Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/WfWdDfOE_vaPlN-igK8KD6U2erQ.roa
File: WfWdDfOE_vaPlN-igK8KD6U2erQ.roa (raw, json)
Hash identifier: Ht1kL+wtJ4u1SKpXNMfOQkFOSxW8tKro+tEMV6xDy+A=
Subject key identifier: 59:F5:9D:0D:F3:84:FE:F6:8F:94:DF:A2:80:AF:0A:0F:A5:36:7A:B4
Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Certificate serial: 36876B56
Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/WfWdDfOE_vaPlN-igK8KD6U2erQ.roa
Signing time: Wed 04 May 2022 05:54:17 +0000
ROA not before: Wed 04 May 2022 05:54:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12430
IP address blocks: 2.154.192.0/18 maxlen: 18
2.154.0.0/16 maxlen: 16
2.152.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 914844502 (0x36876b56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Validity
Not Before: May 4 05:54:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59f59d0df384fef68f94dfa280af0a0fa5367ab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:66:59:29:fb:55:dc:84:44:b9:34:75:3e:28:
63:0c:0f:fb:03:84:97:bb:00:5d:cd:38:c2:f3:1b:
8d:0f:03:62:6c:7b:af:bc:10:3e:54:2b:13:5b:b9:
9a:1c:b0:60:8b:01:60:cd:fa:f0:8d:b0:f6:f2:38:
df:9f:1f:09:7b:8e:2b:4a:61:d6:35:38:3e:96:7a:
21:a6:f3:0c:bc:2f:cc:b6:20:9b:95:a7:1a:bc:7a:
2f:cd:3d:d0:4a:8d:e7:97:51:41:5d:fd:7f:10:df:
6f:18:89:ea:90:d8:48:57:91:20:8f:92:19:20:f6:
6f:15:e4:e4:36:9e:44:52:f5:8a:6b:3d:4d:8b:ed:
ae:d1:93:23:6d:94:62:60:5a:87:4e:ae:7b:eb:7f:
66:20:1e:59:8e:0a:e8:14:42:f2:4f:45:73:a2:65:
fe:49:59:16:bc:95:fc:8a:9f:6c:d4:6b:1d:24:79:
66:64:69:05:5c:d5:7b:fe:c7:ab:ac:61:d6:f8:86:
ee:66:37:39:17:97:71:5a:f0:4d:9f:d4:ea:b6:77:
33:27:1f:7d:be:5f:c0:ab:33:56:9b:36:95:d6:a3:
38:46:0b:36:b9:94:3d:37:b9:85:ba:28:8f:20:c2:
e7:4d:05:9a:b4:dd:5a:54:11:48:e9:8a:52:a0:4e:
99:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:F5:9D:0D:F3:84:FE:F6:8F:94:DF:A2:80:AF:0A:0F:A5:36:7A:B4
X509v3 Authority Key Identifier:
keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/WfWdDfOE_vaPlN-igK8KD6U2erQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.152.0.0/16
2.154.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7b:8f:c2:e6:38:5b:2c:c6:20:4e:47:68:9d:64:40:02:04:19:
dd:d0:0a:f2:c9:d5:fc:b2:ac:86:fd:f6:61:9e:06:0a:f2:c8:
4f:0f:f9:43:08:4a:1f:a2:e0:1c:59:b8:8a:5e:06:dc:f6:79:
84:f9:fd:84:a6:14:d5:b0:d5:62:da:8e:5b:65:ac:ff:89:a4:
53:c3:3f:98:29:86:0b:60:d8:63:0b:f0:ad:27:b8:99:88:58:
58:d4:61:91:60:ce:1f:88:79:3e:13:bb:e2:ba:cc:44:89:7e:
ba:27:33:36:0e:36:91:70:96:9b:6a:29:82:e5:a1:86:b7:c1:
fe:76:79:a2:4f:bd:09:73:9c:6d:bc:26:d4:56:b2:54:cd:df:
db:b9:2c:64:76:df:c2:e4:a1:63:7f:84:8f:d3:ae:da:c6:40:
47:c1:d7:f6:2e:82:2d:39:c8:d0:55:5d:a5:8b:36:e6:83:dc:
d0:73:90:e1:27:4d:2f:b1:94:ff:d0:0f:89:9a:54:6a:92:b9:
28:fc:01:c0:ac:0b:cd:b6:e1:53:62:3d:3c:e7:5b:6e:8c:52:
83:a1:d4:4d:5c:6b:e7:9f:24:a5:f7:5e:c5:e3:38:05:e5:50:
37:03:df:e3:3c:df:56:f2:68:3b:d1:f2:68:d8:77:bc:20:94:
4d:7b:ed:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:48 2023 by rpki-client on console-ams.rpki-client.org