Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/ws5Tnf1uij7PAvfEvv6PonOOxzM.roa
File: ws5Tnf1uij7PAvfEvv6PonOOxzM.roa (raw, json)
Hash identifier: exlFQfTRp1jxtkEvd0mo6cQMMX/e+dzRlCK32zkKKUQ=
Subject key identifier: C2:CE:53:9D:FD:6E:8A:3E:CF:02:F7:C4:BE:FE:8F:A2:73:8E:C7:33
Certificate issuer: /CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Certificate serial: 018484F0851C1041C9D2097484F3C9CB3E1D
Authority key identifier: 99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/ws5Tnf1uij7PAvfEvv6PonOOxzM.roa
Signing time: Thu 17 Nov 2022 09:34:25 +0000
ROA not before: Thu 17 Nov 2022 09:34:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203226
IP address blocks: 185.174.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:84:f0:85:1c:10:41:c9:d2:09:74:84:f3:c9:cb:3e:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Validity
Not Before: Nov 17 09:34:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2ce539dfd6e8a3ecf02f7c4befe8fa2738ec733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:8b:3d:ef:68:f0:3b:7f:aa:3c:17:69:21:a8:
9b:c0:53:c2:81:c2:9b:82:dd:76:09:13:58:f5:eb:
b4:59:6a:98:d1:1f:64:47:0f:5f:ec:55:2d:f9:50:
a9:8e:03:15:3f:7b:d7:1d:17:df:e6:a4:dc:21:29:
e9:25:a4:50:22:5c:d1:34:b4:48:18:57:52:49:94:
5a:57:cf:e1:a0:5e:49:da:91:04:ff:98:e9:01:27:
28:cd:73:9e:d9:12:2e:79:0c:99:55:13:3b:48:e2:
d0:a1:6b:f4:39:2c:8c:3a:84:51:47:b9:68:3d:1e:
5a:94:d9:ea:55:a6:d1:8e:5c:51:fb:3c:9a:41:b8:
b4:01:86:ea:94:68:aa:f3:34:55:2c:58:fb:e1:a5:
4d:36:09:ec:a4:3f:61:dc:b7:45:6e:5d:19:c3:8d:
3b:80:29:19:59:c1:6b:f7:f2:7e:67:36:0e:da:9e:
5d:ba:f6:96:df:a0:d7:8d:e8:cc:44:40:96:23:89:
cf:35:c6:ef:6f:f9:f9:68:8b:31:05:fa:ee:f3:96:
33:ac:d6:c7:0b:0a:47:3a:9c:c8:35:b4:3d:05:7e:
3c:53:d9:17:5b:e2:da:47:af:38:6d:27:94:3e:aa:
5f:b3:61:da:3c:e1:1c:09:a8:b6:fc:0b:02:1b:22:
4c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:CE:53:9D:FD:6E:8A:3E:CF:02:F7:C4:BE:FE:8F:A2:73:8E:C7:33
X509v3 Authority Key Identifier:
keyid:99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/ws5Tnf1uij7PAvfEvv6PonOOxzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.40.0/24
Signature Algorithm: sha256WithRSAEncryption
37:8c:00:28:4f:7a:3d:f3:68:91:8d:5b:6d:61:b0:3d:14:b6:
f5:96:7c:17:a1:02:14:d6:6a:bd:84:5b:79:ea:ad:a3:f3:8c:
f8:7f:e7:6e:e0:a3:11:15:39:a3:ab:0a:c1:ac:ab:06:85:04:
7d:57:a2:33:fc:8c:99:4a:45:30:43:04:26:c8:f8:53:28:2d:
0d:2d:96:70:81:ac:87:ef:de:6d:36:95:74:eb:08:ab:22:62:
2c:fb:cd:3d:80:30:42:cd:2f:0a:0f:e3:60:9a:dd:76:ff:1c:
9d:b9:23:ca:3a:e9:ed:6c:d3:29:be:a9:92:82:ea:6d:39:59:
41:07:ba:59:ab:9f:07:1f:61:d4:c5:bd:07:aa:78:17:a4:bf:
03:06:78:20:1b:5d:18:e2:30:1c:fc:ec:c4:95:bf:1a:e6:31:
25:f9:ca:28:dd:95:39:62:cc:4e:9d:e0:55:dc:c1:92:46:86:
58:83:a2:c3:a7:0a:f5:1a:e2:7a:8a:5a:73:68:91:06:b1:4f:
5a:62:0b:6f:05:34:48:39:99:f7:89:ff:00:a0:7a:19:df:ea:
01:3d:83:2c:97:48:1a:11:4d:f4:b0:41:00:1a:27:3d:2f:7c:
4e:e0:a1:ab:6e:ae:c0:d9:22:06:dc:a4:4c:f1:08:79:f9:87:
0f:24:26:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:16 2023 by rpki-client on console-ams.rpki-client.org