Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/WdT_X09qFktB-WO3iUxJ9MDJkiU.roa
File: WdT_X09qFktB-WO3iUxJ9MDJkiU.roa (raw, json)
Hash identifier: 3uyV1+58ue/bT4g4I07kOjKSHYDsHGWeTAoFLD2rHjc=
Subject key identifier: 59:D4:FF:5F:4F:6A:16:4B:41:F9:63:B7:89:4C:49:F4:C0:C9:92:25
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 01888A0263F37DA74297EB12F1542FE0B7DF
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/WdT_X09qFktB-WO3iUxJ9MDJkiU.roa
Signing time: Mon 05 Jun 2023 05:23:12 +0000
ROA not before: Mon 05 Jun 2023 05:23:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47975
IP address blocks: 89.249.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8a:02:63:f3:7d:a7:42:97:eb:12:f1:54:2f:e0:b7:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Jun 5 05:23:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59d4ff5f4f6a164b41f963b7894c49f4c0c99225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:31:8b:8c:be:dc:2f:1a:64:79:0f:ac:21:22:
1e:92:7f:23:a2:ab:d2:5d:8d:2e:17:2b:28:c7:b2:
fd:a8:18:4a:47:b4:d6:6b:6b:df:ed:e6:e0:d4:32:
ad:cc:bc:40:27:95:05:5f:a9:20:04:5d:eb:57:00:
3a:a4:66:de:f8:32:a1:d4:5f:fb:62:cc:64:ef:06:
0a:ae:1f:c5:ec:51:df:38:aa:c1:cf:fc:c3:83:3b:
8f:0e:56:46:ab:9f:0a:99:c5:6e:64:50:3b:f6:16:
43:25:88:dc:50:4b:94:10:86:b6:cd:8d:3a:59:df:
b5:5b:a2:a6:e4:df:a9:c8:fa:67:f1:d8:9e:75:8b:
cb:ef:9d:68:5a:44:59:9b:b0:ae:4e:f7:0d:a3:75:
fa:c3:0e:05:05:20:78:3d:19:fc:a7:45:b7:11:e7:
8a:74:f1:e3:2a:a1:6b:db:36:32:8e:85:51:ab:43:
42:85:56:08:4c:08:9f:78:6d:4d:95:96:b2:09:04:
cc:09:52:73:9e:76:ef:ba:04:f0:4d:07:99:c6:d6:
2a:f7:9b:90:b8:b3:75:ec:ed:38:ff:c9:3b:30:bb:
f8:90:c9:58:4c:b2:db:aa:a1:d9:10:fb:01:f2:69:
37:4f:e6:71:66:e7:bd:87:8d:4e:d0:22:8f:a1:3f:
8e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D4:FF:5F:4F:6A:16:4B:41:F9:63:B7:89:4C:49:F4:C0:C9:92:25
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/WdT_X09qFktB-WO3iUxJ9MDJkiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.192.0/20
Signature Algorithm: sha256WithRSAEncryption
40:6d:92:9d:8e:11:89:c8:cf:7e:22:30:85:60:24:2d:03:dc:
ff:60:0b:d6:af:bb:15:ac:d2:33:57:b8:79:ae:22:d9:eb:c8:
58:aa:3f:ab:db:bb:ee:8c:57:91:b3:ab:7b:9b:e1:bc:d4:b6:
be:63:42:fb:a5:76:b7:15:ba:69:04:a3:b3:a7:f8:29:10:ed:
de:4b:50:01:c0:a8:5b:fb:ad:85:50:1a:f2:66:03:26:b5:e9:
51:c0:ff:61:6a:55:5f:00:ff:51:eb:16:aa:b0:3c:ce:b8:b7:
4f:9e:50:37:4b:aa:04:cf:b1:1f:a1:f8:25:06:92:38:c0:15:
cd:62:41:42:13:cc:f9:3a:bf:4a:e8:01:6a:4a:2d:74:ba:fb:
24:fb:35:ee:b8:31:97:f9:43:af:98:22:eb:fc:40:dc:9e:13:
38:71:f1:6c:8f:2d:d9:4e:23:c3:ef:2b:39:11:73:11:3f:2a:
0d:4e:33:26:d5:d4:6b:2f:c0:f3:11:d5:d2:9b:18:92:9d:63:
4b:d2:e8:9b:28:32:55:17:35:5f:d2:0e:a2:fa:3d:fd:62:a4:
17:ea:fa:08:0f:f2:de:47:fb:24:c1:0c:d7:55:ce:a0:c4:23:
b7:39:1e:c0:7e:1f:db:29:65:33:45:36:2e:36:e6:8e:4b:42:
45:5b:7a:6a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYiKAmPzfadCl+sS8VQv4LffMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkNzIyZTQ1MTNhMzk2NzhkOGFiMjNiMmQ2NDk3NzUzNDA1
MThjYjkwHhcNMjMwNjA1MDUyMzEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OWQ0ZmY1ZjRmNmExNjRiNDFmOTYzYjc4OTRjNDlmNGMwYzk5MjI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTGLjL7cLxpkeQ+sISIekn8joqvS
XY0uFysox7L9qBhKR7TWa2vf7ebg1DKtzLxAJ5UFX6kgBF3rVwA6pGbe+DKh1F/7
Ysxk7wYKrh/F7FHfOKrBz/zDgzuPDlZGq58KmcVuZFA79hZDJYjcUEuUEIa2zY06
Wd+1W6Km5N+pyPpn8diedYvL751oWkRZm7CuTvcNo3X6ww4FBSB4PRn8p0W3EeeK
dPHjKqFr2zYyjoVRq0NChVYITAifeG1NlZayCQTMCVJznnbvugTwTQeZxtYq95uQ
uLN17O04/8k7MLv4kMlYTLLbqqHZEPsB8mk3T+ZxZue9h41O0CKPoT+O6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFnU/19PahZLQfljt4lMSfTAyZIlMB8GA1UdIwQY
MBaAFA1yLkUTo5Z42KsjstZJd1NAUYy5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFhJdVJST2psbmpZcXlPeTFrbDNVMEJSakxrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8xYzA4NGMtOTgyZC00MDk4LWFmNDIt
MzQyNWIxMjVlYWE3LzEvV2RUX1gwOXFGa3RCLVdPM2lVeEo5TURKa2lVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8xYzA4NGMtOTgyZC00MDk4LWFmNDItMzQyNWIxMjVlYWE3
LzEvRFhJdVJST2psbmpZcXlPeTFrbDNVMEJSakxrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEWfnAMA0G
CSqGSIb3DQEBCwUAA4IBAQBAbZKdjhGJyM9+IjCFYCQtA9z/YAvWr7sVrNIzV7h5
riLZ68hYqj+r27vujFeRs6t7m+G81La+Y0L7pXa3FbppBKOzp/gpEO3eS1ABwKhb
+62FUBryZgMmtelRwP9halVfAP9R6xaqsDzOuLdPnlA3S6oEz7EfofglBpI4wBXN
YkFCE8z5Or9K6AFqSi10uvsk+zXuuDGX+UOvmCLr/EDcnhM4cfFsjy3ZTiPD7ys5
EXMRPyoNTjMm1dRrL8DzEdXSmxiSnWNL0uibKDJVFzVf0g6i+j39YqQX6voID/Le
R/skwQzXVc6gxCO3OR7Afh/bKWUzRTYuNuaOS0JFW3pq
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:55 2025 by rpki-client