Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/a8fe5b-6ace-4236-8a90-e0f5d86e37a3/1/wiYR_gSPHUZlBoVZFP0BxjVd6Dk.roa
File: wiYR_gSPHUZlBoVZFP0BxjVd6Dk.roa (raw, json)
Hash identifier: 6RurvbB8sPBZlO2MVlAfIil5eBvyoP6WQWDLpGGs9UI=
Subject key identifier: C2:26:11:FE:04:8F:1D:46:65:06:85:59:14:FD:01:C6:35:5D:E8:39
Certificate issuer: /CN=938ee951cdabc3ce805ec8df0bf3403bdfa9c657
Certificate serial: 0746489C
Authority key identifier: 93:8E:E9:51:CD:AB:C3:CE:80:5E:C8:DF:0B:F3:40:3B:DF:A9:C6:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k47pUc2rw86AXsjfC_NAO9-pxlc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/a8fe5b-6ace-4236-8a90-e0f5d86e37a3/1/wiYR_gSPHUZlBoVZFP0BxjVd6Dk.roa
Signing time: Sat 01 Jan 2022 11:57:03 +0000
ROA not before: Sat 01 Jan 2022 11:57:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208206
IP address blocks: 45.154.20.0/22 maxlen: 24
2a0f:9f00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122046620 (0x746489c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=938ee951cdabc3ce805ec8df0bf3403bdfa9c657
Validity
Not Before: Jan 1 11:57:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c22611fe048f1d466506855914fd01c6355de839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:0d:e0:9b:97:0c:16:c0:b9:f0:9e:f7:b6:53:
93:a0:2a:f6:4f:9a:9a:ea:60:67:85:88:ee:ca:38:
83:e2:3d:02:c1:85:7a:3e:5f:bf:2b:74:aa:bf:68:
e0:ed:69:68:5f:26:2c:b2:1a:b5:63:f3:c4:45:51:
89:1a:23:73:41:96:42:01:cc:67:93:32:ba:f5:4b:
d8:46:40:08:c3:20:8c:be:d0:67:e4:b1:7f:b8:df:
12:9f:7e:25:16:e2:0f:02:8d:e7:1a:8c:bf:cf:c8:
48:92:ce:e8:a1:82:71:b1:28:fc:ce:9d:04:80:44:
ca:ca:d5:5b:98:84:cc:05:21:c9:c5:87:2d:1b:ba:
41:00:60:5f:a6:47:9b:fd:23:46:e2:9f:c8:70:5a:
2f:6c:88:a4:74:a7:03:a5:97:18:c3:36:53:dd:20:
47:ef:fd:71:44:41:0b:47:50:c5:f2:25:dd:d9:9a:
26:79:b9:2d:1a:49:95:9c:d8:f3:da:1d:11:b5:76:
62:98:08:15:db:5c:6d:3f:c4:f8:a4:b9:39:43:4c:
ff:5b:a1:b9:b7:11:7f:f7:b2:7a:b8:e8:c8:05:7a:
0b:64:48:eb:ab:c8:5e:a6:eb:f6:b6:c4:23:05:62:
51:98:1a:21:6b:d8:2e:d6:43:15:81:52:b6:36:e5:
66:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:26:11:FE:04:8F:1D:46:65:06:85:59:14:FD:01:C6:35:5D:E8:39
X509v3 Authority Key Identifier:
keyid:93:8E:E9:51:CD:AB:C3:CE:80:5E:C8:DF:0B:F3:40:3B:DF:A9:C6:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k47pUc2rw86AXsjfC_NAO9-pxlc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a8fe5b-6ace-4236-8a90-e0f5d86e37a3/1/wiYR_gSPHUZlBoVZFP0BxjVd6Dk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a8fe5b-6ace-4236-8a90-e0f5d86e37a3/1/k47pUc2rw86AXsjfC_NAO9-pxlc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.20.0/22
IPv6:
2a0f:9f00::/29
Signature Algorithm: sha256WithRSAEncryption
ad:db:94:51:f9:71:bc:94:dc:df:d5:10:c8:17:d5:2d:9b:ba:
5f:35:59:ab:7f:4b:8f:e0:e5:be:d9:ef:44:7a:99:c7:63:9b:
ad:3d:f7:26:18:b2:1a:cb:f0:0c:3d:59:2d:8c:b5:ea:05:83:
66:b4:12:df:0c:70:a1:93:4d:05:17:3f:f9:e2:1b:e1:15:6d:
b4:c1:a6:93:b4:72:b7:76:ac:9d:31:55:ad:13:8a:7c:56:80:
d8:7f:b2:7f:9c:24:f2:37:2d:d5:5e:8f:4c:8a:ab:21:44:07:
99:0d:ec:83:aa:b8:3a:d9:36:b8:b8:cc:e6:b8:b0:89:8e:54:
29:00:76:1e:4a:c7:29:a4:bb:72:1c:4e:cd:cc:d5:a9:30:3f:
ef:ab:7c:2d:78:00:08:af:0c:54:5f:a8:0a:09:61:0f:ff:c9:
ae:62:f3:f8:2a:31:ca:af:cb:77:fa:b9:5d:02:a0:9c:4d:36:
24:63:69:1c:a3:a7:8c:4a:92:06:c9:4f:a5:1a:3c:80:32:68:
03:7e:f4:af:84:96:3e:f9:a0:51:9e:34:9e:03:76:3b:d9:97:
45:f6:a6:57:0a:96:f6:9a:62:1a:52:e6:ce:ec:bd:eb:bb:99:
8c:ea:50:f8:05:0a:d9:3d:a0:8f:9f:f1:82:a2:b5:98:dc:09:
44:72:b5:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:27 2023 by rpki-client on console.sobornost.net