Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/62631b-fdf3-413f-8f22-ece088f01827/1/WhwNH-kC391TgNK1HTazJ94ninI.roa
File: WhwNH-kC391TgNK1HTazJ94ninI.roa (raw, json)
Hash identifier: 3/YnluZbYlLBDi48k/rzhrmQaTrkn5OEEbPELoKZxKg=
Subject key identifier: 5A:1C:0D:1F:E9:02:DF:DD:53:80:D2:B5:1D:36:B3:27:DE:27:8A:72
Certificate issuer: /CN=95380935e7e8a21ec32b65a7fc4ed7d468278521
Certificate serial: 05BD7AF9
Authority key identifier: 95:38:09:35:E7:E8:A2:1E:C3:2B:65:A7:FC:4E:D7:D4:68:27:85:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lTgJNefooh7DK2Wn_E7X1GgnhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/62631b-fdf3-413f-8f22-ece088f01827/1/WhwNH-kC391TgNK1HTazJ94ninI.roa
Signing time: Sat 01 Jan 2022 00:52:49 +0000
ROA not before: Sat 01 Jan 2022 00:52:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33915
IP address blocks: 148.200.0.0/21 maxlen: 21
148.200.14.0/24 maxlen: 24
148.200.240.0/21 maxlen: 21
148.200.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96303865 (0x5bd7af9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95380935e7e8a21ec32b65a7fc4ed7d468278521
Validity
Not Before: Jan 1 00:52:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a1c0d1fe902dfdd5380d2b51d36b327de278a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:71:4e:ff:a2:c1:b6:1f:35:92:97:c1:f9:58:
cd:ef:b5:9a:2d:6c:05:9e:1b:70:5b:7c:b1:10:f9:
48:6c:ad:75:ea:f5:c5:b6:0b:c0:7c:4f:12:39:bc:
21:fb:0d:d6:3b:9c:d3:7e:3f:2e:f9:14:0a:97:3b:
42:a9:a4:e1:b5:b9:4b:fc:6a:a7:a8:07:ed:5a:4b:
51:36:a8:04:56:db:6c:c1:e7:3a:11:37:14:ba:f7:
ba:4c:98:e5:fc:b7:b1:a8:94:6f:16:02:a2:36:87:
8d:34:90:08:2b:b2:8d:c5:ed:ac:63:d5:90:0d:24:
1d:f1:87:68:0c:10:79:f1:b9:fb:50:95:d9:98:a9:
86:7c:02:35:fb:3d:7b:58:50:52:4c:11:94:78:32:
da:c1:72:cd:01:29:84:b8:5f:b9:b0:fb:9f:07:83:
8d:49:0b:d7:73:a7:69:0a:1d:5f:51:9f:6d:a6:e5:
fb:bb:50:d9:80:cc:5c:f9:ec:37:bf:29:48:51:0d:
86:bd:26:37:1c:57:f1:82:8d:a7:4d:19:53:19:6c:
97:39:46:7d:a4:df:85:96:51:fe:30:7c:b1:01:ea:
0e:c1:67:48:02:ed:d9:23:0a:1c:21:07:bc:32:8c:
10:5c:09:a8:84:aa:1b:28:a3:3f:1b:fb:d2:f0:2c:
e7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:1C:0D:1F:E9:02:DF:DD:53:80:D2:B5:1D:36:B3:27:DE:27:8A:72
X509v3 Authority Key Identifier:
keyid:95:38:09:35:E7:E8:A2:1E:C3:2B:65:A7:FC:4E:D7:D4:68:27:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lTgJNefooh7DK2Wn_E7X1GgnhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/62631b-fdf3-413f-8f22-ece088f01827/1/WhwNH-kC391TgNK1HTazJ94ninI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/62631b-fdf3-413f-8f22-ece088f01827/1/lTgJNefooh7DK2Wn_E7X1GgnhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.200.0.0/21
148.200.14.0/24
148.200.140.0/22
148.200.240.0/21
Signature Algorithm: sha256WithRSAEncryption
aa:f1:0d:1b:67:a1:46:77:fe:fa:85:18:b6:c0:8c:29:3c:37:
b4:2e:6e:83:17:c7:9a:e0:c5:5e:c5:f0:9d:5d:4d:df:82:cd:
f1:0a:a2:42:e6:c5:e1:0d:33:b1:06:fb:8d:70:02:6e:ce:1a:
6f:1c:62:c2:b7:32:fd:de:3e:f2:4e:ef:a8:9a:6c:5a:7c:a4:
24:c0:b6:33:b0:d3:da:f3:98:09:da:eb:f2:cd:c3:07:08:01:
f1:63:71:52:0f:42:1e:f6:9d:b2:9d:a1:0e:81:0e:35:0f:14:
6e:b8:a7:27:73:09:a6:b3:a2:08:a8:11:7a:89:c2:e4:ca:1d:
46:c5:99:6d:06:75:1a:c8:64:84:35:e3:d9:83:8c:a8:ae:e8:
56:87:99:25:58:66:0d:04:b3:fe:ea:6e:92:d6:3b:8c:63:70:
16:02:94:23:ee:0b:3f:b9:50:1c:8e:dd:f5:59:f3:69:02:6a:
85:6f:34:e8:f8:5c:d9:d9:b3:ac:ce:36:4c:6d:27:03:70:0f:
00:09:fc:eb:0f:38:ff:90:be:77:53:d0:e6:a9:6e:b4:7d:25:
37:35:af:c6:c0:c5:e7:98:41:04:82:8c:34:e7:23:1a:2f:cd:
5f:74:4d:ed:57:69:d6:eb:0b:10:b8:2a:af:bb:3d:84:36:76:
e1:45:3e:b8
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIEBb16+TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NTM4MDkzNWU3ZThhMjFlYzMyYjY1YTdmYzRlZDdkNDY4Mjc4NTIxMB4XDTIyMDEw
MTAwNTI0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWExYzBkMWZlOTAy
ZGZkZDUzODBkMmI1MWQzNmIzMjdkZTI3OGE3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMNxTv+iwbYfNZKXwflYze+1mi1sBZ4bcFt8sRD5SGytder1
xbYLwHxPEjm8IfsN1juc034/LvkUCpc7Qqmk4bW5S/xqp6gH7VpLUTaoBFbbbMHn
OhE3FLr3ukyY5fy3saiUbxYCojaHjTSQCCuyjcXtrGPVkA0kHfGHaAwQefG5+1CV
2ZiphnwCNfs9e1hQUkwRlHgy2sFyzQEphLhfubD7nweDjUkL13OnaQodX1Gfbabl
+7tQ2YDMXPnsN78pSFENhr0mNxxX8YKNp00ZUxlslzlGfaTfhZZR/jB8sQHqDsFn
SALt2SMKHCEHvDKMEFwJqISqGyijPxv70vAs5+8CAwEAAaOCAhswggIXMB0GA1Ud
DgQWBBRaHA0f6QLf3VOA0rUdNrMn3ieKcjAfBgNVHSMEGDAWgBSVOAk15+iiHsMr
Zaf8TtfUaCeFITAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xUZ0pOZWZvb2g3REsyV25fRTdYMUdnbmhTRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvNjI2MzFiLWZkZjMtNDEzZi04ZjIyLWVjZTA4OGYwMTgyNy8x
L1dod05ILWtDMzkxVGdOSzFIVGF6Sjk0bmluSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
NjI2MzFiLWZkZjMtNDEzZi04ZjIyLWVjZTA4OGYwMTgyNy8xL2xUZ0pOZWZvb2g3
REsyV25fRTdYMUdnbmhTRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAx
BggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEA5TIAAMEAJTIDgMEApTIjAMEA5TI
8DANBgkqhkiG9w0BAQsFAAOCAQEAqvENG2ehRnf++oUYtsCMKTw3tC5ugxfHmuDF
XsXwnV1N34LN8QqiQubF4Q0zsQb7jXACbs4abxxiwrcy/d4+8k7vqJpsWnykJMC2
M7DT2vOYCdrr8s3DBwgB8WNxUg9CHvadsp2hDoEONQ8UbrinJ3MJprOiCKgReonC
5ModRsWZbQZ1GshkhDXj2YOMqK7oVoeZJVhmDQSz/upuktY7jGNwFgKUI+4LP7lQ
HI7d9VnzaQJqhW806Phc2dmzrM42TG0nA3APAAn86w84/5C+d1PQ5qlutH0lNzWv
xsDF55hBBIKMNOcjGi/NX3RN7Vdp1usLELgqr7s9hDZ24UU+uA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:34 2024 by rpki-client on console-fra.rpki-client.org