Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/WcbEFcdqYz5mY0YTU3ejk30-U0I.roa
File: WcbEFcdqYz5mY0YTU3ejk30-U0I.roa (raw, json)
Hash identifier: 94qCcOPl7eDczADfRzU1bryYxg5CGSmXqqdKBD3X0PY=
Subject key identifier: 59:C6:C4:15:C7:6A:63:3E:66:63:46:13:53:77:A3:93:7D:3E:53:42
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 08B929FF
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/WcbEFcdqYz5mY0YTU3ejk30-U0I.roa
Signing time: Sun 03 Apr 2022 20:31:00 +0000
ROA not before: Sun 03 Apr 2022 20:31:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 82.115.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146352639 (0x8b929ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Apr 3 20:31:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59c6c415c76a633e666346135377a3937d3e5342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7e:f1:c7:07:ad:64:19:5d:75:7d:3c:41:c3:
67:98:89:10:e1:55:74:00:37:c0:ff:18:71:42:c7:
af:1f:14:a9:a4:bc:2a:b4:b2:60:31:f0:37:34:d5:
42:18:76:8a:2b:1c:d9:2a:12:2a:b3:46:82:cf:e1:
d0:59:00:87:62:80:ea:c4:a8:4f:89:77:fb:c9:b2:
5c:b0:00:3c:36:8e:bf:33:ea:16:18:12:40:5d:92:
fe:80:fb:65:f7:5f:97:8a:ca:9c:37:b4:37:d8:db:
b4:e3:03:2d:e4:aa:aa:55:e8:42:bd:d1:7c:8f:ce:
21:19:6f:d9:40:d8:3a:39:3c:65:6f:1b:9a:4d:e3:
27:ff:ca:b4:ac:46:54:4a:08:ff:5b:aa:7c:92:e1:
cd:94:5e:72:50:cc:fd:f8:39:de:9f:66:9b:d6:65:
1d:75:eb:09:78:c3:c0:9b:31:48:90:d2:d4:dd:b9:
f5:5e:44:ad:12:6d:5f:b0:8b:94:0a:d5:07:13:1a:
f3:1c:83:68:db:d3:a6:f9:23:b4:73:ff:a8:ae:53:
d9:3b:2d:04:88:02:ce:14:37:ad:41:29:4b:01:14:
5c:a3:82:f3:c2:08:8f:e2:b4:70:29:96:36:ed:90:
c5:d1:96:28:29:3b:f3:ca:b4:38:30:76:76:6e:d2:
69:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C6:C4:15:C7:6A:63:3E:66:63:46:13:53:77:A3:93:7D:3E:53:42
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/WcbEFcdqYz5mY0YTU3ejk30-U0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.217.0/24
Signature Algorithm: sha256WithRSAEncryption
96:6c:9a:e1:57:42:22:cc:fc:4c:ed:5f:0f:89:48:fc:76:7e:
28:bd:2c:a1:86:ed:38:15:59:69:e0:70:ce:b1:d6:d0:d6:f0:
0b:22:e2:55:f5:c7:84:3c:9e:de:eb:98:5b:4f:53:9b:e8:c7:
44:0d:98:f2:6b:1f:7b:9a:49:49:70:8c:f3:59:a3:54:3d:1a:
d6:5c:9a:ca:1e:59:81:ca:82:d3:4a:45:45:5b:e5:cd:ce:b9:
38:26:1e:43:4c:7a:2d:c5:c3:f3:e5:66:59:c4:8c:c4:2b:c6:
65:20:f6:35:ae:61:63:cb:81:29:2c:14:61:08:6f:b8:d6:db:
ae:67:65:50:6b:ea:3f:3f:6c:73:65:12:3e:e1:eb:37:8d:ba:
88:3f:e4:9e:49:c9:4c:0c:ec:e7:09:e4:f5:7f:63:95:ad:1b:
af:d0:b7:50:d8:af:d9:bc:a9:1a:61:74:85:4e:7a:ef:bf:c0:
e0:57:e6:28:fe:eb:4f:5a:e8:33:21:d4:11:8f:4f:eb:86:8f:
ef:91:d9:41:3f:91:0f:8f:82:e3:dc:43:ff:0b:02:26:94:6d:
d3:15:af:3a:e2:8e:8e:ed:2a:43:05:bd:57:31:c3:bc:af:58:
84:4c:41:fc:97:79:2f:77:38:7e:dd:74:bf:67:8f:a5:f2:5f:
03:42:e2:d6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECLkp/zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NjhjNjVlNjk5YjU3NmFiMTEzYTc5YmU4ODI4OTQ4ZjFlNmNjMjYwMB4XDTIyMDQw
MzIwMzEwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTljNmM0MTVjNzZh
NjMzZTY2NjM0NjEzNTM3N2EzOTM3ZDNlNTM0MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK5+8ccHrWQZXXV9PEHDZ5iJEOFVdAA3wP8YcULHrx8UqaS8
KrSyYDHwNzTVQhh2iisc2SoSKrNGgs/h0FkAh2KA6sSoT4l3+8myXLAAPDaOvzPq
FhgSQF2S/oD7Zfdfl4rKnDe0N9jbtOMDLeSqqlXoQr3RfI/OIRlv2UDYOjk8ZW8b
mk3jJ//KtKxGVEoI/1uqfJLhzZReclDM/fg53p9mm9ZlHXXrCXjDwJsxSJDS1N25
9V5ErRJtX7CLlArVBxMa8xyDaNvTpvkjtHP/qK5T2TstBIgCzhQ3rUEpSwEUXKOC
88IIj+K0cCmWNu2QxdGWKCk788q0ODB2dm7SaYECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRZxsQVx2pjPmZjRhNTd6OTfT5TQjAfBgNVHSMEGDAWgBTGjGXmmbV2qxE6
eb6IKJSPHmzCYDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hveGw1cG0xZHFzUk9ubS1pQ2lVang1c3dtQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTkvMzQwYzczLTc5ZWUtNDkyNi04ZTRmLTYwN2Q0ZjM3ZjU5Zi8x
L1djYkVGY2RxWXo1bVkwWVRVM2VqazMwLVUwSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTkv
MzQwYzczLTc5ZWUtNDkyNi04ZTRmLTYwN2Q0ZjM3ZjU5Zi8xL3hveGw1cG0xZHFz
Uk9ubS1pQ2lVang1c3dtQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFJz2TANBgkqhkiG9w0BAQsFAAOC
AQEAlmya4VdCIsz8TO1fD4lI/HZ+KL0soYbtOBVZaeBwzrHW0NbwCyLiVfXHhDye
3uuYW09Tm+jHRA2Y8msfe5pJSXCM81mjVD0a1lyayh5ZgcqC00pFRVvlzc65OCYe
Q0x6LcXD8+VmWcSMxCvGZSD2Na5hY8uBKSwUYQhvuNbbrmdlUGvqPz9sc2USPuHr
N426iD/knknJTAzs5wnk9X9jla0br9C3UNiv2bypGmF0hU5677/A4FfmKP7rT1ro
MyHUEY9P64aP75HZQT+RD4+C49xD/wsCJpRt0xWvOuKOju0qQwW9VzHDvK9YhExB
/Jd5L3c4ft10v2ePpfJfA0Li1g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:57 2024 by rpki-client on console-ams.rpki-client.org