Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/wc5fAYxajDdvflItfoBugDr5VW0.roa
File: wc5fAYxajDdvflItfoBugDr5VW0.roa (raw, json)
Hash identifier: ygjKNYkzug9A0Q3xZ9zO2UiROvHpVhIW3ClRw9NZqLs=
Subject key identifier: C1:CE:5F:01:8C:5A:8C:37:6F:7E:52:2D:7E:80:6E:80:3A:F9:55:6D
Certificate issuer: /CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Certificate serial: 02EAC5C1
Authority key identifier: 1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/wc5fAYxajDdvflItfoBugDr5VW0.roa
Signing time: Sat 01 Jan 2022 08:53:31 +0000
ROA not before: Sat 01 Jan 2022 08:53:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48258
IP address blocks: 185.254.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48940481 (0x2eac5c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Validity
Not Before: Jan 1 08:53:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1ce5f018c5a8c376f7e522d7e806e803af9556d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c1:09:d2:d4:0e:7e:76:8f:a1:df:be:df:cd:
fd:5d:09:20:c4:c7:64:62:be:10:9d:79:e4:01:e9:
56:94:1b:cf:0a:cf:98:c2:a5:53:62:f2:7e:2b:55:
4b:2d:d2:57:ac:47:7d:08:79:7d:c7:2c:9f:f7:7f:
88:31:d2:e9:41:a2:14:b6:a0:3c:cc:27:28:e5:d2:
ae:5d:5a:3c:40:bc:42:f1:a4:92:3b:53:95:d7:82:
37:2b:dc:87:63:57:31:4d:47:2a:4f:36:a7:13:2b:
05:56:f5:b2:c8:b3:8e:8b:e6:8c:98:4f:79:4b:7d:
ca:cb:ee:9e:29:af:17:89:34:e3:ea:78:6d:dd:e0:
98:f2:17:b1:a5:50:64:23:1a:43:36:de:2a:c6:70:
c2:10:6d:84:b3:5f:eb:d4:f3:a1:84:9a:1a:44:56:
17:7b:43:4a:84:da:c1:45:67:4b:61:ed:d3:f7:ae:
c0:e9:84:61:1b:9a:78:1c:87:16:c3:fd:e3:b5:59:
3b:df:0a:f7:16:71:18:57:77:9a:3e:b8:ce:0a:08:
e6:1c:d6:d0:2b:d6:47:91:6d:a6:9d:a3:9b:42:51:
73:98:07:6b:d6:e4:1a:74:6b:ed:1f:00:e3:42:2f:
27:fa:dc:2d:15:4a:e0:23:99:cf:7b:ad:84:ab:29:
ae:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:CE:5F:01:8C:5A:8C:37:6F:7E:52:2D:7E:80:6E:80:3A:F9:55:6D
X509v3 Authority Key Identifier:
keyid:1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/wc5fAYxajDdvflItfoBugDr5VW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.224.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:ff:22:65:9c:55:dd:1a:93:ed:5e:f3:34:e3:f1:45:87:8e:
3c:15:bc:f8:e6:56:4e:72:9b:d3:11:e9:10:08:05:00:26:63:
18:8e:a2:53:90:98:19:a1:70:fa:51:02:b4:e6:e6:cb:d8:95:
e7:67:27:9e:e4:26:f4:53:5a:46:ee:ee:f7:57:7e:a8:e1:7a:
d3:a5:b0:f8:84:37:0e:f0:07:d7:6c:fc:75:b5:4a:44:6b:7c:
29:46:e6:7d:8f:49:40:00:47:66:c5:3b:dc:b4:09:db:2b:3c:
2a:bb:79:ea:67:db:b7:81:4b:5a:0b:a7:c9:46:90:ec:5f:4f:
da:ab:2c:20:08:3e:83:c1:f0:10:67:c4:40:ce:81:eb:1c:3f:
1f:f7:d6:ca:79:db:ed:2f:d7:e2:b4:a5:05:8a:2e:12:49:78:
d8:88:64:4a:3e:4c:f7:b7:70:72:b1:fd:1e:6b:94:cf:48:f2:
1e:30:cf:40:fe:2a:49:c0:44:65:44:16:ee:24:d3:a0:d2:af:
b6:bf:93:57:d4:8a:7f:d1:71:c4:d2:ea:98:d3:21:22:32:8a:
ef:6d:d8:10:1f:30:c5:2f:5b:7a:51:1c:ec:56:e8:da:4b:76:
2d:78:99:09:69:bd:2e:c4:d2:c0:de:78:08:f7:41:03:7a:6d:
19:a1:40:cb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAurFwTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZDljMDcyZjJkYjNlZjFmMjYwNTA1YmJmYTBlZmVhMThjMjk3MGIxMB4XDTIyMDEw
MTA4NTMzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzFjZTVmMDE4YzVh
OGMzNzZmN2U1MjJkN2U4MDZlODAzYWY5NTU2ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK7BCdLUDn52j6Hfvt/N/V0JIMTHZGK+EJ155AHpVpQbzwrP
mMKlU2LyfitVSy3SV6xHfQh5fccsn/d/iDHS6UGiFLagPMwnKOXSrl1aPEC8QvGk
kjtTldeCNyvch2NXMU1HKk82pxMrBVb1ssizjovmjJhPeUt9ysvunimvF4k04+p4
bd3gmPIXsaVQZCMaQzbeKsZwwhBthLNf69TzoYSaGkRWF3tDSoTawUVnS2Ht0/eu
wOmEYRuaeByHFsP947VZO98K9xZxGFd3mj64zgoI5hzW0CvWR5Ftpp2jm0JRc5gH
a9bkGnRr7R8A40IvJ/rcLRVK4COZz3uthKsprnkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTBzl8BjFqMN29+Ui1+gG6AOvlVbTAfBgNVHSMEGDAWgBQdnAcvLbPvHyYF
Bbv6Dv6hjClwsTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0had0hMeTJ6N3g4bUJRVzctZzctb1l3cGNMRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTMvYzU1MGUzLWYwMjQtNDZiOC04N2VjLTQ1MGUyNGUwODkxZC8x
L3djNWZBWXhhakRkdmZsSXRmb0J1Z0RyNVZXMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTMv
YzU1MGUzLWYwMjQtNDZiOC04N2VjLTQ1MGUyNGUwODkxZC8xL0had0hMeTJ6N3g4
bUJRVzctZzctb1l3cGNMRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArn+4DANBgkqhkiG9w0BAQsFAAOC
AQEAPf8iZZxV3RqT7V7zNOPxRYeOPBW8+OZWTnKb0xHpEAgFACZjGI6iU5CYGaFw
+lECtObmy9iV52cnnuQm9FNaRu7u91d+qOF606Ww+IQ3DvAH12z8dbVKRGt8KUbm
fY9JQABHZsU73LQJ2ys8Krt56mfbt4FLWgunyUaQ7F9P2qssIAg+g8HwEGfEQM6B
6xw/H/fWynnb7S/X4rSlBYouEkl42IhkSj5M97dwcrH9HmuUz0jyHjDPQP4qScBE
ZUQW7iTToNKvtr+TV9SKf9FxxNLqmNMhIjKK723YEB8wxS9belEc7Fbo2kt2LXiZ
CWm9LsTSwN54CPdBA3ptGaFAyw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:59 2024 by rpki-client on console-fra.rpki-client.org