Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/wJgT9pWfGOeho8PIrzdtCbGu2lE.roa
File: wJgT9pWfGOeho8PIrzdtCbGu2lE.roa (raw, json)
Hash identifier: jK5HpcZfJS/ZdKKuEfZfu38nh9eO6tbim9kxet9zKNQ=
Subject key identifier: C0:98:13:F6:95:9F:18:E7:A1:A3:C3:C8:AF:37:6D:09:B1:AE:DA:51
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0C11E6F1
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/wJgT9pWfGOeho8PIrzdtCbGu2lE.roa
Signing time: Thu 03 Feb 2022 22:28:41 +0000
ROA not before: Thu 03 Feb 2022 22:28:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 195.180.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202499825 (0xc11e6f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Feb 3 22:28:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c09813f6959f18e7a1a3c3c8af376d09b1aeda51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:8f:f0:b1:08:1e:ea:dc:fb:73:e4:a7:e0:8b:
a6:6e:45:57:d3:bc:54:45:e9:9f:b0:c6:34:90:c5:
c6:6c:bc:93:03:72:68:c1:d7:94:30:8f:a2:c6:58:
89:65:40:05:79:51:e2:1f:53:39:2b:c2:78:07:f6:
e8:c3:0c:97:88:04:b2:86:da:1a:28:24:a6:f1:1e:
98:b2:64:dd:6c:39:b3:8d:1c:8b:9c:8c:d9:4d:a7:
45:cd:0d:ae:98:36:28:8f:1d:fd:4a:c3:b7:63:4b:
c4:e7:46:23:78:2e:94:5b:43:70:ec:87:64:bb:f7:
b0:f1:2e:96:44:51:59:34:af:74:6a:7e:66:29:4c:
cc:88:0d:3a:d9:4a:4e:74:23:75:1b:b5:0a:41:ed:
96:7a:2c:62:38:fe:d8:f1:99:b6:59:67:e2:c1:f4:
1c:24:f9:38:1c:98:98:1c:3b:a3:78:d8:7e:95:b7:
e2:52:76:f6:ca:ed:44:97:f5:8a:1f:01:33:0f:52:
3a:c6:7b:46:5d:0d:e7:d3:fb:cb:d8:4c:f1:c0:45:
81:2c:2e:35:65:6b:78:3d:a5:de:08:a7:68:20:a6:
98:aa:5a:fb:5c:f3:ea:25:c6:a2:f3:fb:ec:5b:95:
bf:d9:e5:55:d2:79:be:f0:a1:81:54:ca:3d:4b:57:
0b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:98:13:F6:95:9F:18:E7:A1:A3:C3:C8:AF:37:6D:09:B1:AE:DA:51
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/wJgT9pWfGOeho8PIrzdtCbGu2lE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.159.0/24
Signature Algorithm: sha256WithRSAEncryption
59:db:43:f0:b7:4e:b2:5b:a0:0c:27:75:15:28:15:52:b5:4e:
cd:18:fe:63:7d:6f:a5:72:bc:3e:ac:d5:55:80:af:6e:35:5c:
a2:ca:f6:5e:a6:d4:8f:44:98:16:f2:19:1a:64:f7:6a:a3:93:
fe:f7:c3:97:dc:29:d8:62:60:b4:23:bb:e1:49:90:47:37:74:
4e:7a:9d:ac:b8:18:20:60:bc:c0:47:0f:2b:17:f4:2e:54:05:
6c:66:94:cf:ed:5b:73:4a:4f:cc:33:4a:02:dd:b5:77:59:96:
bc:49:32:b0:8f:8b:5d:7d:8e:14:bd:12:c1:a6:64:d7:a0:97:
69:fe:63:c0:6e:ea:d4:c2:d2:c9:12:5a:1a:0f:4d:35:bc:53:
00:d3:69:27:dc:e5:67:fb:db:1b:c7:7f:ea:2c:39:4c:dc:fe:
78:a9:e9:df:f3:20:ba:77:ea:33:90:21:52:86:74:8a:de:73:
55:39:3f:7d:72:33:9e:40:69:c8:ab:e1:fc:5c:e2:11:91:82:
e9:ed:7b:b6:cd:be:e4:2f:52:51:52:b0:f4:e6:08:af:76:b2:
74:c5:a3:7c:09:bc:85:a3:fc:45:0f:83:8b:3d:98:c5:ff:d7:
99:2a:e7:d1:7c:b1:b3:b8:be:68:88:de:10:17:c0:94:83:ad:
b2:5f:22:dd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDBHm8TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzQ3MDE3NTY0YzcxMWJjYmQ1NzY4MGEwZGZkMDBmMmE1ZDA5OWRiMB4XDTIyMDIw
MzIyMjg0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzA5ODEzZjY5NTlm
MThlN2ExYTNjM2M4YWYzNzZkMDliMWFlZGE1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANKP8LEIHurc+3Pkp+CLpm5FV9O8VEXpn7DGNJDFxmy8kwNy
aMHXlDCPosZYiWVABXlR4h9TOSvCeAf26MMMl4gEsobaGigkpvEemLJk3Ww5s40c
i5yM2U2nRc0Nrpg2KI8d/UrDt2NLxOdGI3gulFtDcOyHZLv3sPEulkRRWTSvdGp+
ZilMzIgNOtlKTnQjdRu1CkHtlnosYjj+2PGZtlln4sH0HCT5OByYmBw7o3jYfpW3
4lJ29srtRJf1ih8BMw9SOsZ7Rl0N59P7y9hM8cBFgSwuNWVreD2l3ginaCCmmKpa
+1zz6iXGovP77FuVv9nlVdJ5vvChgVTKPUtXC8UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTAmBP2lZ8Y56Gjw8ivN20Jsa7aUTAfBgNVHSMEGDAWgBTXRwF1ZMcRvL1X
aAoN/QDypdCZ2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEwY0JkV1RIRWJ5OVYyZ0tEZjBBOHFYUW1kcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvYmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8x
L3dKZ1Q5cFdmR09laG84UElyemR0Q2JHdTJsRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
YmEyMzYyLTBjYzUtNDliZC1hNTIyLTRmMGU4Y2UxMWE3ZC8xLzEwY0JkV1RIRWJ5
OVYyZ0tEZjBBOHFYUW1kcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMO0nzANBgkqhkiG9w0BAQsFAAOC
AQEAWdtD8LdOslugDCd1FSgVUrVOzRj+Y31vpXK8PqzVVYCvbjVcosr2XqbUj0SY
FvIZGmT3aqOT/vfDl9wp2GJgtCO74UmQRzd0TnqdrLgYIGC8wEcPKxf0LlQFbGaU
z+1bc0pPzDNKAt21d1mWvEkysI+LXX2OFL0SwaZk16CXaf5jwG7q1MLSyRJaGg9N
NbxTANNpJ9zlZ/vbG8d/6iw5TNz+eKnp3/MgunfqM5AhUoZ0it5zVTk/fXIznkBp
yKvh/FziEZGC6e17ts2+5C9SUVKw9OYIr3aydMWjfAm8haP8RQ+Diz2Yxf/XmSrn
0Xyxs7i+aIjeEBfAlIOtsl8i3Q==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:42 2023 by rpki-client on console-fra.rpki-client.org