Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/wf0lv4OcXDs2ZC6FTxWkkHmel3c.roa
File: wf0lv4OcXDs2ZC6FTxWkkHmel3c.roa (raw, json)
Hash identifier: EQYzLg/GOLIOgqPLAR7s/4RfVfn2DTDFsbZVw3mXb50=
Subject key identifier: C1:FD:25:BF:83:9C:5C:3B:36:64:2E:85:4F:15:A4:90:79:9E:97:77
Certificate issuer: /CN=d09a7f7fdd54a17ce5e12a4182eb652479f9d758
Certificate serial: 04D9024D
Authority key identifier: D0:9A:7F:7F:DD:54:A1:7C:E5:E1:2A:41:82:EB:65:24:79:F9:D7:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Jp_f91UoXzl4SpBgutlJHn511g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/wf0lv4OcXDs2ZC6FTxWkkHmel3c.roa
Signing time: Sat 01 Jan 2022 14:55:57 +0000
ROA not before: Sat 01 Jan 2022 14:55:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203734
IP address blocks: 185.69.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81330765 (0x4d9024d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d09a7f7fdd54a17ce5e12a4182eb652479f9d758
Validity
Not Before: Jan 1 14:55:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1fd25bf839c5c3b36642e854f15a490799e9777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:54:e5:d3:14:12:06:33:68:7b:83:3a:14:18:
af:7a:ab:bd:67:dd:6e:8d:3c:4f:e7:ea:44:df:7d:
42:6e:82:fc:41:43:fc:54:d0:2e:a9:3b:2f:5a:98:
6e:9c:0a:3a:6f:4e:db:84:62:36:2c:65:d2:a5:12:
b2:23:b9:ca:5b:d7:88:38:5e:53:ab:48:1d:c1:52:
b5:86:97:9a:6e:c4:4d:43:4a:41:46:63:21:e3:1c:
60:30:95:e1:4e:45:29:f2:a8:91:c2:4f:6b:99:10:
87:49:1a:b7:4b:d6:e4:1b:52:bb:29:d5:05:21:80:
7e:0c:a0:51:42:3a:82:68:e9:57:05:fa:1a:54:70:
dd:4d:5a:5f:50:48:01:0c:46:2b:c3:1e:26:b8:f0:
0c:ea:e0:e5:1e:63:a1:00:25:3d:84:bd:0e:c7:09:
1a:37:78:9d:af:61:68:a8:8b:c1:22:9b:6a:11:85:
44:b6:15:39:b5:67:10:7d:70:fa:6f:12:92:68:43:
24:85:84:c2:5a:f9:de:85:35:0e:0c:4f:bb:66:f3:
e5:6e:b1:c9:d2:20:fa:2d:71:e6:3d:4c:de:b6:20:
21:c6:16:f0:00:45:5b:3e:35:14:d5:81:0e:75:6e:
a4:c0:c7:4b:27:ed:1a:0c:30:ba:3d:0b:cc:d0:5b:
82:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:FD:25:BF:83:9C:5C:3B:36:64:2E:85:4F:15:A4:90:79:9E:97:77
X509v3 Authority Key Identifier:
keyid:D0:9A:7F:7F:DD:54:A1:7C:E5:E1:2A:41:82:EB:65:24:79:F9:D7:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Jp_f91UoXzl4SpBgutlJHn511g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/wf0lv4OcXDs2ZC6FTxWkkHmel3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/0Jp_f91UoXzl4SpBgutlJHn511g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.251.0/24
Signature Algorithm: sha256WithRSAEncryption
43:43:e0:2b:b0:9e:58:fd:08:2f:f8:fc:08:14:cc:0e:f4:73:
0d:16:fb:12:a2:57:24:2b:e0:04:e7:b8:b0:1e:0e:16:da:e3:
f2:c7:1f:02:e2:42:64:27:f9:9d:6d:31:50:89:33:8a:8f:bc:
1c:31:2f:b5:58:2e:e5:0b:8a:a1:9e:26:67:2b:5b:ed:22:b6:
e5:76:0a:3f:64:b2:e5:14:9c:a6:00:b2:f9:c9:4f:2a:90:ad:
29:a2:8a:eb:75:42:3c:f1:d9:13:e0:2c:5c:51:e2:68:01:49:
32:21:b8:74:0a:28:fa:ca:3a:c7:56:cb:d2:03:9b:da:56:8e:
55:14:9d:b2:b5:e2:15:98:aa:ca:74:4c:1a:e4:23:aa:f7:30:
fe:74:73:5c:6b:e0:b8:2f:0d:7b:3a:30:68:50:1e:d8:0a:cd:
04:59:a9:30:fa:f5:ef:34:77:ae:9f:58:f6:4c:de:35:7d:48:
32:52:d4:d4:ee:f8:af:5f:38:28:ae:29:82:df:a4:fd:34:ac:
bf:67:ca:b3:0f:20:89:d0:cb:39:e0:eb:06:c4:7c:2e:77:2b:
e6:61:26:46:14:24:0f:d0:1d:7f:00:05:1a:7e:95:0a:e9:33:
87:0a:e1:e9:29:30:43:13:c4:12:1c:f1:aa:69:86:3a:25:41:
bd:1b:b3:39
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBNkCTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MDlhN2Y3ZmRkNTRhMTdjZTVlMTJhNDE4MmViNjUyNDc5ZjlkNzU4MB4XDTIyMDEw
MTE0NTU1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzFmZDI1YmY4Mzlj
NWMzYjM2NjQyZTg1NGYxNWE0OTA3OTllOTc3NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKRU5dMUEgYzaHuDOhQYr3qrvWfdbo08T+fqRN99Qm6C/EFD
/FTQLqk7L1qYbpwKOm9O24RiNixl0qUSsiO5ylvXiDheU6tIHcFStYaXmm7ETUNK
QUZjIeMcYDCV4U5FKfKokcJPa5kQh0kat0vW5BtSuynVBSGAfgygUUI6gmjpVwX6
GlRw3U1aX1BIAQxGK8MeJrjwDOrg5R5joQAlPYS9DscJGjd4na9haKiLwSKbahGF
RLYVObVnEH1w+m8SkmhDJIWEwlr53oU1DgxPu2bz5W6xydIg+i1x5j1M3rYgIcYW
8ABFWz41FNWBDnVupMDHSyftGgwwuj0LzNBbghECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTB/SW/g5xcOzZkLoVPFaSQeZ6XdzAfBgNVHSMEGDAWgBTQmn9/3VShfOXh
KkGC62UkefnXWDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBKcF9mOTFVb1h6bDRTcEJndXRsSkhuNTExZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDIvYjNkOTdlLTVjYzItNDY2OS1iMzc4LTU4NzVhNDQ4OWRiYS8x
L3dmMGx2NE9jWERzMlpDNkZUeFdra0htZWwzYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDIv
YjNkOTdlLTVjYzItNDY2OS1iMzc4LTU4NzVhNDQ4OWRiYS8xLzBKcF9mOTFVb1h6
bDRTcEJndXRsSkhuNTExZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlF+zANBgkqhkiG9w0BAQsFAAOC
AQEAQ0PgK7CeWP0IL/j8CBTMDvRzDRb7EqJXJCvgBOe4sB4OFtrj8scfAuJCZCf5
nW0xUIkzio+8HDEvtVgu5QuKoZ4mZytb7SK25XYKP2Sy5RScpgCy+clPKpCtKaKK
63VCPPHZE+AsXFHiaAFJMiG4dAoo+so6x1bL0gOb2laOVRSdsrXiFZiqynRMGuQj
qvcw/nRzXGvguC8NezowaFAe2ArNBFmpMPr17zR3rp9Y9kzeNX1IMlLU1O74r184
KK4pgt+k/TSsv2fKsw8gidDLOeDrBsR8Lncr5mEmRhQkD9AdfwAFGn6VCukzhwrh
6SkwQxPEEhzxqmmGOiVBvRuzOQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:26 2023 by rpki-client on console-ams.rpki-client.org