Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/67e755-3c54-45db-89b5-df31745cc229/1/WsaCW9xVs5_9ypQDJ4VxaRQIlbY.roa
File: WsaCW9xVs5_9ypQDJ4VxaRQIlbY.roa (raw, json)
Hash identifier: 51mXAIk3rZ0loB/fkQJGafuQQtXK1FykcQt57xNXhEc=
Subject key identifier: 5A:C6:82:5B:DC:55:B3:9F:FD:CA:94:03:27:85:71:69:14:08:95:B6
Certificate issuer: /CN=40ec5d82a8eb5d98ce76e61dafe517661fc4e675
Certificate serial: 346F2B7B
Authority key identifier: 40:EC:5D:82:A8:EB:5D:98:CE:76:E6:1D:AF:E5:17:66:1F:C4:E6:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOxdgqjrXZjOduYdr-UXZh_E5nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/67e755-3c54-45db-89b5-df31745cc229/1/WsaCW9xVs5_9ypQDJ4VxaRQIlbY.roa
Signing time: Sat 01 Jan 2022 00:55:07 +0000
ROA not before: Sat 01 Jan 2022 00:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198436
IP address blocks: 37.72.54.0/24 maxlen: 24
37.72.55.0/24 maxlen: 24
37.72.56.0/24 maxlen: 24
37.72.57.0/24 maxlen: 24
37.72.58.0/24 maxlen: 24
37.72.52.0/24 maxlen: 24
37.72.53.0/24 maxlen: 24
37.72.61.0/24 maxlen: 24
37.72.62.0/24 maxlen: 24
37.72.63.0/24 maxlen: 24
37.72.59.0/24 maxlen: 24
37.72.60.0/24 maxlen: 24
37.72.48.0/24 maxlen: 24
37.72.49.0/24 maxlen: 24
37.72.50.0/24 maxlen: 24
37.72.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 879700859 (0x346f2b7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ec5d82a8eb5d98ce76e61dafe517661fc4e675
Validity
Not Before: Jan 1 00:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ac6825bdc55b39ffdca940327857169140895b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2a:70:61:67:f1:f9:06:35:b9:b9:62:ed:ec:
49:85:44:65:33:4b:ce:85:ab:64:c4:01:e1:d4:9a:
4f:26:1b:e2:4e:05:c1:80:fa:d7:fa:53:15:71:23:
f6:41:26:6a:09:d5:11:7e:21:73:45:6b:8a:3f:a9:
d8:73:c3:07:0c:0e:98:47:07:50:64:6a:69:40:db:
8a:92:0b:c8:0a:f8:c4:07:56:e9:38:c1:b4:2a:e7:
b0:f7:9f:4c:fc:87:e5:0a:80:e0:d7:c2:3d:20:cd:
db:82:51:8c:b6:bf:59:90:e8:db:53:62:b3:b6:5d:
79:02:5b:6a:2d:f3:37:70:62:be:20:97:a5:48:b5:
5d:5e:c5:35:6e:8b:3a:7f:78:c6:e3:d3:4a:9b:b7:
b3:0a:db:93:95:6e:98:8a:c2:f7:9e:ae:93:48:74:
69:cf:8f:a4:6f:ea:c5:95:5b:88:6a:c0:f7:39:95:
31:6e:9f:8f:54:27:4a:f6:8a:a1:87:7a:f1:df:bd:
77:7a:af:2f:ee:7e:7d:04:e9:91:03:dc:ee:ef:a3:
e8:e6:2c:5d:52:4e:3f:5b:ff:b3:bf:1c:77:66:ed:
c0:5d:4a:25:5c:f8:be:43:f0:b3:f1:6f:ee:22:6c:
cd:2c:57:37:2d:6f:ed:d4:4d:ce:07:16:b7:76:2b:
00:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C6:82:5B:DC:55:B3:9F:FD:CA:94:03:27:85:71:69:14:08:95:B6
X509v3 Authority Key Identifier:
keyid:40:EC:5D:82:A8:EB:5D:98:CE:76:E6:1D:AF:E5:17:66:1F:C4:E6:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOxdgqjrXZjOduYdr-UXZh_E5nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/67e755-3c54-45db-89b5-df31745cc229/1/WsaCW9xVs5_9ypQDJ4VxaRQIlbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/67e755-3c54-45db-89b5-df31745cc229/1/QOxdgqjrXZjOduYdr-UXZh_E5nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.48.0/20
Signature Algorithm: sha256WithRSAEncryption
93:6b:c4:e4:23:f7:e8:81:cb:55:b5:33:7e:e0:7e:09:32:5e:
e9:6d:c8:b7:b9:0c:53:0f:67:c9:6d:ab:b6:1f:32:16:d7:fa:
b6:3f:25:c1:d7:11:74:8d:66:b1:02:ea:d6:68:c4:ad:62:64:
73:45:af:bf:f9:2a:a1:8e:59:73:78:5e:f9:75:c3:45:53:c3:
bf:b4:92:43:d9:74:f8:53:ce:49:b3:71:b7:3d:ca:c8:ff:35:
7a:f1:63:cc:5f:8f:bb:da:a5:7c:b1:28:8e:4f:03:90:2c:18:
b7:1a:79:30:8a:e2:a6:b5:c3:e7:52:73:a5:e6:09:08:42:20:
38:8d:56:8a:08:5e:37:55:39:70:c1:78:ae:4b:1a:a1:ba:6a:
67:b1:1b:f6:d7:a0:4d:ff:5b:ba:fa:03:19:89:9a:0b:48:cb:
17:e0:c1:53:4a:15:41:97:85:2f:4c:57:ea:e1:e9:72:9f:9f:
b4:a9:0e:9b:e3:ea:bb:19:af:1c:ab:36:23:c9:84:38:db:2d:
23:64:d1:c7:b4:40:8a:3e:8c:7d:23:fc:a2:96:5f:f9:97:9a:
10:bb:01:7f:6b:8c:78:6d:a3:fd:2c:98:c2:8f:aa:3a:32:3c:
cd:a2:15:92:4a:43:d1:48:61:a6:c6:f7:66:05:45:0e:5c:05:
f2:20:f7:f2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENG8rezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MGVjNWQ4MmE4ZWI1ZDk4Y2U3NmU2MWRhZmU1MTc2NjFmYzRlNjc1MB4XDTIyMDEw
MTAwNTUwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWFjNjgyNWJkYzU1
YjM5ZmZkY2E5NDAzMjc4NTcxNjkxNDA4OTViNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALAqcGFn8fkGNbm5Yu3sSYVEZTNLzoWrZMQB4dSaTyYb4k4F
wYD61/pTFXEj9kEmagnVEX4hc0Vrij+p2HPDBwwOmEcHUGRqaUDbipILyAr4xAdW
6TjBtCrnsPefTPyH5QqA4NfCPSDN24JRjLa/WZDo21Nis7ZdeQJbai3zN3BiviCX
pUi1XV7FNW6LOn94xuPTSpu3swrbk5VumIrC956uk0h0ac+PpG/qxZVbiGrA9zmV
MW6fj1QnSvaKoYd68d+9d3qvL+5+fQTpkQPc7u+j6OYsXVJOP1v/s78cd2btwF1K
JVz4vkPws/Fv7iJszSxXNy1v7dRNzgcWt3YrAEECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRaxoJb3FWzn/3KlAMnhXFpFAiVtjAfBgNVHSMEGDAWgBRA7F2CqOtdmM52
5h2v5RdmH8TmdTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FPeGRncWpyWFpqT2R1WWRyLVVYWmhfRTVuVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2IvNjdlNzU1LTNjNTQtNDVkYi04OWI1LWRmMzE3NDVjYzIyOS8x
L1dzYUNXOXhWczVfOXlwUURKNFZ4YVJRSWxiWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Iv
NjdlNzU1LTNjNTQtNDVkYi04OWI1LWRmMzE3NDVjYzIyOS8xL1FPeGRncWpyWFpq
T2R1WWRyLVVYWmhfRTVuVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBCVIMDANBgkqhkiG9w0BAQsFAAOC
AQEAk2vE5CP36IHLVbUzfuB+CTJe6W3It7kMUw9nyW2rth8yFtf6tj8lwdcRdI1m
sQLq1mjErWJkc0Wvv/kqoY5Zc3he+XXDRVPDv7SSQ9l0+FPOSbNxtz3KyP81evFj
zF+Pu9qlfLEojk8DkCwYtxp5MIriprXD51JzpeYJCEIgOI1WigheN1U5cMF4rksa
obpqZ7Eb9tegTf9buvoDGYmaC0jLF+DBU0oVQZeFL0xX6uHpcp+ftKkOm+Pquxmv
HKs2I8mEONstI2TRx7RAij6MfSP8opZf+ZeaELsBf2uMeG2j/SyYwo+qOjI8zaIV
kkpD0Uhhpsb3ZgVFDlwF8iD38g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:29 2024 by rpki-client on console-ams.rpki-client.org