Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/bf426a-3a8f-4252-a17f-ba02c960b8f4/1/wUSdsydRTCFv3_sXNTXIsKfXe6Q.roa
File: wUSdsydRTCFv3_sXNTXIsKfXe6Q.roa (raw, json)
Hash identifier: mGUHG6ser7HqVzYQuTKp883H/Ruqcfg/F+yYSyvLNPc=
Subject key identifier: C1:44:9D:B3:27:51:4C:21:6F:DF:FB:17:35:35:C8:B0:A7:D7:7B:A4
Certificate issuer: /CN=4516e53b32caa761906f0fcdea275b720e1742c8
Certificate serial: 018571555D7FAED4ECF4A8E8746413C8D847
Authority key identifier: 45:16:E5:3B:32:CA:A7:61:90:6F:0F:CD:EA:27:5B:72:0E:17:42:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RRblOzLKp2GQbw_N6idbcg4XQsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/bf426a-3a8f-4252-a17f-ba02c960b8f4/1/wUSdsydRTCFv3_sXNTXIsKfXe6Q.roa
Signing time: Mon 02 Jan 2023 07:14:58 +0000
ROA not before: Mon 02 Jan 2023 07:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1103
IP address blocks: 193.177.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:5d:7f:ae:d4:ec:f4:a8:e8:74:64:13:c8:d8:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4516e53b32caa761906f0fcdea275b720e1742c8
Validity
Not Before: Jan 2 07:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1449db327514c216fdffb173535c8b0a7d77ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:78:1e:bf:e8:5f:3b:c4:24:4b:c1:73:a2:29:
a2:c1:94:e0:fe:ee:24:be:93:e8:ac:b0:17:22:5f:
67:d3:ac:07:0f:59:26:65:1b:09:48:77:18:59:23:
3a:a6:38:29:b9:23:37:b9:32:5f:3a:55:66:e3:8b:
8f:af:c6:9a:eb:95:28:42:57:85:c7:b0:65:80:b6:
a5:b8:a4:94:6b:a6:49:bc:a6:cf:d9:3f:d4:cc:4d:
6e:27:b2:7d:0a:d5:76:9e:2f:fd:84:06:2e:42:35:
70:00:d9:4c:58:8b:97:59:42:87:c2:46:c8:c4:7d:
02:30:5a:76:79:f9:a9:48:18:1d:de:46:55:94:6c:
48:36:30:e7:19:d7:05:b1:c2:5b:7d:8c:8d:f8:6f:
53:ed:6c:e2:1d:96:6c:b8:6c:37:55:37:e4:1f:0f:
a3:8b:51:1f:71:16:16:b8:fe:38:13:19:0f:37:b1:
2f:cf:aa:fb:98:81:ad:ea:40:c3:b5:de:2d:18:fe:
1e:34:2f:b5:40:d4:8f:ca:a2:ec:ea:dd:e0:7f:97:
57:f8:4b:ec:01:04:b2:cf:93:8b:8c:bf:59:37:e0:
b9:f9:62:24:e1:22:14:4a:a5:9a:d2:f4:c2:3e:d0:
56:bc:05:e6:7b:fd:0a:3b:c3:46:b1:e6:49:48:54:
eb:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:44:9D:B3:27:51:4C:21:6F:DF:FB:17:35:35:C8:B0:A7:D7:7B:A4
X509v3 Authority Key Identifier:
keyid:45:16:E5:3B:32:CA:A7:61:90:6F:0F:CD:EA:27:5B:72:0E:17:42:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RRblOzLKp2GQbw_N6idbcg4XQsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/bf426a-3a8f-4252-a17f-ba02c960b8f4/1/wUSdsydRTCFv3_sXNTXIsKfXe6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/bf426a-3a8f-4252-a17f-ba02c960b8f4/1/RRblOzLKp2GQbw_N6idbcg4XQsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.177.176.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:5f:b1:c8:90:cf:aa:b1:7f:ac:74:a6:a4:87:de:7a:54:ce:
6d:32:ca:80:d9:75:03:3a:30:e7:7e:a6:31:6d:a6:5a:5e:59:
0a:85:22:16:d3:93:c2:fb:7a:e0:35:f8:12:62:62:0d:99:8a:
a6:d8:b7:2d:2a:fb:42:a4:00:57:d0:3c:fc:81:1f:98:19:4b:
98:7d:ce:b7:47:22:7c:5c:b6:2e:00:f4:b7:fd:90:1b:4a:a8:
30:c9:64:18:fc:de:3a:61:66:71:c2:da:08:43:ab:16:b7:fc:
1d:dc:bf:85:20:74:1e:e6:74:a3:2c:2f:67:7a:bf:9c:64:6f:
82:51:22:1d:5e:cb:94:9c:1b:07:53:ac:5d:fc:a5:a9:76:9b:
8d:1c:68:b9:22:a3:4d:fe:22:a5:64:3a:3e:57:db:73:5e:47:
c4:16:81:ea:56:d9:97:e4:d1:98:c3:29:7b:a8:0a:62:81:bb:
fe:81:aa:fc:1d:eb:39:69:f6:f1:ec:b8:2d:b1:03:79:58:4d:
a4:12:76:e5:c9:6c:26:d5:99:3f:13:8e:4a:7d:2c:fe:17:17:
e7:1f:11:df:40:c6:f5:71:64:e4:8d:93:d1:73:a2:83:7e:df:
f0:30:c4:e5:e7:83:1a:d0:0f:0b:68:ed:dc:e6:34:a3:6e:80:
86:6c:e3:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:41 2025 by rpki-client