Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/wl0mkP1ADfCtPJAZ-7dQkYt-WZQ.roa
File: wl0mkP1ADfCtPJAZ-7dQkYt-WZQ.roa (raw, json)
Hash identifier: zkWRgKFqXJu9Prq/82ZnbvsWhUs4KCcb9DLLODLEegs=
Subject key identifier: C2:5D:26:90:FD:40:0D:F0:AD:3C:90:19:FB:B7:50:91:8B:7E:59:94
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08C983BD
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/wl0mkP1ADfCtPJAZ-7dQkYt-WZQ.roa
Signing time: Sat 01 Jan 2022 14:02:04 +0000
ROA not before: Sat 01 Jan 2022 14:02:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212983
IP address blocks: 2a0e:8f02:f005::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147424189 (0x8c983bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:02:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c25d2690fd400df0ad3c9019fbb750918b7e5994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:e6:60:39:ab:cf:97:19:64:36:fa:05:ed:5d:
5d:79:85:08:cd:3d:4d:56:ef:51:bd:cf:19:c2:ba:
37:23:85:4d:61:e8:64:2e:a9:1a:df:ab:63:7e:94:
6e:e8:12:1e:9d:a4:07:1d:fa:52:af:b4:e6:e0:c7:
a3:f2:18:54:12:c5:25:b1:f1:1d:45:71:c5:52:55:
86:f1:92:4a:f2:1d:38:2b:7f:c7:3d:a2:41:42:bb:
32:0d:01:a8:3d:db:f2:91:29:f6:40:c9:45:0a:a4:
a8:c3:e3:39:17:8b:b6:a5:83:24:d1:02:3e:fd:47:
cb:22:37:24:ae:9b:2e:80:11:fd:c6:91:07:9a:2a:
bb:4d:d8:78:70:9a:ec:e8:b0:47:54:52:cf:29:5b:
af:23:01:b0:46:6f:c8:89:39:1e:74:87:66:45:dc:
73:4b:2a:7a:67:43:0f:77:e3:5e:e6:ac:18:70:76:
50:66:44:33:65:3f:0e:b4:ed:13:0f:41:ea:0b:55:
46:72:5f:79:13:2c:5d:6e:da:51:60:76:af:b3:f8:
d4:b0:25:b1:49:fe:04:df:af:b0:fa:c6:d9:69:a4:
e8:b8:3c:7c:8e:2a:e3:a3:58:ed:a4:27:2f:b2:cb:
78:b9:d5:df:c1:2a:01:1b:3f:aa:63:81:75:ab:ad:
e4:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:5D:26:90:FD:40:0D:F0:AD:3C:90:19:FB:B7:50:91:8B:7E:59:94
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/wl0mkP1ADfCtPJAZ-7dQkYt-WZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f005::/48
Signature Algorithm: sha256WithRSAEncryption
a8:05:a3:1c:65:0f:33:33:5c:e8:5e:c5:37:c8:e7:fd:13:45:
b2:71:5e:38:d0:2d:d2:a9:e8:44:38:8a:56:f4:50:15:bb:fd:
ab:84:5b:ad:b2:77:43:5a:d5:72:ec:72:54:c1:2a:04:8e:2b:
74:5a:2c:50:2c:07:99:46:d0:a4:e8:34:5e:05:78:9b:a1:da:
b5:f3:46:d8:63:8d:01:34:42:a8:65:ed:18:a4:05:b1:45:5b:
96:9c:01:d5:02:0f:5b:e6:7c:0b:6d:e6:08:9a:4c:e4:47:72:
44:fa:7f:70:71:da:da:de:ec:ca:fd:7f:4e:95:ae:cd:9e:1d:
4d:69:e7:90:4d:93:2b:ae:03:14:bf:56:9e:34:c2:15:66:a3:
73:72:28:53:3e:7d:26:7e:5f:cc:98:af:da:86:cd:64:ac:7e:
ea:22:77:94:21:32:32:33:b7:a4:08:9f:64:df:98:86:3b:dd:
83:fc:8a:f2:aa:9c:b1:50:01:1f:bc:ad:16:8a:e3:ee:b3:aa:
8a:ed:e4:79:ed:71:75:40:8d:9b:f4:16:6f:26:73:df:0d:fe:
ae:b1:72:df:e6:91:ff:52:9b:e1:43:56:3b:92:fc:ff:a8:f2:
d4:7c:80:3d:64:db:66:b7:1f:bc:3e:ad:a6:a7:79:c6:ed:0b:
0a:17:ad:98
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECMmDvTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NTZlZjQ4ZWQ2MTU1ZGQ3ODQzZWVkMzYzMjQ2OWFiYWEzMTAwYmYzMB4XDTIyMDEw
MTE0MDIwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzI1ZDI2OTBmZDQw
MGRmMGFkM2M5MDE5ZmJiNzUwOTE4YjdlNTk5NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPXmYDmrz5cZZDb6Be1dXXmFCM09TVbvUb3PGcK6NyOFTWHo
ZC6pGt+rY36UbugSHp2kBx36Uq+05uDHo/IYVBLFJbHxHUVxxVJVhvGSSvIdOCt/
xz2iQUK7Mg0BqD3b8pEp9kDJRQqkqMPjOReLtqWDJNECPv1HyyI3JK6bLoAR/caR
B5oqu03YeHCa7OiwR1RSzylbryMBsEZvyIk5HnSHZkXcc0sqemdDD3fjXuasGHB2
UGZEM2U/DrTtEw9B6gtVRnJfeRMsXW7aUWB2r7P41LAlsUn+BN+vsPrG2Wmk6Lg8
fI4q46NY7aQnL7LLeLnV38EqARs/qmOBdaut5OUCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTCXSaQ/UAN8K08kBn7t1CRi35ZlDAfBgNVHSMEGDAWgBTVbvSO1hVd14Q+
7TYyRpq6oxAL8zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFXNzBqdFlWWGRlRVB1MDJNa2FhdXFNUUNfTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjUvNThmZjU0LTM0MTAtNGU0Mi1hYWI4LWQyZDdmMmJiNjRkZi8x
L3dsMG1rUDFBRGZDdFBKQVotN2RRa1l0LVdaUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUv
NThmZjU0LTM0MTAtNGU0Mi1hYWI4LWQyZDdmMmJiNjRkZi8xLzFXNzBqdFlWWGRl
RVB1MDJNa2FhdXFNUUNfTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOjwLwBTANBgkqhkiG9w0BAQsF
AAOCAQEAqAWjHGUPMzNc6F7FN8jn/RNFsnFeONAt0qnoRDiKVvRQFbv9q4RbrbJ3
Q1rVcuxyVMEqBI4rdFosUCwHmUbQpOg0XgV4m6HatfNG2GONATRCqGXtGKQFsUVb
lpwB1QIPW+Z8C23mCJpM5EdyRPp/cHHa2t7syv1/TpWuzZ4dTWnnkE2TK64DFL9W
njTCFWajc3IoUz59Jn5fzJiv2obNZKx+6iJ3lCEyMjO3pAifZN+Yhjvdg/yK8qqc
sVABH7ytForj7rOqiu3kee1xdUCNm/QWbyZz3w3+rrFy3+aR/1Kb4UNWO5L8/6jy
1HyAPWTbZrcfvD6tpqd5xu0LChetmA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org