Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/26e4d1-12c8-4144-a37d-833295e04e37/1/WxICFQCWFjgXICK7WMqlXrU_fv4.roa
File: WxICFQCWFjgXICK7WMqlXrU_fv4.roa (raw, json)
Hash identifier: 09WUz3odhg9L8kQWyFVePk101aR+qgGxwJRLgfiEqhc=
Subject key identifier: 5B:12:02:15:00:96:16:38:17:20:22:BB:58:CA:A5:5E:B5:3F:7E:FE
Certificate issuer: /CN=2b9bec0211f61eaf119ceb2d40c5a0fe3aa8c2a0
Certificate serial: 0183FAD429D74CBB789A9AF18399262D0914
Authority key identifier: 2B:9B:EC:02:11:F6:1E:AF:11:9C:EB:2D:40:C5:A0:FE:3A:A8:C2:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5vsAhH2Hq8RnOstQMWg_jqowqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/26e4d1-12c8-4144-a37d-833295e04e37/1/WxICFQCWFjgXICK7WMqlXrU_fv4.roa
Signing time: Fri 21 Oct 2022 13:55:51 +0000
ROA not before: Fri 21 Oct 2022 13:55:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 185.116.63.0/24 maxlen: 24
185.65.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fa:d4:29:d7:4c:bb:78:9a:9a:f1:83:99:26:2d:09:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b9bec0211f61eaf119ceb2d40c5a0fe3aa8c2a0
Validity
Not Before: Oct 21 13:55:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b12021500961638172022bb58caa55eb53f7efe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:be:47:48:db:fc:45:54:c3:9e:ca:a8:23:74:
7c:ea:8c:98:cc:3d:a1:30:f6:c4:0b:cf:65:43:52:
5f:75:f2:b1:a7:df:ce:54:e5:f0:4b:ff:fd:d5:e4:
60:d6:68:01:80:21:1c:e6:52:20:d4:03:c4:38:2c:
71:9d:e5:b6:d0:d1:a6:ca:6e:39:bd:95:c4:04:78:
4b:2a:60:5a:04:43:61:31:fa:1c:c6:ec:f0:86:de:
63:41:85:93:c6:ff:f4:02:9a:db:d7:f9:dc:06:11:
a5:2a:f4:b5:f5:4e:a8:eb:67:75:fb:27:c9:1e:4f:
21:22:b9:9b:5c:9a:d9:84:79:f6:79:a7:72:a6:9f:
14:52:34:ef:9b:93:df:cf:2d:a5:1a:b7:9d:ee:b6:
e3:e2:0b:2c:37:9b:01:d2:0a:95:b8:d8:12:94:1b:
cf:b0:92:39:3f:66:fb:70:b0:fd:7f:2c:7f:01:4a:
68:f8:de:ba:a6:74:08:38:0d:33:0d:dd:eb:c0:84:
54:d1:bb:88:59:fc:6d:ff:5f:84:52:14:64:04:b1:
c0:a8:ac:6a:6c:b3:66:db:fd:5a:e5:f2:e2:d3:fb:
39:cc:7b:8a:91:ec:cd:19:e6:ac:81:69:2e:c9:04:
31:ad:8a:c4:d9:9c:45:e7:a1:96:6f:00:e1:e6:67:
0e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:12:02:15:00:96:16:38:17:20:22:BB:58:CA:A5:5E:B5:3F:7E:FE
X509v3 Authority Key Identifier:
keyid:2B:9B:EC:02:11:F6:1E:AF:11:9C:EB:2D:40:C5:A0:FE:3A:A8:C2:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5vsAhH2Hq8RnOstQMWg_jqowqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/26e4d1-12c8-4144-a37d-833295e04e37/1/WxICFQCWFjgXICK7WMqlXrU_fv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/26e4d1-12c8-4144-a37d-833295e04e37/1/K5vsAhH2Hq8RnOstQMWg_jqowqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.79.0/24
185.116.63.0/24
Signature Algorithm: sha256WithRSAEncryption
05:8d:b0:c0:73:7a:fd:9b:ba:98:7a:7e:29:c8:40:8c:5e:7c:
0a:f2:e5:3b:1e:20:e0:03:51:3c:3d:41:3f:e4:45:e4:19:78:
48:7f:01:40:ae:fe:d5:97:f2:1f:bb:d0:e7:63:de:20:7a:84:
9d:ca:e8:89:3b:b7:b1:ef:fe:70:ab:13:f7:d3:6b:58:63:0c:
8d:ce:ca:12:d4:5b:35:f9:0f:e1:6b:27:af:b4:92:17:a7:b1:
3e:d0:4d:25:1c:fc:e2:c5:9e:ef:11:fb:f5:0f:f0:bb:c0:01:
8a:dc:07:3f:9e:59:b7:2d:26:ab:cd:c2:cb:ea:36:38:bf:89:
ea:7a:02:c7:6c:9c:0c:cc:94:2f:14:53:87:ba:48:50:2e:3b:
c1:32:44:16:d7:ab:83:ec:04:7f:aa:7e:75:d5:fa:10:d0:ad:
3c:2c:bb:33:6d:f8:63:0b:54:7d:4b:03:ba:d7:e4:25:0e:85:
c4:5b:79:95:c5:5c:22:26:33:b7:d1:1c:98:e9:f0:dd:60:0a:
c1:0d:85:4c:10:3d:5b:1e:fe:bb:7d:5b:15:28:f9:f5:15:f0:
a6:4d:62:27:30:38:15:5b:95:e4:0a:b0:5e:e5:3f:a6:a0:fa:
dd:99:8a:82:b1:4d:24:a9:f9:ab:57:a5:8e:a8:a8:67:f3:dc:
87:cc:14:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:19 2023 by rpki-client on console.sobornost.net