Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/w0KzI1pZ0FtKMy0q1KRE-YfC_oY.roa
File: w0KzI1pZ0FtKMy0q1KRE-YfC_oY.roa (raw, json)
Hash identifier: NOIsi0t6As5GURrhBi153A9vjDr4WKS7+I+Hr2uLAbk=
Subject key identifier: C3:42:B3:23:5A:59:D0:5B:4A:33:2D:2A:D4:A4:44:F9:87:C2:FE:86
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 3895782A
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/w0KzI1pZ0FtKMy0q1KRE-YfC_oY.roa
Signing time: Sat 01 Jan 2022 05:54:28 +0000
ROA not before: Sat 01 Jan 2022 05:54:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207485
IP address blocks: 159.148.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 949319722 (0x3895782a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c342b3235a59d05b4a332d2ad4a444f987c2fe86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3f:52:69:33:1c:3d:c9:39:3d:a9:30:93:f4:
e2:84:6a:82:6b:4f:db:5c:3f:a1:5a:4d:e3:14:15:
a4:42:4e:2b:88:4d:7d:6f:2e:45:31:42:98:d1:fc:
71:63:d7:62:11:1a:ed:66:e2:5a:d7:0c:fa:ba:24:
c5:ab:6e:92:c5:9e:7b:d9:2f:bb:71:3a:1c:34:d2:
0c:0f:99:70:9a:1c:c7:2b:71:1b:7f:c5:a0:2c:35:
1a:24:5e:36:ac:bc:c9:ab:b8:b0:c6:12:f4:16:66:
c8:43:4d:ed:f0:3a:e0:b4:d8:d9:76:fc:18:d7:4b:
c5:85:6f:a9:90:5a:4b:dc:30:6e:f7:51:7e:85:f6:
66:ec:01:e0:e9:62:7a:64:2b:50:9c:fb:cf:c6:50:
7d:2f:cd:b5:01:ba:98:cd:e5:3a:f0:fc:04:25:a8:
b9:db:a2:b6:31:08:7d:61:d9:31:99:24:98:9b:b8:
fa:ff:d9:2e:32:6f:5f:17:44:d0:f4:ab:cf:2f:ff:
f7:c3:85:08:04:20:7b:bc:0b:ca:e0:20:61:19:28:
1b:cc:0e:a1:2e:18:ef:97:23:83:6f:36:21:e6:6f:
b1:26:81:f4:4d:82:78:16:c3:4d:83:b5:bb:44:12:
88:b7:5d:a8:56:10:6b:95:6e:73:8c:9b:86:35:7f:
b7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:42:B3:23:5A:59:D0:5B:4A:33:2D:2A:D4:A4:44:F9:87:C2:FE:86
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/w0KzI1pZ0FtKMy0q1KRE-YfC_oY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.50.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:68:ae:2e:42:d7:87:3b:1c:8e:83:3e:f9:23:65:c0:53:29:
26:00:79:61:68:61:b3:ac:ce:63:1a:64:9f:4e:83:5f:47:f5:
fa:cb:2f:af:ce:43:22:b0:04:f2:8a:eb:1f:5f:b6:9f:11:68:
27:46:7b:6a:a6:25:aa:97:02:c2:7a:ed:49:36:3e:9c:f3:a3:
ff:d6:19:9f:a9:b9:81:3d:27:3e:b1:1e:1c:a3:4a:58:1b:f8:
c0:b9:71:d7:f4:cf:69:21:f3:17:8e:ab:67:15:c7:31:11:16:
ed:77:31:74:38:bc:6d:57:fd:da:e1:7a:37:a6:74:1d:be:6d:
d3:67:b3:3a:86:f6:aa:d0:b3:a7:ef:21:b1:cf:ec:13:1c:83:
0b:8e:21:a9:1e:97:69:6a:24:b4:5d:81:a0:70:c7:fa:6c:ee:
05:df:e3:39:60:da:4f:31:fe:f1:ee:bd:95:d0:38:10:9f:41:
eb:d6:45:3e:9e:44:41:c4:cf:2d:b5:c3:01:71:1e:dd:c6:7a:
e5:90:98:26:f0:1d:e8:f1:92:f2:86:2d:44:ca:32:45:95:0d:
91:76:80:67:10:1a:3d:38:24:38:18:ac:c8:7e:4d:d6:38:3d:
ff:ed:b0:17:8f:d9:a7:0e:17:31:f6:19:a2:58:23:ac:a9:85:
a3:8d:56:b7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOJV4KjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YjA5NTJjOGJhOGRhZGIxZDM0ZGU2YzZhOTM4NjRhNjA5ZmM0MWVjMB4XDTIyMDEw
MTA1NTQyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzM0MmIzMjM1YTU5
ZDA1YjRhMzMyZDJhZDRhNDQ0Zjk4N2MyZmU4NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALQ/UmkzHD3JOT2pMJP04oRqgmtP21w/oVpN4xQVpEJOK4hN
fW8uRTFCmNH8cWPXYhEa7WbiWtcM+rokxatuksWee9kvu3E6HDTSDA+ZcJocxytx
G3/FoCw1GiReNqy8yau4sMYS9BZmyENN7fA64LTY2Xb8GNdLxYVvqZBaS9wwbvdR
foX2ZuwB4OliemQrUJz7z8ZQfS/NtQG6mM3lOvD8BCWouduitjEIfWHZMZkkmJu4
+v/ZLjJvXxdE0PSrzy//98OFCAQge7wLyuAgYRkoG8wOoS4Y75cjg282IeZvsSaB
9E2CeBbDTYO1u0QSiLddqFYQa5Vuc4ybhjV/t/UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTDQrMjWlnQW0ozLSrUpET5h8L+hjAfBgNVHSMEGDAWgBSrCVLIuo2tsdNN
5sapOGSmCfxB7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3F3bFN5THFOcmJIVFRlYkdxVGhrcGduOFFldy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGUvMzU1NWZlLTEyY2QtNDAyYS1hODEwLTU1NTRkNmUxNjg2Zi8x
L3cwS3pJMXBaMEZ0S015MHExS1JFLVlmQ19vWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGUv
MzU1NWZlLTEyY2QtNDAyYS1hODEwLTU1NTRkNmUxNjg2Zi8xL3F3bFN5THFOcmJI
VFRlYkdxVGhrcGduOFFldy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ+UMjANBgkqhkiG9w0BAQsFAAOC
AQEAs2iuLkLXhzscjoM++SNlwFMpJgB5YWhhs6zOYxpkn06DX0f1+ssvr85DIrAE
8orrH1+2nxFoJ0Z7aqYlqpcCwnrtSTY+nPOj/9YZn6m5gT0nPrEeHKNKWBv4wLlx
1/TPaSHzF46rZxXHMREW7XcxdDi8bVf92uF6N6Z0Hb5t02ezOob2qtCzp+8hsc/s
ExyDC44hqR6XaWoktF2BoHDH+mzuBd/jOWDaTzH+8e69ldA4EJ9B69ZFPp5EQcTP
LbXDAXEe3cZ65ZCYJvAd6PGS8oYtRMoyRZUNkXaAZxAaPTgkOBisyH5N1jg9/+2w
F4/Zpw4XMfYZolgjrKmFo41Wtw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:38 2023 by rpki-client on console-ams.rpki-client.org