Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Wyn0j0EFIJrAMDu2yoL7IID_S2I.roa
File: Wyn0j0EFIJrAMDu2yoL7IID_S2I.roa (raw, json)
Hash identifier: SWC2j8agSmRFF7YebFy1/oNEHTCRUf9p8hgKfuce6W0=
Subject key identifier: 5B:29:F4:8F:41:05:20:9A:C0:30:3B:B6:CA:82:FB:20:80:FF:4B:62
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0AEE5649
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Wyn0j0EFIJrAMDu2yoL7IID_S2I.roa
Signing time: Fri 24 Jun 2022 22:26:36 +0000
ROA not before: Fri 24 Jun 2022 22:26:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210715
IP address blocks: 78.108.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183391817 (0xaee5649)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jun 24 22:26:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b29f48f4105209ac0303bb6ca82fb2080ff4b62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:33:90:9f:d4:48:eb:c1:9c:5c:fe:39:1a:40:
12:3c:f2:66:ee:0c:aa:12:84:7b:01:67:19:af:45:
49:9c:69:de:e9:4d:64:7c:84:31:b0:34:14:20:6a:
8b:dd:2c:98:0c:fd:42:d5:78:ae:4e:50:af:19:24:
3c:65:81:ec:97:d8:05:74:7c:07:b1:8a:69:97:14:
1c:a0:5a:c1:56:01:16:7e:af:0d:82:77:fd:4e:32:
f2:56:57:da:6e:1b:83:b8:8f:23:a2:ae:92:69:6e:
cc:18:93:76:1e:2f:0b:16:4a:ce:67:4f:70:0a:7b:
80:28:a2:24:33:ef:e1:c7:83:76:8c:bd:b0:ad:c2:
c3:9f:9b:c9:63:d2:f6:ae:3a:d4:d8:8b:a7:fd:2b:
3c:81:56:b8:96:3d:2b:36:a0:8d:84:47:69:07:9f:
a8:f9:72:fd:1c:03:1f:bd:c8:9b:d0:ea:d5:88:2f:
35:fa:0c:ad:9e:29:23:1f:95:40:9d:84:e6:b6:b0:
ef:87:75:5e:98:22:c6:04:86:05:4f:35:fb:80:b1:
5e:ff:8c:90:35:15:eb:56:4a:a4:f3:9c:8d:fd:19:
db:8b:7a:24:98:e3:f9:24:7c:48:94:b8:d0:f2:7f:
32:b9:5c:69:cc:8b:61:c1:d2:8f:23:49:82:7b:44:
01:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:29:F4:8F:41:05:20:9A:C0:30:3B:B6:CA:82:FB:20:80:FF:4B:62
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/Wyn0j0EFIJrAMDu2yoL7IID_S2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.108.218.0/24
Signature Algorithm: sha256WithRSAEncryption
00:cc:64:30:9f:82:39:b0:f1:aa:cb:53:04:73:7f:4b:1e:80:
68:fb:80:f1:b2:35:9b:cc:07:09:8f:4f:9c:74:84:f8:a4:96:
b9:cd:9d:ad:e9:e9:b7:72:d6:ee:ad:64:b0:dd:91:30:a7:5f:
a8:41:3f:98:40:ed:6f:e5:f8:32:a9:8e:4a:46:e3:ee:0f:d5:
36:17:74:fe:4b:eb:1e:98:36:ce:75:9f:a5:e9:a7:2f:21:48:
14:5d:12:34:37:7b:96:4c:c1:31:18:29:12:4c:53:cb:9c:7c:
18:91:53:c3:42:b1:33:46:39:22:d8:51:57:3e:24:54:99:f4:
0f:56:40:f8:5b:51:02:ea:07:45:a6:74:20:2e:0a:e3:0e:89:
ac:dd:47:f5:dc:ee:e4:66:87:89:66:f4:05:52:81:ce:04:df:
42:92:f8:41:ac:af:42:f4:cc:fe:df:97:c9:f1:32:f3:9c:31:
1f:63:54:42:3e:0e:db:6c:e6:9f:90:66:94:e2:f0:36:30:11:
ce:e0:6c:d8:30:78:b2:b2:45:1c:8c:29:0f:46:de:89:e7:6d:
58:44:16:e0:de:84:66:1d:7d:33:99:41:e3:fd:da:67:2c:62:
e1:21:b8:3d:28:95:6c:2e:a0:77:90:9c:fa:fd:61:50:77:81:
1e:c5:b4:77
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECu5WSTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MWE3YjBkOGRlODI1MWQzNmQ3YzgzZmFmNmJjN2VmZWM3M2I1MDM0MB4XDTIyMDYy
NDIyMjYzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWIyOWY0OGY0MTA1
MjA5YWMwMzAzYmI2Y2E4MmZiMjA4MGZmNGI2MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIAzkJ/USOvBnFz+ORpAEjzyZu4MqhKEewFnGa9FSZxp3ulN
ZHyEMbA0FCBqi90smAz9QtV4rk5QrxkkPGWB7JfYBXR8B7GKaZcUHKBawVYBFn6v
DYJ3/U4y8lZX2m4bg7iPI6KukmluzBiTdh4vCxZKzmdPcAp7gCiiJDPv4ceDdoy9
sK3Cw5+byWPS9q461NiLp/0rPIFWuJY9KzagjYRHaQefqPly/RwDH73Im9Dq1Ygv
NfoMrZ4pIx+VQJ2E5raw74d1XpgixgSGBU81+4CxXv+MkDUV61ZKpPOcjf0Z24t6
JJjj+SR8SJS40PJ/MrlcacyLYcHSjyNJgntEAa0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRbKfSPQQUgmsAwO7bKgvsggP9LYjAfBgNVHSMEGDAWgBSxp7DY3oJR0218
g/r2vH7+xztQNDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NhZXcyTjZDVWROdGZJUDY5cngtX3NjN1VEUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTcvZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8x
L1d5bjBqMEVGSUpyQU1EdTJ5b0w3SUlEX1MySS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcv
ZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8xL3NhZXcyTjZDVWRO
dGZJUDY5cngtX3NjN1VEUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE5s2jANBgkqhkiG9w0BAQsFAAOC
AQEAAMxkMJ+CObDxqstTBHN/Sx6AaPuA8bI1m8wHCY9PnHSE+KSWuc2drenpt3LW
7q1ksN2RMKdfqEE/mEDtb+X4MqmOSkbj7g/VNhd0/kvrHpg2znWfpemnLyFIFF0S
NDd7lkzBMRgpEkxTy5x8GJFTw0KxM0Y5IthRVz4kVJn0D1ZA+FtRAuoHRaZ0IC4K
4w6JrN1H9dzu5GaHiWb0BVKBzgTfQpL4QayvQvTM/t+XyfEy85wxH2NUQj4O22zm
n5BmlOLwNjARzuBs2DB4srJFHIwpD0beiedtWEQW4N6EZh19M5lB4/3aZyxi4SG4
PSiVbC6gd5Cc+v1hUHeBHsW0dw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org