Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/Wc_JmZ5mTTe3KroZPK2NVS_3BsI.roa
File: Wc_JmZ5mTTe3KroZPK2NVS_3BsI.roa (raw, json)
Hash identifier: z8eBBOPQvgnTNT7iRLjdoxQOTOKd2DCdX3bB5K+YTGM=
Subject key identifier: 59:CF:C9:99:9E:66:4D:37:B7:2A:BA:19:3C:AD:8D:55:2F:F7:06:C2
Certificate issuer: /CN=bba35cf8ab6f3eaa2aebadd9e2373dec0893625e
Certificate serial: 05EF1C90
Authority key identifier: BB:A3:5C:F8:AB:6F:3E:AA:2A:EB:AD:D9:E2:37:3D:EC:08:93:62:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u6Nc-KtvPqoq663Z4jc97AiTYl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/Wc_JmZ5mTTe3KroZPK2NVS_3BsI.roa
Signing time: Fri 01 Jul 2022 15:39:25 +0000
ROA not before: Fri 01 Jul 2022 15:39:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46557
IP address blocks: 157.23.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99556496 (0x5ef1c90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bba35cf8ab6f3eaa2aebadd9e2373dec0893625e
Validity
Not Before: Jul 1 15:39:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59cfc9999e664d37b72aba193cad8d552ff706c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:40:e5:36:79:26:8c:c2:0a:a9:a6:b9:8d:0e:
0a:e7:32:5e:0d:51:4d:8f:2a:39:34:bf:33:d5:90:
6b:12:69:35:9f:ab:cc:0d:96:76:2d:e1:44:9b:76:
6b:29:08:aa:4f:6d:c8:61:76:7c:c0:bb:76:31:ac:
6a:c2:3d:a3:5d:a7:b0:72:f4:b2:a2:21:f9:82:c9:
91:14:fa:26:90:7a:35:4b:6d:99:7b:4b:be:7c:ae:
71:c0:6c:3c:54:c2:6c:31:e7:fc:25:19:d5:eb:90:
2e:39:be:bf:a4:11:b8:4d:c4:a5:68:32:3a:91:24:
1c:d8:09:8a:51:7f:1f:ab:70:31:26:2b:db:1c:fd:
5a:b1:7f:b7:9b:b3:e9:bb:7f:eb:ab:f5:5e:d3:ac:
d5:2a:fe:73:6b:d8:0a:2b:85:90:dd:b7:27:1e:29:
9a:2d:e9:43:38:18:9b:7c:f7:07:65:6a:ec:25:1e:
e4:1a:3e:85:ed:cd:b3:f2:4d:f0:97:37:6e:0e:b3:
f5:09:01:5f:53:a1:9e:02:0c:f3:75:9c:bd:8f:0c:
02:4b:c2:b8:a5:a2:65:5b:2c:9f:60:40:c4:ab:8f:
25:2d:63:a4:2c:23:18:1a:9c:9f:fe:b9:37:5a:2a:
90:39:53:c3:e7:69:53:d4:93:06:5f:1d:c1:4a:04:
90:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:CF:C9:99:9E:66:4D:37:B7:2A:BA:19:3C:AD:8D:55:2F:F7:06:C2
X509v3 Authority Key Identifier:
keyid:BB:A3:5C:F8:AB:6F:3E:AA:2A:EB:AD:D9:E2:37:3D:EC:08:93:62:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u6Nc-KtvPqoq663Z4jc97AiTYl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/Wc_JmZ5mTTe3KroZPK2NVS_3BsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/u6Nc-KtvPqoq663Z4jc97AiTYl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.23.250.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:ab:ba:eb:ea:3e:3f:86:ab:32:53:00:2e:3c:6e:24:a3:8f:
c7:74:bc:48:eb:61:6f:57:4e:50:d9:08:76:c3:12:68:77:18:
06:94:bf:ff:2f:d0:48:9b:a0:07:4b:2a:73:99:8a:8c:fc:ce:
4e:7f:01:67:92:8e:96:fb:92:0e:97:6d:40:e7:12:d0:39:4d:
13:b7:37:f3:26:90:7e:9b:f4:33:60:67:09:93:7a:51:55:9c:
97:62:93:f9:b7:54:7a:1c:2a:af:d8:d8:53:16:1a:8f:fc:2f:
f9:9d:93:10:c3:e6:d5:4b:1d:3a:2b:57:8d:dc:26:19:2e:88:
de:1a:3f:a0:6e:77:7c:73:56:3f:11:15:0f:5a:d3:b5:73:03:
77:e7:71:47:ca:4a:4b:c2:a1:d2:8f:e7:b3:02:9c:59:cc:54:
16:4a:7d:f5:5b:c7:15:14:ad:68:7e:e9:41:5e:6b:87:ba:9f:
ef:9f:b0:8c:73:6a:e0:e8:e0:42:3c:10:a3:49:df:58:b0:9f:
6d:6d:30:0e:9a:c0:d8:8e:02:b9:b3:ae:b4:6c:70:1a:b5:0d:
3e:e9:77:ed:a5:b9:0c:f2:c9:55:5b:96:11:03:7d:b8:44:bd:
c9:4f:bf:91:11:0a:f7:56:24:5d:75:7d:97:55:6d:2d:e1:2a:
f7:a2:cb:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:51 2024 by rpki-client on console-ams.rpki-client.org