Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/c6f9e8-4b75-44e4-a0d6-517a661ae6bd/1/w3TN1eQqganYU6NMnTh4WmiqsMw.roa
File: w3TN1eQqganYU6NMnTh4WmiqsMw.roa (raw, json)
Hash identifier: 3y/Dwpo01IrdS4Rt0mC97/3O/0kH9l7r6Szan/Pe+Lw=
Subject key identifier: C3:74:CD:D5:E4:2A:81:A9:D8:53:A3:4C:9D:38:78:5A:68:AA:B0:CC
Certificate issuer: /CN=d9112e8993b00bda2b4e9c02ac57837400aac404
Certificate serial: 05119AD0
Authority key identifier: D9:11:2E:89:93:B0:0B:DA:2B:4E:9C:02:AC:57:83:74:00:AA:C4:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2REuiZOwC9orTpwCrFeDdACqxAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/c6f9e8-4b75-44e4-a0d6-517a661ae6bd/1/w3TN1eQqganYU6NMnTh4WmiqsMw.roa
Signing time: Fri 24 Jun 2022 15:31:40 +0000
ROA not before: Fri 24 Jun 2022 15:31:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212152
IP address blocks: 198.205.13.0/24 maxlen: 24
198.205.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85039824 (0x5119ad0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9112e8993b00bda2b4e9c02ac57837400aac404
Validity
Not Before: Jun 24 15:31:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c374cdd5e42a81a9d853a34c9d38785a68aab0cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:03:53:c3:e1:85:80:8f:fb:7a:fd:d8:7e:f3:
be:27:a1:ff:3b:7d:85:7a:db:c8:a8:9c:36:e7:ee:
a6:42:6e:a9:43:ad:f0:0c:5b:5a:09:14:f4:62:0a:
3a:a6:eb:a9:86:4a:9b:46:bd:d1:70:49:c3:61:39:
7e:91:60:70:61:6a:fc:68:e7:a4:90:5e:16:6a:69:
7b:8f:d0:b7:3d:be:a0:e4:f1:c6:22:f5:0c:61:20:
2d:73:2d:84:93:2e:5e:b2:56:e5:c5:e9:ae:83:50:
ad:c7:c6:4f:71:2d:a6:2d:90:e3:2d:b1:ea:08:f5:
0c:ef:55:33:33:c1:09:25:21:fe:85:10:b5:82:56:
f0:91:7d:5d:ef:72:39:80:20:79:68:e2:11:73:c8:
bc:55:b1:4d:0c:96:78:6d:5a:a1:fc:c8:21:a5:ad:
a6:c6:ad:84:b7:80:3c:84:1a:15:6e:4f:8b:9c:be:
2f:c1:da:01:af:8b:92:86:58:16:d7:42:41:a4:93:
5c:b6:9a:24:42:b5:da:35:ae:c8:6d:30:89:e8:b1:
c4:4e:13:48:04:91:ec:59:28:9b:b7:e4:52:df:d1:
ee:42:f4:e9:8d:d2:8c:f6:5c:c7:65:a9:e1:0b:60:
43:a2:b3:4b:b2:92:85:fc:c1:b3:b4:55:9d:e7:3e:
d3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:74:CD:D5:E4:2A:81:A9:D8:53:A3:4C:9D:38:78:5A:68:AA:B0:CC
X509v3 Authority Key Identifier:
keyid:D9:11:2E:89:93:B0:0B:DA:2B:4E:9C:02:AC:57:83:74:00:AA:C4:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2REuiZOwC9orTpwCrFeDdACqxAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c6f9e8-4b75-44e4-a0d6-517a661ae6bd/1/w3TN1eQqganYU6NMnTh4WmiqsMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c6f9e8-4b75-44e4-a0d6-517a661ae6bd/1/2REuiZOwC9orTpwCrFeDdACqxAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
198.205.12.0/23
Signature Algorithm: sha256WithRSAEncryption
05:ce:70:2e:bf:2d:62:c8:ec:b0:6f:b3:26:4b:1c:7f:92:65:
20:6e:e0:5a:df:82:6d:4f:9d:6a:69:7d:d7:e0:a2:9b:32:55:
9c:80:26:c0:5b:24:aa:6c:f7:08:f8:97:ec:fe:64:0b:fc:55:
87:2e:2e:7a:77:1c:7c:a1:1f:29:c0:6c:9c:98:00:ee:cc:09:
37:2d:b4:3e:24:d1:77:54:f7:cd:3c:8e:a0:7d:15:81:0f:c1:
b4:ae:bd:54:e3:ec:d7:07:fc:e3:91:38:c3:85:2b:25:ef:94:
cc:74:6e:1d:04:0a:d5:c1:6e:f2:53:e2:f5:b3:20:74:42:75:
91:33:42:63:39:b5:c8:1a:68:ea:fb:e8:c8:f3:c7:1b:bb:f9:
61:2b:5b:05:8d:10:2d:ed:f6:3f:6b:29:00:cf:7f:51:39:03:
c4:ca:5e:c0:fd:37:0b:53:fb:4b:96:9d:81:21:ba:86:28:90:
8a:ca:ea:06:32:df:01:2a:58:87:5a:90:1a:8b:5d:f5:cc:18:
c4:60:61:d3:27:d3:84:79:bf:4e:86:a3:98:b6:50:5a:d4:f3:
bf:fa:2e:c3:50:48:3c:31:f2:42:1c:85:27:02:0b:76:b1:70:
8b:39:5f:22:33:09:a9:9d:ae:54:5d:c1:6c:06:11:57:66:a7:
17:52:22:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:49 2023 by rpki-client on console-fra.rpki-client.org