Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Wp7AnXQTYxh9yJwAwoW62_zdFTE.roa
File: Wp7AnXQTYxh9yJwAwoW62_zdFTE.roa (raw, json)
Hash identifier: U0F1ZJdYGMjUdWiws+y7vb17ldlJH+ZaaDW4Ro4SwkM=
Subject key identifier: 5A:9E:C0:9D:74:13:63:18:7D:C8:9C:00:C2:85:BA:DB:FC:DD:15:31
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0E1EE17B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Wp7AnXQTYxh9yJwAwoW62_zdFTE.roa
Signing time: Sat 01 Jan 2022 01:58:18 +0000
ROA not before: Sat 01 Jan 2022 01:58:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 192.124.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 236904827 (0xe1ee17b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 01:58:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a9ec09d741363187dc89c00c285badbfcdd1531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9f:25:3c:cf:b7:a0:1d:ad:d2:58:31:c4:49:
8b:d8:75:0c:5a:1e:fe:98:08:ac:10:b3:d8:fa:e1:
de:98:54:c5:49:7c:32:0f:8f:8c:fd:90:d3:a8:ad:
b6:0e:41:f3:13:e9:f0:68:54:79:99:aa:b8:94:5a:
fe:ca:59:b8:06:cb:32:2d:66:f6:af:87:93:08:49:
d6:21:eb:42:7b:ac:d7:ac:ed:3e:fa:a2:5e:83:e0:
ac:6c:f6:e8:a9:7a:ec:a7:54:f8:12:54:19:40:0d:
c3:9b:51:df:db:ec:61:5c:57:f8:60:0c:23:0d:21:
5e:d7:51:a6:a7:c6:ff:64:ac:c4:03:b1:a4:03:84:
67:d4:08:6d:d4:76:dd:fb:0b:d0:84:03:af:a6:06:
ee:96:7e:fd:bf:6a:2e:c2:2c:2d:77:91:35:18:9b:
aa:50:fa:30:8b:52:64:a1:00:b0:c7:98:07:e0:38:
79:cb:ec:63:88:23:15:2f:5e:1c:d5:de:5d:65:1b:
ac:47:64:0e:a2:f8:4c:06:f1:a7:d3:bf:fe:cb:46:
df:70:fd:f4:08:7b:cc:00:9e:79:50:36:f2:bc:bc:
c5:6d:4f:fd:34:56:22:2a:b5:fe:df:17:85:d4:b3:
ea:ec:62:76:71:4c:57:48:73:91:bd:25:a6:e4:cf:
ac:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:9E:C0:9D:74:13:63:18:7D:C8:9C:00:C2:85:BA:DB:FC:DD:15:31
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Wp7AnXQTYxh9yJwAwoW62_zdFTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.177.0/24
Signature Algorithm: sha256WithRSAEncryption
33:bd:04:42:d7:11:55:a9:50:3e:12:b2:22:73:d2:23:79:93:
ad:6b:7b:c0:89:ce:4e:f8:55:8a:9e:3a:67:71:4b:da:c9:65:
e5:df:f4:9e:71:c8:16:73:8a:f2:5b:e5:b3:63:22:b0:24:82:
11:08:af:ad:98:18:70:dc:08:67:0d:48:eb:6b:92:23:0c:1b:
8b:b1:94:26:bb:17:1b:c4:f1:e4:8d:15:95:c6:5f:a8:73:22:
b4:5e:1b:e9:88:2c:07:59:24:28:98:0f:ea:00:40:22:9d:c3:
88:2d:af:bc:de:d8:c8:66:9e:98:d8:00:94:5b:08:27:7c:bd:
16:74:64:b0:5e:bb:f0:32:8c:3a:82:ce:4b:75:a6:34:d8:a2:
96:29:49:b7:c1:10:4a:25:79:d5:fb:97:88:a4:0f:c9:8d:9d:
2b:a0:32:ef:6c:5b:81:5e:5f:ac:5d:25:5c:91:9f:2d:7e:83:
f8:61:fe:b9:27:37:d4:d8:13:b5:5f:6b:c4:5a:ad:24:65:97:
bf:a2:7e:6e:df:4d:c0:57:9b:c1:ea:6b:fe:46:56:4d:f4:2e:
72:10:df:b0:17:d8:3c:f3:6d:1e:ac:e2:ac:cc:93:3b:c9:30:
aa:36:b8:96:8b:70:97:fa:76:78:f2:77:dc:30:10:09:e4:68:
36:cc:98:2b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDh7hezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NTY5MGY1ZTMyZDVjODZhZjFlMTM0OWRmZDRlOGNlZWI3MGUxYWM3MB4XDTIyMDEw
MTAxNTgxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWE5ZWMwOWQ3NDEz
NjMxODdkYzg5YzAwYzI4NWJhZGJmY2RkMTUzMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL6fJTzPt6AdrdJYMcRJi9h1DFoe/pgIrBCz2Prh3phUxUl8
Mg+PjP2Q06ittg5B8xPp8GhUeZmquJRa/spZuAbLMi1m9q+HkwhJ1iHrQnus16zt
PvqiXoPgrGz26Kl67KdU+BJUGUANw5tR39vsYVxX+GAMIw0hXtdRpqfG/2SsxAOx
pAOEZ9QIbdR23fsL0IQDr6YG7pZ+/b9qLsIsLXeRNRibqlD6MItSZKEAsMeYB+A4
ecvsY4gjFS9eHNXeXWUbrEdkDqL4TAbxp9O//stG33D99Ah7zACeeVA28ry8xW1P
/TRWIiq1/t8XhdSz6uxidnFMV0hzkb0lpuTPrJUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRansCddBNjGH3InADChbrb/N0VMTAfBgNVHSMEGDAWgBQ1aQ9eMtXIavHh
NJ39Tozutw4axzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05Xa1BYakxWeUdyeDRUU2RfVTZNN3JjT0dzYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDAvZTE0NDdhLThmMTgtNGE4MC1hNDIyLTVhNDI0MjhmMTE0My8x
L1dwN0FuWFFUWXhoOXlKd0F3b1c2Ml96ZEZURS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDAv
ZTE0NDdhLThmMTgtNGE4MC1hNDIyLTVhNDI0MjhmMTE0My8xL05Xa1BYakxWeUdy
eDRUU2RfVTZNN3JjT0dzYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMB8sTANBgkqhkiG9w0BAQsFAAOC
AQEAM70EQtcRValQPhKyInPSI3mTrWt7wInOTvhVip46Z3FL2sll5d/0nnHIFnOK
8lvls2MisCSCEQivrZgYcNwIZw1I62uSIwwbi7GUJrsXG8Tx5I0VlcZfqHMitF4b
6YgsB1kkKJgP6gBAIp3DiC2vvN7YyGaemNgAlFsIJ3y9FnRksF678DKMOoLOS3Wm
NNiililJt8EQSiV51fuXiKQPyY2dK6Ay72xbgV5frF0lXJGfLX6D+GH+uSc31NgT
tV9rxFqtJGWXv6J+bt9NwFebwepr/kZWTfQuchDfsBfYPPNtHqzirMyTO8kwqja4
lotwl/p2ePJ33DAQCeRoNsyYKw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:00 2023 by rpki-client on console-ams.rpki-client.org