Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Wd_5-nUx6-q92pjvdTj6hSR50yE.roa
File: Wd_5-nUx6-q92pjvdTj6hSR50yE.roa (raw, json)
Hash identifier: 5r9dr6Y331k1EE77o4M+Ka3v3kTtnRi+qa/ORqDchjQ=
Subject key identifier: 59:DF:F9:FA:75:31:EB:EA:BD:DA:98:EF:75:38:FA:85:24:79:D3:21
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 08FE4F94
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Wd_5-nUx6-q92pjvdTj6hSR50yE.roa
Signing time: Sat 01 Jan 2022 16:00:22 +0000
ROA not before: Sat 01 Jan 2022 16:00:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34641
IP address blocks: 2a0b:b86:100::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150884244 (0x8fe4f94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59dff9fa7531ebeabdda98ef7538fa852479d321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:01:53:50:28:e3:75:3d:af:ee:12:53:0b:c6:
a6:6b:96:8c:c8:4c:09:3d:c0:f8:09:03:d8:43:96:
fc:0b:ab:a3:a6:8b:ae:05:b8:78:ec:5a:08:23:44:
01:55:3a:e2:44:da:d9:20:f4:9c:b4:aa:b5:da:f4:
ce:39:c3:e6:a0:31:c7:2a:ad:40:2c:11:06:bf:34:
0c:3b:1c:9e:34:ab:4f:24:14:4f:ac:ea:bc:24:31:
47:f3:b0:db:77:50:19:48:f1:ba:df:49:c9:ca:52:
e7:61:b0:f1:40:46:96:da:50:ce:8c:d5:e4:f3:ab:
3f:62:cc:ac:be:7b:fb:34:98:69:d7:cb:d1:ca:33:
e9:d7:89:42:6a:6f:1c:ec:91:49:7e:80:66:c4:bd:
48:b8:42:35:81:67:d4:c0:8a:93:4f:d0:f3:eb:ce:
d1:35:45:f0:81:ba:24:e3:8b:12:88:28:cb:4b:67:
17:b2:68:af:9b:d1:6d:a2:7c:a3:2a:1d:df:b2:2c:
c2:63:32:d6:2f:2d:ca:42:9e:a7:e8:97:ba:4f:d3:
76:ba:63:03:b3:80:10:08:b5:80:1a:fe:68:29:4d:
bb:d0:31:86:75:ea:d3:1f:f9:a5:4f:dc:c5:06:1c:
21:38:4d:12:16:6f:90:7d:70:d0:58:ff:79:fe:f8:
0a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:DF:F9:FA:75:31:EB:EA:BD:DA:98:EF:75:38:FA:85:24:79:D3:21
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Wd_5-nUx6-q92pjvdTj6hSR50yE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b86:100::/40
Signature Algorithm: sha256WithRSAEncryption
d7:07:54:64:c5:0a:64:96:b5:36:bc:50:e3:d3:b6:e8:2d:96:
e0:51:7a:fb:a0:61:f3:a6:8a:ed:08:94:6e:a4:20:43:8b:c2:
ac:3e:f4:aa:1d:f8:d4:52:c0:d7:60:fc:b2:6c:b6:13:ec:91:
d1:06:b9:e8:18:90:b8:e7:f1:f3:c8:07:bb:e1:42:a2:5c:9d:
bd:f9:48:09:e6:4f:59:8e:fc:da:21:1b:58:4d:2a:8b:35:10:
f2:00:d4:fd:f1:a3:51:22:82:e9:30:87:58:6d:82:3d:65:d1:
4b:20:1d:f7:79:85:74:2c:cb:b2:ad:d8:ea:1d:a3:39:e1:9b:
43:ff:3c:9b:5d:a3:54:d1:5e:da:2f:12:ee:8d:66:8c:3d:4b:
ad:9c:1f:6c:6e:e0:d2:76:fe:b7:dd:a4:1b:52:cc:93:96:04:
0f:b3:b7:bd:15:38:86:4b:32:ff:da:54:86:77:4d:e9:df:07:
dc:3d:c7:86:13:a6:2b:66:62:f7:10:08:0a:13:e7:e2:85:c1:
2c:9b:4c:84:f9:1d:70:2e:21:52:f2:e8:eb:2f:ab:2d:49:cf:
12:c5:27:b2:a1:a1:6d:af:17:c0:86:35:8e:f4:74:e3:51:45:
d2:42:b6:bc:ee:86:e8:33:15:f7:61:c3:af:ba:da:b8:9c:e4:
02:fe:8d:eb
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIECP5PlDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MWE3YjBkOGRlODI1MWQzNmQ3YzgzZmFmNmJjN2VmZWM3M2I1MDM0MB4XDTIyMDEw
MTE2MDAyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTlkZmY5ZmE3NTMx
ZWJlYWJkZGE5OGVmNzUzOGZhODUyNDc5ZDMyMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMwBU1Ao43U9r+4SUwvGpmuWjMhMCT3A+AkD2EOW/Auro6aL
rgW4eOxaCCNEAVU64kTa2SD0nLSqtdr0zjnD5qAxxyqtQCwRBr80DDscnjSrTyQU
T6zqvCQxR/Ow23dQGUjxut9JycpS52Gw8UBGltpQzozV5POrP2LMrL57+zSYadfL
0coz6deJQmpvHOyRSX6AZsS9SLhCNYFn1MCKk0/Q8+vO0TVF8IG6JOOLEogoy0tn
F7Jor5vRbaJ8oyod37IswmMy1i8tykKep+iXuk/TdrpjA7OAEAi1gBr+aClNu9Ax
hnXq0x/5pU/cxQYcIThNEhZvkH1w0Fj/ef74CtcCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBRZ3/n6dTHr6r3amO91OPqFJHnTITAfBgNVHSMEGDAWgBSxp7DY3oJR0218
g/r2vH7+xztQNDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NhZXcyTjZDVWROdGZJUDY5cngtX3NjN1VEUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTcvZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8x
L1dkXzUtblV4Ni1xOTJwanZkVGo2aFNSNTB5RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcv
ZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8xL3NhZXcyTjZDVWRO
dGZJUDY5cngtX3NjN1VEUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoLC4YBMA0GCSqGSIb3DQEBCwUA
A4IBAQDXB1RkxQpklrU2vFDj07boLZbgUXr7oGHzportCJRupCBDi8KsPvSqHfjU
UsDXYPyybLYT7JHRBrnoGJC45/HzyAe74UKiXJ29+UgJ5k9ZjvzaIRtYTSqLNRDy
ANT98aNRIoLpMIdYbYI9ZdFLIB33eYV0LMuyrdjqHaM54ZtD/zybXaNU0V7aLxLu
jWaMPUutnB9sbuDSdv633aQbUsyTlgQPs7e9FTiGSzL/2lSGd03p3wfcPceGE6Yr
ZmL3EAgKE+fihcEsm0yE+R1wLiFS8ujrL6stSc8SxSeyoaFtrxfAhjWO9HTjUUXS
Qra87oboMxX3YcOvutq4nOQC/o3r
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org