Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0187d6-8bfc-4c59-a6c4-6ad3252a1427/1/WhOsVvzc6DdLNTmKbhHp0NcnfMY.roa
File: WhOsVvzc6DdLNTmKbhHp0NcnfMY.roa (raw, json)
Hash identifier: IsydaLdLtGwyElVF2jQcy/ZyVlIwYAzL33d3cXXp/tg=
Subject key identifier: 5A:13:AC:56:FC:DC:E8:37:4B:35:39:8A:6E:11:E9:D0:D7:27:7C:C6
Certificate issuer: /CN=588cabf6f523f26e267db03b524347841aaaa465
Certificate serial: 0183893E0CAD6A88A17E3C1395D99C81A18B
Authority key identifier: 58:8C:AB:F6:F5:23:F2:6E:26:7D:B0:3B:52:43:47:84:1A:AA:A4:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIyr9vUj8m4mfbA7UkNHhBqqpGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0187d6-8bfc-4c59-a6c4-6ad3252a1427/1/WhOsVvzc6DdLNTmKbhHp0NcnfMY.roa
Signing time: Thu 29 Sep 2022 12:34:48 +0000
ROA not before: Thu 29 Sep 2022 12:34:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202916
IP address blocks: 2a04:1cc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:89:3e:0c:ad:6a:88:a1:7e:3c:13:95:d9:9c:81:a1:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=588cabf6f523f26e267db03b524347841aaaa465
Validity
Not Before: Sep 29 12:34:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a13ac56fcdce8374b35398a6e11e9d0d7277cc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c1:44:21:71:7d:7f:05:64:bf:b3:95:77:07:
cc:8c:ac:da:43:cb:6d:b0:c3:45:b2:0e:84:9c:47:
64:28:0b:34:2c:1c:62:0e:bb:73:18:8a:fc:3e:32:
b0:ed:67:9e:d0:44:77:aa:a4:87:ad:ee:3b:49:84:
ce:d7:81:7d:1d:1e:e6:f3:03:af:e9:56:06:b3:aa:
9c:51:51:56:44:cd:2a:88:86:a3:53:57:a0:8f:0e:
1b:51:36:63:13:26:da:9b:e9:f4:17:63:58:86:40:
7b:63:01:0d:15:39:3f:6c:f7:1d:09:e0:44:ab:64:
37:37:12:91:d7:9f:29:4a:8a:4f:5d:5d:18:98:15:
8a:2a:ec:75:32:d3:09:45:fb:0e:07:42:cb:dd:0a:
11:59:c1:e0:c1:1b:26:21:c4:5c:2a:be:4a:2f:3d:
87:39:a5:63:1d:39:0a:d7:fb:1b:38:bd:26:2c:dc:
3a:3f:c0:44:33:9e:b7:0c:49:3d:75:fd:48:70:d9:
97:15:5a:e5:87:d7:70:eb:b7:05:ac:30:59:40:e1:
6e:8d:4d:3d:5d:39:f0:00:3d:67:7c:00:f9:90:ae:
32:d0:e9:d8:a1:ad:eb:9c:65:8e:b7:ad:88:df:4a:
71:14:ac:84:b1:66:e7:8e:a8:91:a9:79:76:66:a3:
ef:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:13:AC:56:FC:DC:E8:37:4B:35:39:8A:6E:11:E9:D0:D7:27:7C:C6
X509v3 Authority Key Identifier:
keyid:58:8C:AB:F6:F5:23:F2:6E:26:7D:B0:3B:52:43:47:84:1A:AA:A4:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIyr9vUj8m4mfbA7UkNHhBqqpGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0187d6-8bfc-4c59-a6c4-6ad3252a1427/1/WhOsVvzc6DdLNTmKbhHp0NcnfMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0187d6-8bfc-4c59-a6c4-6ad3252a1427/1/WIyr9vUj8m4mfbA7UkNHhBqqpGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:1cc0::/32
Signature Algorithm: sha256WithRSAEncryption
d5:6a:d9:d0:b4:a6:2c:19:a5:c8:e3:3c:a1:d2:17:ac:d0:4d:
f4:70:f4:93:97:06:29:73:0f:69:40:0e:c8:9b:68:60:65:53:
00:8d:ab:ad:e4:93:d8:70:a0:d6:21:59:b3:8f:ac:6d:55:c8:
d3:b8:ab:7b:5f:8c:d5:b9:32:f2:57:f3:6e:a9:36:1b:1d:a3:
07:8b:c3:66:f1:aa:fc:c3:87:f4:da:d4:a8:63:07:88:bf:6f:
bf:88:1e:ae:43:9a:57:36:66:b0:26:66:ab:a9:0f:a5:0f:d7:
47:01:15:96:91:7f:43:aa:01:2a:ed:c8:ee:ee:3f:e4:86:d0:
43:a9:03:57:58:c9:1c:33:0f:d2:01:f3:0e:3b:40:82:38:20:
cb:a4:07:b7:42:25:0f:32:74:fe:27:ee:c1:f2:aa:a6:c5:68:
2e:1f:65:bf:6b:ce:c8:55:d3:de:24:75:b3:72:82:3c:0f:42:
af:68:81:55:c5:b9:dc:0d:e5:58:e8:54:7b:6b:f7:69:e2:a1:
00:20:0e:66:ea:7b:d2:ae:94:3a:7f:8a:7f:93:2b:c8:02:8b:
2c:ee:f9:dd:f4:77:9f:3d:8b:43:3b:99:de:32:8e:74:6a:60:
b0:d6:42:27:c9:b5:b7:bc:9b:c2:67:e5:c2:7b:3d:45:12:aa:
69:1a:8e:7e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYOJPgytaoihfjwTldmcgaGLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4OGNhYmY2ZjUyM2YyNmUyNjdkYjAzYjUyNDM0Nzg0MWFh
YWE0NjUwHhcNMjIwOTI5MTIzNDQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTEzYWM1NmZjZGNlODM3NGIzNTM5OGE2ZTExZTlkMGQ3Mjc3Y2M2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnMFEIXF9fwVkv7OVdwfMjKzaQ8tt
sMNFsg6EnEdkKAs0LBxiDrtzGIr8PjKw7Wee0ER3qqSHre47SYTO14F9HR7m8wOv
6VYGs6qcUVFWRM0qiIajU1egjw4bUTZjEybam+n0F2NYhkB7YwENFTk/bPcdCeBE
q2Q3NxKR158pSopPXV0YmBWKKux1MtMJRfsOB0LL3QoRWcHgwRsmIcRcKr5KLz2H
OaVjHTkK1/sbOL0mLNw6P8BEM563DEk9df1IcNmXFVrlh9dw67cFrDBZQOFujU09
XTnwAD1nfAD5kK4y0OnYoa3rnGWOt62I30pxFKyEsWbnjqiRqXl2ZqPvewIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFFoTrFb83Og3SzU5im4R6dDXJ3zGMB8GA1UdIwQY
MBaAFFiMq/b1I/JuJn2wO1JDR4QaqqRlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0l5cjl2VWo4bTRtZmJBN1VrTkhoQnFxcEdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8wMTg3ZDYtOGJmYy00YzU5LWE2YzQt
NmFkMzI1MmExNDI3LzEvV2hPc1Z2emM2RGRMTlRtS2JoSHAwTmNuZk1ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy8wMTg3ZDYtOGJmYy00YzU5LWE2YzQtNmFkMzI1MmExNDI3
LzEvV0l5cjl2VWo4bTRtZmJBN1VrTkhoQnFxcEdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgQcwDAN
BgkqhkiG9w0BAQsFAAOCAQEA1WrZ0LSmLBmlyOM8odIXrNBN9HD0k5cGKXMPaUAO
yJtoYGVTAI2rreST2HCg1iFZs4+sbVXI07ire1+M1bky8lfzbqk2Gx2jB4vDZvGq
/MOH9NrUqGMHiL9vv4gerkOaVzZmsCZmq6kPpQ/XRwEVlpF/Q6oBKu3I7u4/5IbQ
Q6kDV1jJHDMP0gHzDjtAgjggy6QHt0IlDzJ0/ifuwfKqpsVoLh9lv2vOyFXT3iR1
s3KCPA9Cr2iBVcW53A3lWOhUe2v3aeKhACAOZup70q6UOn+Kf5MryAKLLO753fR3
nz2LQzuZ3jKOdGpgsNZCJ8m1t7ybwmflwns9RRKqaRqOfg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:47 2024 by rpki-client on console-fra.rpki-client.org