Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/WlJLkTzSth7hJbl9X_ZwRXS7voU.roa
File: WlJLkTzSth7hJbl9X_ZwRXS7voU.roa (raw, json)
Hash identifier: YFwXrI/WyjolyhWFAdM+/5/0/VG8bSg2VOlS6VB8P08=
Subject key identifier: 5A:52:4B:91:3C:D2:B6:1E:E1:25:B9:7D:5F:F6:70:45:74:BB:BE:85
Certificate issuer: /CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Certificate serial: 352ED05E
Authority key identifier: 4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/WlJLkTzSth7hJbl9X_ZwRXS7voU.roa
Signing time: Sat 01 Jan 2022 15:57:15 +0000
ROA not before: Sat 01 Jan 2022 15:57:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12743
IP address blocks: 217.116.96.0/20 maxlen: 20
194.9.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 892260446 (0x352ed05e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Validity
Not Before: Jan 1 15:57:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a524b913cd2b61ee125b97d5ff6704574bbbe85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:21:38:4c:2e:9d:8f:d2:40:57:77:b3:0f:7a:
59:bf:75:9a:e7:cc:2e:9a:d8:8e:ba:63:ad:88:f2:
6a:46:20:df:52:f7:bf:bf:97:84:ac:13:3c:5a:68:
1a:47:93:b3:7c:ff:40:7b:6d:40:ce:de:b3:7c:ab:
39:83:e8:4c:16:cc:1e:9b:88:57:f5:d5:f7:fa:01:
7b:1e:fb:cd:83:f4:a1:6f:6b:49:9c:d5:e7:26:58:
f8:0a:ef:5a:5e:0b:55:8c:cb:88:33:40:6c:0f:79:
4e:d3:1c:fd:d1:d1:78:59:94:b8:f4:5e:3a:26:cc:
81:10:b5:f4:fe:25:a6:98:d0:c0:94:1f:70:59:a1:
5a:87:0b:61:72:44:e9:fe:f6:81:11:fe:45:c9:52:
67:8e:94:a1:06:7f:74:83:5b:dc:96:ed:15:d7:ed:
a0:57:51:4b:15:a9:48:27:5f:8d:54:1c:f8:9c:0d:
2f:8f:af:94:02:8d:eb:c0:13:cf:70:b6:b8:f4:f4:
76:22:9f:20:5a:18:f1:89:88:76:c9:b0:95:55:dc:
7a:91:01:23:b3:26:91:3e:bc:9e:0a:20:c1:10:05:
7d:18:30:e3:11:dd:4b:de:bd:90:8a:bf:b8:91:f4:
f9:0c:55:22:93:a4:9a:99:90:98:39:54:13:71:56:
2d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:52:4B:91:3C:D2:B6:1E:E1:25:B9:7D:5F:F6:70:45:74:BB:BE:85
X509v3 Authority Key Identifier:
keyid:4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/WlJLkTzSth7hJbl9X_ZwRXS7voU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.223.0/24
217.116.96.0/20
Signature Algorithm: sha256WithRSAEncryption
6b:dd:d2:c5:36:b0:78:8f:a8:af:0c:d7:91:79:c3:ac:71:13:
89:94:bf:73:11:a1:52:13:83:2d:78:1a:78:40:4d:b4:7f:56:
4e:b4:9a:e3:e5:07:b4:f8:53:15:79:ed:ea:e7:d1:a3:08:e0:
4f:73:47:31:b4:e4:1c:96:ad:ca:7c:2e:46:c7:93:34:cb:56:
a4:c0:ab:7b:27:d3:2d:a4:0a:eb:d8:a9:d5:df:ea:4f:a8:76:
c0:7e:e1:1b:41:e9:3c:4a:12:aa:92:f8:a7:3b:1a:3d:c5:df:
be:b5:a7:18:b6:3c:3f:eb:e7:3b:46:96:69:ce:f0:be:70:b5:
9c:04:dd:9b:29:3e:f1:c7:7a:95:6c:22:96:0b:ee:71:31:58:
bb:ae:67:63:9b:b5:23:4b:d1:6e:45:05:43:35:42:1c:7f:1d:
c5:ec:19:a2:1b:81:81:3f:5a:c4:cd:93:ba:be:0c:3c:6d:c5:
8d:d5:ad:27:fe:3a:a4:cd:8f:6e:50:78:d7:ee:4c:59:5f:10:
10:f2:5c:02:9a:3e:84:33:98:83:de:35:83:df:4d:a1:90:83:
76:f9:75:0f:55:1f:26:bd:d4:d3:df:8a:f0:91:6b:99:57:d7:
8e:56:4d:f6:b3:4a:89:d5:ac:a2:b1:78:3c:d2:6e:a7:1c:80:
68:a4:d7:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:23 2024 by rpki-client on console-fra.rpki-client.org