Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/L_WKBdmABz9okqTXKVQE7BlH8KQ.roa
File: L_WKBdmABz9okqTXKVQE7BlH8KQ.roa (raw, json)
Hash identifier: IzmY1lbMijw8O6EpnRSKhLRnkmXGEpXhTLYpwgMOuqs=
Subject key identifier: 2F:F5:8A:05:D9:80:07:3F:68:92:A4:D7:29:54:04:EC:19:47:F0:A4
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D3E70EA
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/L_WKBdmABz9okqTXKVQE7BlH8KQ.roa
Signing time: Thu 12 May 2022 06:39:03 +0000
ROA not before: Thu 12 May 2022 06:39:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210441
IP address blocks: 194.163.88.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222195946 (0xd3e70ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: May 12 06:39:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ff58a05d980073f6892a4d7295404ec1947f0a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ce:6a:32:35:0b:e1:51:47:cf:c9:bd:d1:e9:
33:7c:11:eb:0e:10:1d:24:ca:11:da:aa:19:cb:5c:
22:3e:25:8b:da:e4:b8:11:d5:0a:0f:d0:da:4d:13:
f6:4f:79:ef:2b:e6:2a:9e:13:d3:98:38:61:01:1f:
05:f1:30:48:f2:7d:60:9e:da:05:1a:53:08:90:b0:
c6:39:80:e7:e5:c1:fb:81:f3:8f:fb:56:ed:5f:47:
cb:68:20:d1:15:e9:31:d4:20:e1:12:5b:3d:1b:e9:
c3:4c:62:6d:47:91:c9:7f:12:26:1e:14:2e:72:ee:
91:7d:88:e8:c6:93:87:6d:63:23:4c:25:08:39:bf:
41:39:a1:aa:7d:9c:36:e9:d9:91:db:34:93:76:33:
64:bb:59:81:03:5a:22:e2:16:67:23:63:4a:22:45:
58:48:45:f8:20:28:37:b0:52:d5:5b:61:c8:fe:83:
82:d7:b9:33:70:01:c6:19:b7:29:e6:2e:02:7d:8b:
ef:d5:5e:a9:47:a0:8f:77:95:4d:d5:8b:68:81:52:
79:43:52:47:74:4b:c6:2b:ea:d7:90:24:74:54:a7:
01:40:7a:e1:81:db:54:7b:33:73:8f:f0:1b:3e:93:
8b:54:08:47:5c:15:cd:6e:9b:75:ad:17:91:00:94:
a0:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:F5:8A:05:D9:80:07:3F:68:92:A4:D7:29:54:04:EC:19:47:F0:A4
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/L_WKBdmABz9okqTXKVQE7BlH8KQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.88.0/23
Signature Algorithm: sha256WithRSAEncryption
43:44:fc:40:8d:da:a9:91:6b:72:25:cb:11:98:c8:62:52:ef:
86:2d:40:86:f7:5c:3a:51:d1:c6:f3:e2:2b:e0:45:fe:de:39:
5c:f1:c3:2b:6b:cf:e4:e2:b8:64:9d:4a:3f:b9:bc:d2:71:15:
a9:c2:f4:a6:bd:fb:3b:82:a7:11:0f:0a:88:d7:59:39:85:d3:
5e:59:d6:1b:6b:1c:12:a8:50:08:df:78:17:3f:97:e0:d3:e7:
08:10:37:ce:9d:a9:f1:e5:76:a2:e5:c2:0a:29:27:87:6c:1a:
af:2d:06:92:89:97:e2:57:cb:5c:68:9a:c3:3c:05:96:b9:e7:
6a:4a:73:20:8f:4d:ea:5c:4e:4d:2d:dd:c2:d5:c2:09:4c:05:
98:47:29:b3:ed:1d:32:a2:18:b6:b5:fb:28:bd:65:83:88:20:
f2:44:f4:e5:cc:1a:e7:d8:be:22:4a:e5:c3:4f:6a:b8:19:7f:
32:5e:14:a3:af:a4:e9:27:61:eb:37:04:39:62:ae:c2:d6:4e:
a5:73:7f:19:05:33:1a:4d:78:58:fd:a4:b0:92:09:c8:bf:3c:
bc:d9:ad:8b:de:94:fd:1a:46:ac:e4:04:55:8d:ea:ff:00:76:
9a:16:79:b9:e2:95:9f:5a:95:6f:6f:4f:6d:db:0c:2b:b9:83:
1e:fc:4c:28
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDT5w6jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzQ3MDE3NTY0YzcxMWJjYmQ1NzY4MGEwZGZkMDBmMmE1ZDA5OWRiMB4XDTIyMDUx
MjA2MzkwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmZmNThhMDVkOTgw
MDczZjY4OTJhNGQ3Mjk1NDA0ZWMxOTQ3ZjBhNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALfOajI1C+FRR8/JvdHpM3wR6w4QHSTKEdqqGctcIj4li9rk
uBHVCg/Q2k0T9k957yvmKp4T05g4YQEfBfEwSPJ9YJ7aBRpTCJCwxjmA5+XB+4Hz
j/tW7V9Hy2gg0RXpMdQg4RJbPRvpw0xibUeRyX8SJh4ULnLukX2I6MaTh21jI0wl
CDm/QTmhqn2cNunZkds0k3YzZLtZgQNaIuIWZyNjSiJFWEhF+CAoN7BS1VthyP6D
gte5M3ABxhm3KeYuAn2L79VeqUegj3eVTdWLaIFSeUNSR3RLxivq15AkdFSnAUB6
4YHbVHszc4/wGz6Ti1QIR1wVzW6bda0XkQCUoKcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQv9YoF2YAHP2iSpNcpVATsGUfwpDAfBgNVHSMEGDAWgBTXRwF1ZMcRvL1X
aAoN/QDypdCZ2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEwY0JkV1RIRWJ5OVYyZ0tEZjBBOHFYUW1kcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvYmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8x
L0xfV0tCZG1BQno5b2txVFhLVlFFN0JsSDhLUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
YmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8xLzEwY0JkV1RIRWJ5
OVYyZ0tEZjBBOHFYUW1kcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcKjWDANBgkqhkiG9w0BAQsFAAOC
AQEAQ0T8QI3aqZFrciXLEZjIYlLvhi1AhvdcOlHRxvPiK+BF/t45XPHDK2vP5OK4
ZJ1KP7m80nEVqcL0pr37O4KnEQ8KiNdZOYXTXlnWG2scEqhQCN94Fz+X4NPnCBA3
zp2p8eV2ouXCCiknh2wary0GkomX4lfLXGiawzwFlrnnakpzII9N6lxOTS3dwtXC
CUwFmEcps+0dMqIYtrX7KL1lg4gg8kT05cwa59i+Ikrlw09quBl/Ml4Uo6+k6Sdh
6zcEOWKuwtZOpXN/GQUzGk14WP2ksJIJyL88vNmti96U/RpGrOQEVY3q/wB2mhZ5
ueKVn1qVb29PbdsMK7mDHvxMKA==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:54 2025 by rpki-client