Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/ef634b-3431-4987-9164-604ca7fe0821/1/wzTYOuIO9fYacTEmzfluKX1hn70.roa
File: wzTYOuIO9fYacTEmzfluKX1hn70.roa (raw, json)
Hash identifier: rl9/U2EZvAVbKFWCjNrUhIf57+0Iikn4FqtRSEcBts0=
Subject key identifier: C3:34:D8:3A:E2:0E:F5:F6:1A:71:31:26:CD:F9:6E:29:7D:61:9F:BD
Certificate issuer: /CN=c178233a2d3094cb7db1a9d7f02bd454ec8e349c
Certificate serial: 4DA6
Authority key identifier: C1:78:23:3A:2D:30:94:CB:7D:B1:A9:D7:F0:2B:D4:54:EC:8E:34:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wXgjOi0wlMt9sanX8CvUVOyONJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/ef634b-3431-4987-9164-604ca7fe0821/1/wzTYOuIO9fYacTEmzfluKX1hn70.roa
Signing time: Thu 21 Apr 2022 11:00:09 +0000
ROA not before: Thu 21 Apr 2022 11:00:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39016
IP address blocks: 94.154.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19878 (0x4da6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c178233a2d3094cb7db1a9d7f02bd454ec8e349c
Validity
Not Before: Apr 21 11:00:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c334d83ae20ef5f61a713126cdf96e297d619fbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:90:7b:cf:80:9a:c5:d3:b3:02:f1:b2:87:94:
db:02:dd:83:32:37:08:18:5b:6f:0f:08:4b:fa:4c:
57:e3:6a:a3:b5:3a:58:8e:2f:4e:72:ec:cf:df:fd:
51:56:d4:e8:ff:00:7d:01:3e:b3:68:78:e7:ac:1d:
89:fe:23:c1:12:2f:7d:51:ab:a3:c8:69:2c:ef:34:
af:cd:3f:b8:e6:68:3b:61:7a:3e:86:18:08:06:3e:
3e:a2:83:5a:8f:29:e9:88:c7:7e:a2:f0:7d:66:49:
1e:e2:1b:63:74:34:60:f8:09:10:b0:a3:43:1a:a1:
c7:d2:66:fb:f5:0a:9a:bb:b7:5c:0f:3f:3c:0e:9c:
9f:fd:36:76:33:de:d9:8a:b0:31:ab:b0:5f:ee:b9:
af:1d:c7:92:44:f9:67:b6:4c:72:ef:db:1e:bd:5c:
95:9f:bc:19:b7:ed:89:ea:98:5f:b3:e4:41:10:69:
9e:91:df:f6:2c:73:99:1b:a9:44:c0:bd:42:78:9f:
e4:4d:93:54:95:9f:46:27:ab:7d:4e:cf:01:e1:1d:
10:77:8b:6b:5d:9b:a6:52:53:f0:69:96:73:06:90:
26:de:3d:24:ed:57:60:9d:d6:55:88:7c:e0:95:ea:
ae:79:30:0d:16:b7:e6:a0:f6:05:31:22:22:e0:a6:
3e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:34:D8:3A:E2:0E:F5:F6:1A:71:31:26:CD:F9:6E:29:7D:61:9F:BD
X509v3 Authority Key Identifier:
keyid:C1:78:23:3A:2D:30:94:CB:7D:B1:A9:D7:F0:2B:D4:54:EC:8E:34:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wXgjOi0wlMt9sanX8CvUVOyONJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ef634b-3431-4987-9164-604ca7fe0821/1/wzTYOuIO9fYacTEmzfluKX1hn70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ef634b-3431-4987-9164-604ca7fe0821/1/wXgjOi0wlMt9sanX8CvUVOyONJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.122.0/24
Signature Algorithm: sha256WithRSAEncryption
60:c3:2b:de:91:3b:c3:04:d4:b2:09:af:9e:2d:e2:93:07:67:
7e:09:e5:ce:5f:7f:1b:d6:d7:fc:4c:02:ce:95:93:8f:14:50:
25:96:88:96:39:0b:70:df:c2:a4:96:d8:ce:89:05:10:27:59:
bc:71:c3:43:38:67:fd:14:89:7c:48:98:12:b9:3b:27:7b:32:
7e:32:14:79:ee:61:24:13:b0:22:a9:8b:93:2d:35:30:f9:64:
fe:53:31:30:e1:4b:db:84:51:76:a1:fc:e2:08:75:ba:f7:d6:
9e:65:fb:0c:01:52:ac:11:a9:56:c6:d6:e7:6a:cb:a0:8b:f8:
7f:8c:fb:f4:66:42:e0:79:38:af:93:8d:7e:da:14:eb:b2:3d:
84:30:10:64:93:51:17:29:2e:09:cc:5e:ae:1f:64:bb:51:70:
f8:2c:c4:01:22:cd:78:f1:56:df:d3:8b:c2:d7:e5:73:e1:ea:
9e:9d:1f:3a:13:23:74:b8:6d:e9:a1:78:39:fa:50:9c:ca:2c:
8f:54:9a:68:50:48:05:47:02:a8:8d:00:d3:63:71:80:ac:da:
d0:dc:a7:43:da:de:0f:85:8a:74:ac:9b:0d:50:90:4c:e2:7f:
f1:a9:59:c1:de:af:c3:c0:c9:61:6b:22:c2:1c:cd:a0:6b:ed:
3b:47:dd:45
-----BEGIN CERTIFICATE-----
MIIE7TCCA9WgAwIBAgICTaYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoYzE3
ODIzM2EyZDMwOTRjYjdkYjFhOWQ3ZjAyYmQ0NTRlYzhlMzQ5YzAeFw0yMjA0MjEx
MTAwMDlaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKGMzMzRkODNhZTIwZWY1
ZjYxYTcxMzEyNmNkZjk2ZTI5N2Q2MTlmYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUkHvPgJrF07MC8bKHlNsC3YMyNwgYW28PCEv6TFfjaqO1OliO
L05y7M/f/VFW1Oj/AH0BPrNoeOesHYn+I8ESL31Rq6PIaSzvNK/NP7jmaDthej6G
GAgGPj6ig1qPKemIx36i8H1mSR7iG2N0NGD4CRCwo0MaocfSZvv1Cpq7t1wPPzwO
nJ/9NnYz3tmKsDGrsF/uua8dx5JE+We2THLv2x69XJWfvBm37YnqmF+z5EEQaZ6R
3/Ysc5kbqUTAvUJ4n+RNk1SVn0Ynq31OzwHhHRB3i2tdm6ZSU/BplnMGkCbePSTt
V2Cd1lWIfOCV6q55MA0Wt+ag9gUxIiLgpj4rAgMBAAGjggIJMIICBTAdBgNVHQ4E
FgQUwzTYOuIO9fYacTEmzfluKX1hn70wHwYDVR0jBBgwFoAUwXgjOi0wlMt9sanX
8CvUVOyONJwwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC93
WGdqT2kwd2xNdDlzYW5YOEN2VVZPeU9OSncuY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxULzE2L2VmNjM0Yi0zNDMxLTQ5ODctOTE2NC02MDRjYTdmZTA4MjEvMS93
elRZT3VJTzlmWWFjVEVtemZsdUtYMWhuNzAucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzE2L2Vm
NjM0Yi0zNDMxLTQ5ODctOTE2NC02MDRjYTdmZTA4MjEvMS93WGdqT2kwd2xNdDlz
YW5YOEN2VVZPeU9OSncuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABemnowDQYJKoZIhvcNAQELBQADggEB
AGDDK96RO8ME1LIJr54t4pMHZ34J5c5ffxvW1/xMAs6Vk48UUCWWiJY5C3DfwqSW
2M6JBRAnWbxxw0M4Z/0UiXxImBK5Oyd7Mn4yFHnuYSQTsCKpi5MtNTD5ZP5TMTDh
S9uEUXah/OIIdbr31p5l+wwBUqwRqVbG1udqy6CL+H+M+/RmQuB5OK+TjX7aFOuy
PYQwEGSTURcpLgnMXq4fZLtRcPgsxAEizXjxVt/Ti8LX5XPh6p6dHzoTI3S4bemh
eDn6UJzKLI9UmmhQSAVHAqiNANNjcYCs2tDcp0Pa3g+FinSsmw1QkEzif/GpWcHe
r8PAyWFrIsIczaBr7TtH3UU=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:23 2023 by rpki-client on console-ams.rpki-client.org