Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/3cc9b4-1eff-48c9-b2f6-a01e9e6dcbf2/1/wzb1c7-l9HZgCoQbCVyCBFPFo-4.roa
File: wzb1c7-l9HZgCoQbCVyCBFPFo-4.roa (raw, json)
Hash identifier: 0I0ZirKXdIbczeRnM5acGN5bjlxEpfybSEg5FklEupQ=
Subject key identifier: C3:36:F5:73:BF:A5:F4:76:60:0A:84:1B:09:5C:82:04:53:C5:A3:EE
Certificate issuer: /CN=050b1e38c704bd08e3b9d17f590367b1d1f03c4a
Certificate serial: 031EF8AD
Authority key identifier: 05:0B:1E:38:C7:04:BD:08:E3:B9:D1:7F:59:03:67:B1:D1:F0:3C:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BQseOMcEvQjjudF_WQNnsdHwPEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/3cc9b4-1eff-48c9-b2f6-a01e9e6dcbf2/1/wzb1c7-l9HZgCoQbCVyCBFPFo-4.roa
Signing time: Sat 01 Jan 2022 08:03:52 +0000
ROA not before: Sat 01 Jan 2022 08:03:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15924
IP address blocks: 128.127.169.0/24 maxlen: 24
128.127.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52361389 (0x31ef8ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=050b1e38c704bd08e3b9d17f590367b1d1f03c4a
Validity
Not Before: Jan 1 08:03:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c336f573bfa5f476600a841b095c820453c5a3ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d0:b0:34:d7:4f:55:08:b3:58:75:a5:dd:dd:
3c:be:33:bb:c6:36:f5:4a:7b:ea:9b:01:df:ae:5c:
01:af:57:13:b6:d3:b9:67:08:1d:0c:50:ee:f8:13:
c6:f8:a1:06:4f:d0:3d:8a:65:af:c0:1b:2e:04:d1:
be:ab:a7:32:b4:ac:0b:0f:e1:bd:fb:ab:2b:81:9d:
44:9e:3b:f2:0a:35:0e:1a:76:aa:0e:28:77:ca:47:
28:13:b9:65:4c:87:f0:fe:28:4d:97:e7:e4:c7:e8:
1b:0c:33:fc:0e:49:6f:68:83:01:50:9b:5c:8e:4f:
a9:89:51:d4:3a:d1:fb:cf:56:a0:cb:e9:a0:61:62:
07:b4:a2:71:6d:f6:e3:1a:7c:a8:1f:56:78:19:3a:
0c:b1:88:37:ac:7e:df:81:02:8e:36:80:cc:ee:45:
67:90:0b:b5:a3:a8:f1:b7:7b:3e:b8:e2:e6:5d:1d:
c7:87:6c:37:c9:8c:54:a0:5c:52:d1:56:01:69:25:
c4:3f:5d:02:8a:59:5d:8f:8e:c3:77:49:70:aa:31:
6e:2f:f2:74:af:da:fe:b7:6d:7e:13:c8:70:72:7b:
9b:7d:65:73:cd:45:c2:63:25:8f:ef:58:c3:6b:5e:
bd:e2:2e:33:3e:a8:ad:09:9e:c3:14:77:00:89:54:
21:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:36:F5:73:BF:A5:F4:76:60:0A:84:1B:09:5C:82:04:53:C5:A3:EE
X509v3 Authority Key Identifier:
keyid:05:0B:1E:38:C7:04:BD:08:E3:B9:D1:7F:59:03:67:B1:D1:F0:3C:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BQseOMcEvQjjudF_WQNnsdHwPEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/3cc9b4-1eff-48c9-b2f6-a01e9e6dcbf2/1/wzb1c7-l9HZgCoQbCVyCBFPFo-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/3cc9b4-1eff-48c9-b2f6-a01e9e6dcbf2/1/BQseOMcEvQjjudF_WQNnsdHwPEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.127.169.0-128.127.170.255
Signature Algorithm: sha256WithRSAEncryption
0d:72:de:ad:8b:51:02:c0:e6:ce:ce:03:1f:6b:bc:0e:fe:81:
93:f7:64:8a:86:59:c0:87:a6:06:26:00:96:8f:dc:5f:16:43:
4e:34:2c:1e:d0:14:3b:3a:fb:68:df:18:1f:13:12:26:cf:7d:
f2:57:69:e1:7f:e3:5a:3b:6d:67:de:f6:21:d7:45:96:d2:96:
57:67:33:ce:85:ed:6b:b4:a7:35:81:9e:94:b5:0b:20:8a:9c:
30:39:2b:15:a2:c5:d1:4a:0b:85:02:ff:46:98:d1:f8:09:5e:
59:08:00:9a:da:9a:af:d3:f7:0d:e4:75:ab:1d:52:66:59:c2:
0b:cf:97:55:85:55:c2:a9:18:81:66:de:90:53:9d:a4:e8:c9:
e5:c0:93:1f:fc:39:89:60:12:52:6e:81:f0:ba:9a:2e:8f:12:
21:09:8c:8d:c4:65:c7:b3:56:9c:3c:e2:c7:93:64:d5:90:e9:
7f:95:62:ce:f9:e2:53:13:f3:99:04:4d:89:6d:44:29:85:93:
c7:fd:69:5a:84:51:98:3b:0c:92:47:c4:26:be:bc:e1:41:3c:
bc:42:d0:47:b3:24:b2:2b:cd:f3:60:15:1d:f2:6f:7a:93:94:
3f:b9:0e:fa:64:e7:34:e0:5e:7c:90:aa:70:d3:98:9c:b9:54:
71:75:e4:dc
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEAx74rTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTBiMWUzOGM3MDRiZDA4ZTNiOWQxN2Y1OTAzNjdiMWQxZjAzYzRhMB4XDTIyMDEw
MTA4MDM1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzMzNmY1NzNiZmE1
ZjQ3NjYwMGE4NDFiMDk1YzgyMDQ1M2M1YTNlZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKnQsDTXT1UIs1h1pd3dPL4zu8Y29Up76psB365cAa9XE7bT
uWcIHQxQ7vgTxvihBk/QPYplr8AbLgTRvqunMrSsCw/hvfurK4GdRJ478go1Dhp2
qg4od8pHKBO5ZUyH8P4oTZfn5MfoGwwz/A5Jb2iDAVCbXI5PqYlR1DrR+89WoMvp
oGFiB7SicW324xp8qB9WeBk6DLGIN6x+34ECjjaAzO5FZ5ALtaOo8bd7Prji5l0d
x4dsN8mMVKBcUtFWAWklxD9dAopZXY+Ow3dJcKoxbi/ydK/a/rdtfhPIcHJ7m31l
c81FwmMlj+9Yw2teveIuMz6orQmewxR3AIlUIdsCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBTDNvVzv6X0dmAKhBsJXIIEU8Wj7jAfBgNVHSMEGDAWgBQFCx44xwS9COO5
0X9ZA2ex0fA8SjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JRc2VPTWNFdlFqanVkRl9XUU5uc2RId1BFby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWQvM2NjOWI0LTFlZmYtNDhjOS1iMmY2LWEwMWU5ZTZkY2JmMi8x
L3d6YjFjNy1sOUhaZ0NvUWJDVnlDQkZQRm8tNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWQv
M2NjOWI0LTFlZmYtNDhjOS1iMmY2LWEwMWU5ZTZkY2JmMi8xL0JRc2VPTWNFdlFq
anVkRl9XUU5uc2RId1BFby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAgH+pAwQAgH+qMA0GCSqGSIb3
DQEBCwUAA4IBAQANct6ti1ECwObOzgMfa7wO/oGT92SKhlnAh6YGJgCWj9xfFkNO
NCwe0BQ7Ovto3xgfExImz33yV2nhf+NaO21n3vYh10WW0pZXZzPOhe1rtKc1gZ6U
tQsgipwwOSsVosXRSguFAv9GmNH4CV5ZCACa2pqv0/cN5HWrHVJmWcILz5dVhVXC
qRiBZt6QU52k6MnlwJMf/DmJYBJSboHwupoujxIhCYyNxGXHs1acPOLHk2TVkOl/
lWLO+eJTE/OZBE2JbUQphZPH/WlahFGYOwySR8QmvrzhQTy8QtBHsySyK83zYBUd
8m96k5Q/uQ76ZOc04F58kKpw05icuVRxdeTc
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:00 2023 by rpki-client on console-fra.rpki-client.org