Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/1fcb59-405e-40c3-a630-c5d13e88e4de/1/WxGWWdUY6hCezvs0BxOx86Hy6LQ.roa
File: WxGWWdUY6hCezvs0BxOx86Hy6LQ.roa (raw, json)
Hash identifier: FAGTuw3rM6EdNeog4zkdEAN/IwLD+rP5fNDqYfFsq8Y=
Subject key identifier: 5B:11:96:59:D5:18:EA:10:9E:CE:FB:34:07:13:B1:F3:A1:F2:E8:B4
Certificate issuer: /CN=ccd35790830ce7469a94c59b2e2ccbbf5e36d13f
Certificate serial: 01BF5B73
Authority key identifier: CC:D3:57:90:83:0C:E7:46:9A:94:C5:9B:2E:2C:CB:BF:5E:36:D1:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNNXkIMM50aalMWbLizLv1420T8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/1fcb59-405e-40c3-a630-c5d13e88e4de/1/WxGWWdUY6hCezvs0BxOx86Hy6LQ.roa
Signing time: Sat 01 Jan 2022 10:56:17 +0000
ROA not before: Sat 01 Jan 2022 10:56:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.47.187.0/24 maxlen: 24
193.200.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29318003 (0x1bf5b73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd35790830ce7469a94c59b2e2ccbbf5e36d13f
Validity
Not Before: Jan 1 10:56:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b119659d518ea109ecefb340713b1f3a1f2e8b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:fd:22:a5:c8:ee:11:38:8a:f3:7d:e4:a9:4d:
5a:77:93:c6:d9:48:bf:cb:c3:8b:63:91:6c:24:31:
d2:17:15:45:13:86:b9:43:eb:aa:58:62:a1:3d:c0:
be:d9:fc:a4:9c:f2:9a:02:f0:00:e2:9b:c1:70:a9:
e2:7e:22:ac:8f:bf:4a:14:2d:7e:76:2f:81:68:26:
53:75:ce:da:68:00:c2:c4:61:a6:71:ce:93:e0:3c:
ed:3a:6c:cb:6a:07:44:2a:1e:e0:52:6d:6f:51:66:
15:2b:6c:f5:ed:d9:d0:e6:5e:55:34:7d:c5:f2:36:
76:34:2b:dd:bf:9a:b9:65:6d:19:3d:b7:f6:46:e5:
36:f4:80:03:56:9d:fe:dc:7b:dc:47:67:65:e8:a7:
46:40:01:55:1b:a5:14:96:4d:2c:82:a0:b5:8c:78:
67:92:fa:e2:5f:db:16:68:25:a9:8b:ff:74:f3:e1:
0a:ab:9c:dc:23:c6:b4:bb:9d:ec:dc:4f:ae:ae:c4:
30:c4:c4:19:89:ea:6e:64:11:4d:60:c3:76:eb:ef:
a5:54:c7:83:2c:20:c7:b3:bb:59:13:a5:6a:97:d5:
ab:20:80:f6:ff:19:f3:5a:3d:21:f0:ed:be:ee:1b:
86:a1:be:87:11:af:a3:42:7f:3a:b4:5b:f6:26:07:
bf:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:11:96:59:D5:18:EA:10:9E:CE:FB:34:07:13:B1:F3:A1:F2:E8:B4
X509v3 Authority Key Identifier:
keyid:CC:D3:57:90:83:0C:E7:46:9A:94:C5:9B:2E:2C:CB:BF:5E:36:D1:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNNXkIMM50aalMWbLizLv1420T8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/1fcb59-405e-40c3-a630-c5d13e88e4de/1/WxGWWdUY6hCezvs0BxOx86Hy6LQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/1fcb59-405e-40c3-a630-c5d13e88e4de/1/zNNXkIMM50aalMWbLizLv1420T8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.187.0/24
193.200.156.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:b9:db:f3:b9:f6:88:55:dd:b7:2a:4f:02:8f:22:7e:af:9e:
a4:a7:e3:c1:97:ef:9d:19:22:fd:57:9a:7d:9f:63:40:e9:bd:
44:80:73:6f:5f:30:29:32:ed:43:02:13:7e:2f:86:83:51:74:
a3:ee:eb:65:16:44:8e:d4:6d:2b:64:9c:a5:ea:e1:1e:fa:9c:
40:b4:61:7e:ec:89:b1:5b:63:93:04:84:7d:46:63:e7:45:2d:
ec:89:e5:d0:18:5f:d6:9a:48:55:83:61:7a:47:32:da:87:5c:
78:7c:87:a6:91:da:2e:4e:11:7d:e7:19:a2:d5:22:3a:38:56:
da:76:18:8f:5e:c5:3d:83:0a:d3:05:da:9a:a4:e9:14:95:e5:
21:ad:bc:e4:da:36:4c:65:7a:0f:18:a9:15:b3:57:ab:dc:bf:
81:fb:31:79:bb:70:6f:8d:0d:38:ba:7e:3c:c3:1d:50:9d:42:
4a:03:82:4b:50:5a:79:83:04:97:0a:98:e8:25:78:8d:f2:78:
de:f9:38:f4:4f:5a:66:65:9f:61:98:61:6b:de:79:f6:b9:e2:
86:9a:32:50:b4:a1:8a:00:25:e5:01:a4:30:53:97:ea:88:a2:
af:36:3e:95:32:f7:f4:14:27:36:18:35:d4:a7:84:5a:1a:17:
9d:e3:42:4a
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAb9bczANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Y2QzNTc5MDgzMGNlNzQ2OWE5NGM1OWIyZTJjY2JiZjVlMzZkMTNmMB4XDTIyMDEw
MTEwNTYxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWIxMTk2NTlkNTE4
ZWExMDllY2VmYjM0MDcxM2IxZjNhMWYyZThiNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANn9IqXI7hE4ivN95KlNWneTxtlIv8vDi2ORbCQx0hcVRROG
uUPrqlhioT3Avtn8pJzymgLwAOKbwXCp4n4irI+/ShQtfnYvgWgmU3XO2mgAwsRh
pnHOk+A87Tpsy2oHRCoe4FJtb1FmFSts9e3Z0OZeVTR9xfI2djQr3b+auWVtGT23
9kblNvSAA1ad/tx73EdnZeinRkABVRulFJZNLIKgtYx4Z5L64l/bFmglqYv/dPPh
Cquc3CPGtLud7NxPrq7EMMTEGYnqbmQRTWDDduvvpVTHgywgx7O7WROlapfVqyCA
9v8Z81o9IfDtvu4bhqG+hxGvo0J/OrRb9iYHvyMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRbEZZZ1RjqEJ7O+zQHE7HzofLotDAfBgNVHSMEGDAWgBTM01eQgwznRpqU
xZsuLMu/XjbRPzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pOTlhrSU1NNTBhYWxNV2JMaXpMdjE0MjBUOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGQvMWZjYjU5LTQwNWUtNDBjMy1hNjMwLWM1ZDEzZTg4ZTRkZS8x
L1d4R1dXZFVZNmhDZXp2czBCeE94ODZIeTZMUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGQv
MWZjYjU5LTQwNWUtNDBjMy1hNjMwLWM1ZDEzZTg4ZTRkZS8xL3pOTlhrSU1NNTBh
YWxNV2JMaXpMdjE0MjBUOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAMEvuwMEAMHInDANBgkqhkiG9w0B
AQsFAAOCAQEAzrnb87n2iFXdtypPAo8ifq+epKfjwZfvnRki/VeafZ9jQOm9RIBz
b18wKTLtQwITfi+Gg1F0o+7rZRZEjtRtK2ScperhHvqcQLRhfuyJsVtjkwSEfUZj
50Ut7Inl0Bhf1ppIVYNhekcy2odceHyHppHaLk4RfecZotUiOjhW2nYYj17FPYMK
0wXamqTpFJXlIa285No2TGV6DxipFbNXq9y/gfsxebtwb40NOLp+PMMdUJ1CSgOC
S1BaeYMElwqY6CV4jfJ43vk49E9aZmWfYZhha9559rnihpoyULShigAl5QGkMFOX
6oiirzY+lTL39BQnNhg11KeEWhoXneNCSg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:42 2024 by rpki-client on console-fra.rpki-client.org