Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/W6K4mZxQpXRNrWzBSwsDVacOHVM.roa
File: W6K4mZxQpXRNrWzBSwsDVacOHVM.roa (raw, json)
Hash identifier: ZUllFiqqv+RR9Rc8mXg9rsD63ixMdW4wNbtuZroFKoQ=
Subject key identifier: 5B:A2:B8:99:9C:50:A5:74:4D:AD:6C:C1:4B:0B:03:55:A7:0E:1D:53
Certificate issuer: /CN=27e367d8decf7d626e54780f80e57360d2c078cd
Certificate serial: 89B7
Authority key identifier: 27:E3:67:D8:DE:CF:7D:62:6E:54:78:0F:80:E5:73:60:D2:C0:78:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J-Nn2N7PfWJuVHgPgOVzYNLAeM0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/W6K4mZxQpXRNrWzBSwsDVacOHVM.roa
Signing time: Mon 25 Apr 2022 08:12:05 +0000
ROA not before: Mon 25 Apr 2022 08:12:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204184
IP address blocks: 185.245.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35255 (0x89b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27e367d8decf7d626e54780f80e57360d2c078cd
Validity
Not Before: Apr 25 08:12:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ba2b8999c50a5744dad6cc14b0b0355a70e1d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:fd:c4:90:d2:7a:ef:43:c7:0a:78:f3:f2:ac:
7f:32:07:43:0a:ad:e1:17:ff:e5:f0:b7:99:05:83:
50:c6:c2:80:49:c7:a2:f3:a7:ad:d1:7e:7e:8f:ee:
72:dc:c3:fe:97:82:f9:2c:2c:93:52:4f:a0:e4:4f:
59:66:a5:6a:b3:d4:2f:35:58:06:eb:fb:83:99:3b:
5f:c8:6d:c0:50:17:b9:62:d6:29:9d:40:27:eb:3e:
47:c0:d2:3d:4f:1a:ae:fa:57:62:b1:e4:1b:d5:64:
a2:cc:22:98:3f:d8:4c:60:f1:4a:a3:b1:93:b6:05:
18:f7:b0:fe:ab:89:d9:f0:d6:60:35:02:9c:eb:70:
bd:a5:04:19:32:f5:ff:f0:79:63:73:82:c6:2e:2f:
40:35:b4:cb:e4:b3:76:59:d0:9c:97:ce:60:77:29:
a0:a2:b3:74:12:06:3c:8d:b7:d4:28:4e:87:c2:a8:
7d:5e:af:ac:e4:f8:06:79:4a:af:a2:5b:cd:72:01:
51:00:b4:6e:2a:8e:22:ab:6d:73:c2:87:99:af:f7:
3a:fe:e7:02:83:2d:7e:1f:9d:ec:d5:f5:9c:8c:41:
05:db:58:b3:f5:97:e7:17:ce:8c:93:c4:9c:d9:e6:
3a:3d:30:e2:2c:68:b3:1c:bb:ae:6b:e5:38:f0:ee:
53:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:A2:B8:99:9C:50:A5:74:4D:AD:6C:C1:4B:0B:03:55:A7:0E:1D:53
X509v3 Authority Key Identifier:
keyid:27:E3:67:D8:DE:CF:7D:62:6E:54:78:0F:80:E5:73:60:D2:C0:78:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J-Nn2N7PfWJuVHgPgOVzYNLAeM0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/W6K4mZxQpXRNrWzBSwsDVacOHVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/J-Nn2N7PfWJuVHgPgOVzYNLAeM0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.53.0/24
Signature Algorithm: sha256WithRSAEncryption
82:52:23:d7:96:bc:e2:3d:a5:05:5e:7b:41:64:62:dc:b7:1b:
e4:78:ba:04:ec:aa:53:df:b3:04:12:46:79:75:8d:cd:a2:24:
03:83:73:58:00:bf:e9:87:16:d7:b4:ca:04:81:ec:30:20:45:
a4:ca:0a:10:91:64:1a:36:9f:8f:55:ba:da:c8:87:b8:41:61:
df:bd:79:ae:76:a7:e9:32:39:6d:df:e7:00:67:71:02:ac:27:
c9:9d:96:e5:cb:c3:06:51:cb:e7:0f:64:c4:20:65:a9:ac:0a:
68:33:f1:09:7f:5c:0b:67:3e:10:b0:6f:96:89:6f:d7:1f:37:
5e:5c:82:8f:0c:e9:3d:96:55:d7:2c:5b:fc:f8:51:0f:e3:8a:
6f:bd:e0:4a:31:6e:ad:86:75:f1:48:c4:dc:52:e8:32:0a:14:
89:65:3a:2d:0b:1e:ee:fb:61:a8:a0:0b:e4:00:02:3f:b8:05:
11:62:34:7a:89:fd:b2:0c:6c:2c:fa:0c:fd:ae:a7:00:1f:60:
70:05:73:4b:e1:8c:6b:e7:08:c6:4c:ac:b7:ea:20:74:16:20:
6a:0a:a6:65:e1:c0:86:e1:76:71:37:25:eb:5a:b2:91:bb:9c:
74:6f:3b:47:fe:be:70:73:c4:94:c0:32:cd:65:18:a2:16:bb:
c3:9d:20:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:35 2023 by rpki-client on console.sobornost.net