Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/75cd17-0441-4a4a-b7ee-f05efab74f73/1/WerGNjeNUh5cisl6og_G8wOF8uY.roa
File: WerGNjeNUh5cisl6og_G8wOF8uY.roa (raw, json)
Hash identifier: RqggjotREM0CDbPXl7GsJ+s98s9icuID1QLo3brfo2Y=
Subject key identifier: 59:EA:C6:36:37:8D:52:1E:5C:8A:C9:7A:A2:0F:C6:F3:03:85:F2:E6
Certificate issuer: /CN=f12109487af400a63e3cb011a3d549e751fd2c18
Certificate serial: 6227
Authority key identifier: F1:21:09:48:7A:F4:00:A6:3E:3C:B0:11:A3:D5:49:E7:51:FD:2C:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8SEJSHr0AKY-PLARo9VJ51H9LBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/75cd17-0441-4a4a-b7ee-f05efab74f73/1/WerGNjeNUh5cisl6og_G8wOF8uY.roa
Signing time: Thu 28 Apr 2022 12:37:52 +0000
ROA not before: Thu 28 Apr 2022 12:37:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8414
IP address blocks: 156.106.0.0/16 maxlen: 24
193.5.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25127 (0x6227)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f12109487af400a63e3cb011a3d549e751fd2c18
Validity
Not Before: Apr 28 12:37:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59eac636378d521e5c8ac97aa20fc6f30385f2e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cf:b5:eb:63:ea:36:6d:2e:53:81:d2:a8:60:
25:9d:44:78:56:b7:94:76:cc:1f:55:b4:c7:bc:04:
e5:e1:85:c0:d2:15:33:14:1f:da:ee:f4:1c:39:8d:
bd:2f:c4:5d:c1:c3:99:dc:2b:54:44:cc:3c:5f:2f:
e7:98:de:b6:ce:60:d4:1d:7d:4a:50:df:70:5a:fe:
4f:ee:af:b3:0b:ea:ea:57:a6:35:97:10:dc:84:b5:
89:9d:06:82:3f:56:89:e0:15:90:26:37:bd:50:db:
74:06:c2:69:30:5f:20:eb:c1:1e:da:d5:97:43:79:
c8:58:51:26:cf:73:a4:3a:b8:2a:37:37:ee:0f:6a:
35:66:d5:1b:43:82:13:73:86:43:98:a1:85:f5:7c:
75:87:5a:56:d1:e2:98:89:61:2f:cc:51:14:40:b9:
b9:93:83:d9:cb:19:16:50:cb:79:d0:d1:80:ee:fb:
d1:99:08:a1:80:c8:bb:0f:7b:fe:e2:58:10:e4:76:
d1:9a:2b:f9:ac:58:63:1f:d3:59:72:b4:53:e0:fb:
86:29:57:2c:c6:42:96:a0:8a:a3:93:90:67:d2:3f:
d6:c5:79:d6:b1:50:3d:c8:40:1b:15:27:2e:b5:55:
4d:ca:44:a9:03:64:80:e3:eb:30:49:1d:cc:ed:9f:
a2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:EA:C6:36:37:8D:52:1E:5C:8A:C9:7A:A2:0F:C6:F3:03:85:F2:E6
X509v3 Authority Key Identifier:
keyid:F1:21:09:48:7A:F4:00:A6:3E:3C:B0:11:A3:D5:49:E7:51:FD:2C:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8SEJSHr0AKY-PLARo9VJ51H9LBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/75cd17-0441-4a4a-b7ee-f05efab74f73/1/WerGNjeNUh5cisl6og_G8wOF8uY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/75cd17-0441-4a4a-b7ee-f05efab74f73/1/8SEJSHr0AKY-PLARo9VJ51H9LBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.106.0.0/16
193.5.62.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:f6:08:ed:b8:b5:fa:1b:28:e2:de:e3:15:c4:c2:00:ed:ea:
23:ef:14:59:bb:fe:c2:75:db:f7:7e:13:f3:9c:c5:87:a8:b1:
89:d6:0a:de:a3:37:9b:9a:ca:61:c8:58:e0:bf:ff:c8:3e:f2:
37:87:23:e1:75:e1:0e:cd:fe:04:d3:6a:d7:fd:12:e9:ee:ba:
08:55:58:c3:ba:6d:70:b2:5e:74:cb:a6:fb:96:53:79:ee:dd:
c6:f6:47:79:71:3f:2a:9c:c2:ee:8f:4a:47:15:1f:37:09:82:
1d:0a:47:2d:b4:cf:c7:90:cc:1b:6b:b7:22:f2:51:b5:ff:a9:
ac:a3:fc:47:63:98:c0:d3:2e:4f:b0:38:49:84:7b:84:7a:19:
74:fe:3f:5e:ca:b2:e9:a2:73:8c:3e:a0:bd:36:68:3c:65:37:
c0:7c:5f:7a:35:d2:7c:01:5a:f7:48:a8:29:fe:5d:9e:70:df:
19:e0:f4:7b:49:4d:fc:c8:5a:38:d5:2f:a9:bf:8c:50:15:ec:
eb:32:5e:8d:c3:24:76:f8:39:37:97:dd:3e:03:67:89:38:4b:
de:05:91:54:e7:42:49:0f:48:a8:dc:d5:b5:fa:5c:1d:da:e0:
10:29:44:92:e0:f6:5c:1d:7f:c5:15:7a:d3:43:a7:50:ff:e1:
c3:4c:d4:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:51:18 2025 by rpki-client