Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/Ws-C-A5n9StAwhtsEiEz4mhBXfQ.roa
File: Ws-C-A5n9StAwhtsEiEz4mhBXfQ.roa (raw, json)
Hash identifier: TNBKVFePK/BNzsek8UcPCxDZB319aj2QeZtxGYpzbbY=
Subject key identifier: 5A:CF:82:F8:0E:67:F5:2B:40:C2:1B:6C:12:21:33:E2:68:41:5D:F4
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 0889E69E
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/Ws-C-A5n9StAwhtsEiEz4mhBXfQ.roa
Signing time: Wed 16 Mar 2022 20:27:48 +0000
ROA not before: Wed 16 Mar 2022 20:27:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 45.140.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143255198 (0x889e69e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Mar 16 20:27:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5acf82f80e67f52b40c21b6c122133e268415df4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fd:a2:22:53:ed:06:8e:d0:cc:32:b6:e5:38:
19:ab:76:bc:27:6e:3f:e9:7f:3a:0c:e5:49:24:46:
a7:25:b3:f6:61:47:ad:be:ff:1f:80:ac:89:c3:e4:
fd:30:a8:51:2d:a3:a9:a3:fb:75:e7:1c:b3:d2:88:
1a:65:14:0e:c3:e7:2b:68:05:a8:91:02:2d:43:67:
45:93:9a:49:8d:21:a9:2b:18:c6:c3:aa:fa:04:d2:
8b:a8:ca:b6:f7:2c:2d:b0:70:00:e4:b0:70:41:32:
1f:ed:e8:d0:35:26:63:3c:23:19:67:61:9d:d0:cb:
75:b1:62:32:2d:2c:9c:ca:00:9b:f1:ad:1a:61:0a:
8f:f3:87:90:0c:dc:29:81:8c:e3:64:1f:07:23:22:
9c:ed:69:55:9c:91:4f:b7:4d:60:f5:32:68:31:f1:
af:ef:3b:d8:1c:00:6a:81:ac:3b:b4:95:f7:d2:23:
5f:c6:dd:c4:5f:f2:3c:a3:13:df:9b:3b:2f:ff:81:
e3:70:9c:13:53:6f:a8:b4:9a:6c:79:07:e1:70:4d:
a6:b5:ef:51:ae:90:db:56:d3:94:20:25:11:ac:9e:
61:8a:49:66:2a:61:17:7d:9f:37:02:71:5d:2a:56:
18:f0:66:72:56:73:01:16:4d:7d:36:8e:e4:ec:e4:
f6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:CF:82:F8:0E:67:F5:2B:40:C2:1B:6C:12:21:33:E2:68:41:5D:F4
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/Ws-C-A5n9StAwhtsEiEz4mhBXfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.209.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:5b:d5:99:24:c8:f9:4f:a9:e5:47:69:5e:65:ee:78:10:51:
1d:d4:92:1f:33:68:c8:1e:67:71:86:71:9c:3d:56:72:2e:59:
6b:cb:da:3a:86:cd:aa:e8:05:31:ad:62:40:56:47:de:6b:a1:
9d:48:42:d7:5f:83:d4:ee:db:11:e2:5a:99:66:9d:bc:05:42:
27:7a:d4:9c:68:d9:f3:8e:40:23:77:e7:73:1d:4f:ae:58:bb:
a6:a8:7c:3d:34:01:e1:dc:97:17:85:82:52:36:4d:f2:0d:3a:
d8:a3:e3:ab:90:21:60:b2:9a:5b:fc:be:89:fd:6a:db:f7:c8:
98:0b:72:b2:cb:ce:00:21:60:59:b3:d3:2f:cd:08:9a:5d:b9:
fa:7f:91:e1:1e:6e:1b:96:7b:31:78:7b:5d:67:9e:6e:32:d6:
94:ca:93:50:a8:ca:ec:05:d8:32:7b:21:a5:6e:64:97:73:39:
66:f7:3f:f9:a1:91:01:aa:61:7a:e2:6a:a8:04:6b:ac:af:3a:
0b:01:0a:4d:4b:3f:81:74:f8:42:c0:b0:d1:39:34:cf:5c:5e:
32:cb:c9:eb:1c:2f:e5:e7:b9:00:4b:1d:30:33:e6:11:83:e5:
a8:45:b5:a3:dd:96:89:27:dd:77:65:cf:6a:93:0d:61:b2:aa:
99:e1:88:14
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECInmnjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NjhjNjVlNjk5YjU3NmFiMTEzYTc5YmU4ODI4OTQ4ZjFlNmNjMjYwMB4XDTIyMDMx
NjIwMjc0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWFjZjgyZjgwZTY3
ZjUyYjQwYzIxYjZjMTIyMTMzZTI2ODQxNWRmNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALX9oiJT7QaO0MwytuU4Gat2vCduP+l/OgzlSSRGpyWz9mFH
rb7/H4CsicPk/TCoUS2jqaP7deccs9KIGmUUDsPnK2gFqJECLUNnRZOaSY0hqSsY
xsOq+gTSi6jKtvcsLbBwAOSwcEEyH+3o0DUmYzwjGWdhndDLdbFiMi0snMoAm/Gt
GmEKj/OHkAzcKYGM42QfByMinO1pVZyRT7dNYPUyaDHxr+872BwAaoGsO7SV99Ij
X8bdxF/yPKMT35s7L/+B43CcE1NvqLSabHkH4XBNprXvUa6Q21bTlCAlEayeYYpJ
ZiphF32fNwJxXSpWGPBmclZzARZNfTaO5Ozk9usCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRaz4L4Dmf1K0DCG2wSITPiaEFd9DAfBgNVHSMEGDAWgBTGjGXmmbV2qxE6
eb6IKJSPHmzCYDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hveGw1cG0xZHFzUk9ubS1pQ2lVang1c3dtQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTkvMzQwYzczLTc5ZWUtNDkyNi04ZTRmLTYwN2Q0ZjM3ZjU5Zi8x
L1dzLUMtQTVuOVN0QXdodHNFaUV6NG1oQlhmUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTkv
MzQwYzczLTc5ZWUtNDkyNi04ZTRmLTYwN2Q0ZjM3ZjU5Zi8xL3hveGw1cG0xZHFz
Uk9ubS1pQ2lVang1c3dtQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2M0TANBgkqhkiG9w0BAQsFAAOC
AQEAplvVmSTI+U+p5UdpXmXueBBRHdSSHzNoyB5ncYZxnD1Wci5Za8vaOobNqugF
Ma1iQFZH3muhnUhC11+D1O7bEeJamWadvAVCJ3rUnGjZ845AI3fncx1Prli7pqh8
PTQB4dyXF4WCUjZN8g062KPjq5AhYLKaW/y+if1q2/fImAtyssvOACFgWbPTL80I
ml25+n+R4R5uG5Z7MXh7XWeebjLWlMqTUKjK7AXYMnshpW5kl3M5Zvc/+aGRAaph
euJqqARrrK86CwEKTUs/gXT4QsCw0Tk0z1xeMsvJ6xwv5ee5AEsdMDPmEYPlqEW1
o92WiSfdd2XPapMNYbKqmeGIFA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:34 2023 by rpki-client on console-ams.rpki-client.org