:E0:59:8F:7E:B6:F4:62:36:A6:39:7E:62:F0:1E:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D1Am6U_gWY9-tvRiNqY5fmLwHnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/37cb9c-220a-45e4-8d66-c71aa1b1d6e2/1/wlftGX5RAXi169p4OCPDYK4E_K8.roa
Signing time: Tue 06 Dec 2022 13:10:00 +0000
ROA not before: Tue 06 Dec 2022 13:10:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8264
IP address blocks: 212.197.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e7:8e:b5:78:02:af:4e:6f:a0:77:00:ed:74:41:30:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f5026e94fe0598f7eb6f46236a6397e62f01e7c
Validity
Not Before: Dec 6 13:10:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c257ed197e510178b5ebda783823c360ae04fcaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:bd:95:18:b6:d6:51:46:3b:dd:bc:cd:e7:f9:
83:de:f6:0f:d4:b0:f4:0a:42:7a:28:ed:63:c5:57:
b5:aa:78:4b:ab:b0:28:f1:37:c4:36:a4:ea:22:b9:
ba:13:e8:4f:bc:ad:ac:97:2a:0b:e8:a2:89:f1:6f:
23:d4:b1:fc:08:0a:a1:17:e0:10:27:8f:64:dd:e1:
27:84:cc:20:62:9c:9f:ed:ec:3e:fd:3f:63:fd:a7:
5e:6d:52:80:cd:18:e4:51:92:32:13:32:d1:1a:88:
b5:a6:1f:e6:80:a3:a6:3b:38:14:34:92:9c:95:74:
d8:ac:89:e2:90:a4:03:de:98:24:4f:98:1c:ad:f4:
b1:9e:e0:51:94:ec:d6:64:c7:01:0a:cc:c1:21:20:
12:7e:fc:81:f3:b1:0f:7a:92:b3:3d:a3:d4:f3:26:
d6:f1:42:e0:d6:29:c0:f7:c7:24:2c:a8:79:b8:2a:
f9:73:fc:4e:03:fc:a1:1f:c1:a8:d3:3c:09:69:fd:
ed:ff:80:35:2d:c3:02:5f:51:3a:2b:bd:f9:c7:e4:
3a:7e:dd:39:ac:27:c4:c1:8c:2c:f7:3a:ef:57:33:
e0:52:4f:00:8c:d5:9c:66:42:34:a3:b2:25:06:d2:
54:b8:26:41:bd:1e:0f:55:0e:0f:c6:62:96:84:fb:
a6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:57:ED:19:7E:51:01:78:B5:EB:DA:78:38:23:C3:60:AE:04:FC:AF
X509v3 Authority Key Identifier:
keyid:0F:50:26:E9:4F:E0:59:8F:7E:B6:F4:62:36:A6:39:7E:62:F0:1E:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D1Am6U_gWY9-tvRiNqY5fmLwHnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/37cb9c-220a-45e4-8d66-c71aa1b1d6e2/1/wlftGX5RAXi169p4OCPDYK4E_K8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/37cb9c-220a-45e4-8d66-c71aa1b1d6e2/1/D1Am6U_gWY9-tvRiNqY5fmLwHnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.197.0.0/17
Signature Algorithm: sha256WithRSAEncryption
4e:ad:46:d3:4b:6f:bf:96:12:43:02:17:43:b0:8d:cd:f4:d5:
cb:77:80:f3:b0:86:a7:a8:36:5e:1a:b3:39:96:24:4a:e2:38:
16:2c:aa:21:9d:a1:49:59:ab:c9:e2:81:ba:28:60:77:a1:cb:
0f:08:d2:97:6d:4f:f3:10:69:73:ca:e5:ce:40:76:55:0c:9b:
fa:b0:12:37:9e:30:1d:fc:0c:4f:87:f3:1e:49:3f:02:9e:c9:
c0:4f:47:70:61:dc:3e:3e:3f:7c:29:ca:72:16:7e:63:21:95:
68:23:b2:f3:06:7d:dc:89:4e:4c:28:db:85:ab:57:49:2b:da:
7b:c5:d2:01:89:13:c4:07:42:af:4f:29:f3:11:78:6d:dc:9b:
09:c9:71:c6:2d:80:7d:55:d3:38:50:2a:e4:af:50:34:d3:7c:
7e:f0:0c:f1:6e:90:af:29:2a:25:e6:b3:bc:b0:d4:9f:ec:f1:
68:9a:f2:2c:52:89:e1:5d:61:4a:63:09:9b:53:06:d3:e3:62:
88:03:3d:93:9e:78:31:3f:70:db:54:a7:02:7f:f1:9a:4e:f3:
d9:69:9b:9a:2d:09:07:7b:2e:41:b5:74:4a:84:2a:3f:bf:48:
3e:36:3a:49:df:c9:19:7e:28:9b:40:a5:b3:5d:6d:d3:cd:02:
73:84:5f:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:49 2023 by rpki-client on console-fra.rpki-client.org