Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/WJPDtsEapA6Rqytfzm4ISko1BRM.roa
File: WJPDtsEapA6Rqytfzm4ISko1BRM.roa (raw, json)
Hash identifier: merRR3DV56LCHjyDJVXT62shnQ0osjrUh8WBgLV7blQ=
Subject key identifier: 58:93:C3:B6:C1:1A:A4:0E:91:AB:2B:5F:CE:6E:08:4A:4A:35:05:13
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08BBE6F6
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/WJPDtsEapA6Rqytfzm4ISko1BRM.roa
Signing time: Sat 01 Jan 2022 14:01:54 +0000
ROA not before: Sat 01 Jan 2022 14:01:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211869
IP address blocks: 2a0e:8f02:2150::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146532086 (0x8bbe6f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5893c3b6c11aa40e91ab2b5fce6e084a4a350513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d9:ae:a9:a8:c7:91:4e:77:69:c5:45:60:b8:
07:a2:46:40:3d:f0:20:30:2c:c5:78:b1:db:d6:43:
a7:24:f2:8d:b9:5e:77:35:bf:db:9f:07:cf:c2:8e:
98:1a:67:0c:ad:92:a8:f5:c6:1d:ef:a1:c8:fd:1d:
06:f5:5d:de:c3:1f:de:ef:df:79:54:61:56:04:9d:
ed:72:54:27:35:ec:68:60:fd:2f:bb:66:aa:2a:5f:
2b:fd:84:30:3c:f8:95:72:a2:b2:7e:a0:27:80:fc:
4d:4f:97:8c:cf:77:8f:c4:3a:4b:72:c4:6c:a7:72:
13:ad:2e:33:0e:73:2a:55:7f:97:c6:bd:07:b7:f9:
74:3a:dc:52:5d:38:1e:30:02:57:81:21:e4:83:22:
1d:66:f6:17:80:b8:b3:69:5c:bb:b6:a0:21:1e:4a:
e1:59:9d:b4:e3:0c:24:f8:29:78:58:62:7b:6b:df:
ac:0e:b8:8f:c8:6b:4e:a4:fc:68:8b:e3:b6:eb:28:
c0:ca:2f:e1:7f:e4:5b:b7:f3:49:30:d6:f9:a6:57:
d5:3e:3d:bb:e1:67:00:3e:ee:87:7f:9d:4d:8d:40:
5b:20:1c:3a:b1:83:83:1b:75:47:22:da:25:fa:72:
f5:50:8e:ab:4b:7a:12:94:4f:b3:e2:a8:77:b8:2f:
60:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:93:C3:B6:C1:1A:A4:0E:91:AB:2B:5F:CE:6E:08:4A:4A:35:05:13
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/WJPDtsEapA6Rqytfzm4ISko1BRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:2150::/44
Signature Algorithm: sha256WithRSAEncryption
34:98:63:61:6e:89:d7:93:ce:1e:91:fd:61:3c:8a:6e:5c:4c:
b4:f8:46:2d:83:83:4e:25:2b:b5:69:cf:8d:16:a6:86:cf:ee:
09:17:d1:b5:a3:49:27:14:b4:af:99:17:c0:80:39:ad:64:03:
87:b2:82:4f:6e:e8:b2:65:9d:6f:03:82:4f:b7:e6:74:40:68:
53:42:14:17:74:be:6a:7e:5d:e3:8f:41:8e:f2:57:b3:93:a4:
8a:62:c0:68:4f:5c:5d:30:4a:12:2e:92:89:29:dc:2e:14:76:
a4:04:78:2d:0c:ff:72:1d:6b:0b:f5:17:4f:1a:dd:e5:36:58:
89:e1:7f:f9:fd:64:5a:9f:54:05:aa:d2:01:a9:6d:5c:6c:63:
29:c1:f5:4e:cd:7f:93:c3:e6:02:47:f7:5b:42:4d:63:5c:c3:
86:99:d8:77:6d:a9:d9:c3:a7:d5:bd:fb:ff:cc:35:64:57:da:
28:ad:5f:aa:e6:a0:7b:39:63:9f:64:60:74:85:f7:85:6d:3d:
09:70:06:a4:3c:9f:46:4c:a4:53:5c:7a:d3:f7:25:1b:aa:49:
4a:41:c8:29:04:2d:56:e7:93:b4:b0:da:79:f0:8b:0e:0c:51:
d3:51:67:1d:2b:55:53:46:91:2f:20:d9:3d:79:97:3e:e6:cd:
35:c1:1a:9d
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECLvm9jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NTZlZjQ4ZWQ2MTU1ZGQ3ODQzZWVkMzYzMjQ2OWFiYWEzMTAwYmYzMB4XDTIyMDEw
MTE0MDE1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTg5M2MzYjZjMTFh
YTQwZTkxYWIyYjVmY2U2ZTA4NGE0YTM1MDUxMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKzZrqmox5FOd2nFRWC4B6JGQD3wIDAsxXix29ZDpyTyjble
dzW/258Hz8KOmBpnDK2SqPXGHe+hyP0dBvVd3sMf3u/feVRhVgSd7XJUJzXsaGD9
L7tmqipfK/2EMDz4lXKisn6gJ4D8TU+XjM93j8Q6S3LEbKdyE60uMw5zKlV/l8a9
B7f5dDrcUl04HjACV4Eh5IMiHWb2F4C4s2lcu7agIR5K4VmdtOMMJPgpeFhie2vf
rA64j8hrTqT8aIvjtusowMov4X/kW7fzSTDW+aZX1T49u+FnAD7uh3+dTY1AWyAc
OrGDgxt1RyLaJfpy9VCOq0t6EpRPs+Kod7gvYHsCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRYk8O2wRqkDpGrK1/ObghKSjUFEzAfBgNVHSMEGDAWgBTVbvSO1hVd14Q+
7TYyRpq6oxAL8zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFXNzBqdFlWWGRlRVB1MDJNa2FhdXFNUUNfTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjUvNThmZjU0LTM0MTAtNGU0Mi1hYWI4LWQyZDdmMmJiNjRkZi8x
L1dKUER0c0VhcEE2UnF5dGZ6bTRJU2tvMUJSTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUv
NThmZjU0LTM0MTAtNGU0Mi1hYWI4LWQyZDdmMmJiNjRkZi8xLzFXNzBqdFlWWGRl
RVB1MDJNa2FhdXFNUUNfTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoOjwIhUDANBgkqhkiG9w0BAQsF
AAOCAQEANJhjYW6J15POHpH9YTyKblxMtPhGLYODTiUrtWnPjRamhs/uCRfRtaNJ
JxS0r5kXwIA5rWQDh7KCT27osmWdbwOCT7fmdEBoU0IUF3S+an5d449BjvJXs5Ok
imLAaE9cXTBKEi6SiSncLhR2pAR4LQz/ch1rC/UXTxrd5TZYieF/+f1kWp9UBarS
AaltXGxjKcH1Ts1/k8PmAkf3W0JNY1zDhpnYd22p2cOn1b37/8w1ZFfaKK1fquag
ezljn2RgdIX3hW09CXAGpDyfRkykU1x60/clG6pJSkHIKQQtVueTtLDaefCLDgxR
01FnHStVU0aRLyDZPXmXPubNNcEanQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org