Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/9c48a0-d3cd-44b3-9ae6-7dffce1d6e2d/1/Wuu3HOGggv8IKFUQGmNsPgHl_l4.roa
File: Wuu3HOGggv8IKFUQGmNsPgHl_l4.roa (raw, json)
Hash identifier: CtUIIdTNLAJOz/aYf94Wc9Ph7lzxcd8jLWBkR5nYVDU=
Subject key identifier: 5A:EB:B7:1C:E1:A0:82:FF:08:28:55:10:1A:63:6C:3E:01:E5:FE:5E
Certificate issuer: /CN=1a421ace46c5dd58a29d46cd91fb28fc39c56fee
Certificate serial: 07923124
Authority key identifier: 1A:42:1A:CE:46:C5:DD:58:A2:9D:46:CD:91:FB:28:FC:39:C5:6F:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GkIazkbF3ViinUbNkfso_DnFb-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/9c48a0-d3cd-44b3-9ae6-7dffce1d6e2d/1/Wuu3HOGggv8IKFUQGmNsPgHl_l4.roa
Signing time: Sat 01 Jan 2022 10:00:43 +0000
ROA not before: Sat 01 Jan 2022 10:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206673
IP address blocks: 185.185.148.0/22 maxlen: 24
185.174.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127021348 (0x7923124)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a421ace46c5dd58a29d46cd91fb28fc39c56fee
Validity
Not Before: Jan 1 10:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5aebb71ce1a082ff082855101a636c3e01e5fe5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fc:55:c8:43:92:ea:00:19:5f:48:0d:e2:fa:
87:43:ca:21:ff:78:5d:67:fb:d9:b8:c9:88:72:01:
6b:a1:f8:19:19:b6:7e:5c:68:af:bf:aa:42:ed:b5:
ca:7d:42:e8:67:ff:63:2f:4e:24:f0:d2:03:a0:76:
fb:b6:d0:a3:de:f4:ad:5e:9c:77:ae:c7:3a:5b:71:
df:0b:a6:e0:16:81:dd:d6:c5:52:c3:3f:08:41:d3:
7c:79:c3:c9:55:8b:58:87:d6:d8:20:5f:b8:00:39:
12:1c:a8:1f:38:24:03:2f:0a:39:18:6f:4d:68:c6:
18:07:29:7b:42:24:ff:83:2e:02:d2:c0:de:65:95:
71:f8:84:c6:57:cb:f6:0d:0e:af:84:bb:6d:01:2c:
f5:7b:db:22:6d:30:e3:c1:01:a5:c2:fa:2c:95:5e:
d5:94:c8:e0:4f:90:4a:7b:ff:3e:f9:ae:d3:9e:d9:
e4:fa:7d:33:e3:49:60:c4:a0:6c:cf:66:2b:52:c1:
f9:a5:3b:ae:d4:69:84:c2:c3:79:9a:89:1a:08:48:
a9:59:e4:79:39:57:e9:75:2f:70:52:ec:a4:29:bd:
c5:2e:73:4d:f5:c0:d6:08:ed:34:d0:ac:40:dd:01:
2e:4e:28:c7:de:6b:8a:1a:9a:e7:66:a0:41:20:54:
fb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:EB:B7:1C:E1:A0:82:FF:08:28:55:10:1A:63:6C:3E:01:E5:FE:5E
X509v3 Authority Key Identifier:
keyid:1A:42:1A:CE:46:C5:DD:58:A2:9D:46:CD:91:FB:28:FC:39:C5:6F:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GkIazkbF3ViinUbNkfso_DnFb-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9c48a0-d3cd-44b3-9ae6-7dffce1d6e2d/1/Wuu3HOGggv8IKFUQGmNsPgHl_l4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9c48a0-d3cd-44b3-9ae6-7dffce1d6e2d/1/GkIazkbF3ViinUbNkfso_DnFb-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.128.0/22
185.185.148.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:41:0e:4b:91:75:bd:2b:c6:d0:21:18:3d:97:31:32:02:6e:
2f:92:5d:d7:93:71:b8:be:5c:1f:24:8e:00:57:76:b8:d0:ca:
94:f1:ad:99:2c:ac:04:39:c3:50:28:f1:0b:a0:28:00:7e:78:
c9:e0:a6:12:92:d2:61:3a:99:e1:db:52:c1:ba:35:3a:32:26:
56:95:44:98:f6:51:7c:e8:4f:96:ea:1a:9d:e1:25:05:f3:39:
3e:30:67:40:4b:4f:fd:a3:b2:59:12:e5:f6:4b:93:d7:9e:bb:
65:52:53:3d:83:c0:09:3f:15:02:c8:ec:2e:34:a0:64:8d:3e:
b4:06:e9:be:2e:4f:e1:b3:27:d2:99:58:4d:af:8b:44:6f:69:
f7:ac:e1:75:c0:b3:d4:a4:c7:0a:80:92:ec:12:79:6e:69:ef:
5b:fe:aa:3a:ee:f6:6d:c9:d0:96:66:cb:d6:51:a9:41:31:dc:
30:6e:1c:af:db:8d:77:d2:ca:ab:a6:4a:99:47:06:1e:e9:28:
d2:f0:b8:0c:33:40:90:25:15:a0:6c:a6:3c:32:b7:45:66:c5:
88:29:45:30:ff:2b:6b:bb:dd:15:3e:75:09:1f:6b:f2:82:23:
62:fe:1a:0d:59:73:8c:27:c8:c9:9d:d5:80:a8:17:be:08:c3:
61:f9:b9:e6
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEB5IxJDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YTQyMWFjZTQ2YzVkZDU4YTI5ZDQ2Y2Q5MWZiMjhmYzM5YzU2ZmVlMB4XDTIyMDEw
MTEwMDA0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWFlYmI3MWNlMWEw
ODJmZjA4Mjg1NTEwMWE2MzZjM2UwMWU1ZmU1ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALP8VchDkuoAGV9IDeL6h0PKIf94XWf72bjJiHIBa6H4GRm2
flxor7+qQu21yn1C6Gf/Yy9OJPDSA6B2+7bQo970rV6cd67HOltx3wum4BaB3dbF
UsM/CEHTfHnDyVWLWIfW2CBfuAA5EhyoHzgkAy8KORhvTWjGGAcpe0Ik/4MuAtLA
3mWVcfiExlfL9g0Or4S7bQEs9XvbIm0w48EBpcL6LJVe1ZTI4E+QSnv/Pvmu057Z
5Pp9M+NJYMSgbM9mK1LB+aU7rtRphMLDeZqJGghIqVnkeTlX6XUvcFLspCm9xS5z
TfXA1gjtNNCsQN0BLk4ox95rihqa52agQSBU+6ECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRa67cc4aCC/wgoVRAaY2w+AeX+XjAfBgNVHSMEGDAWgBQaQhrORsXdWKKd
Rs2R+yj8OcVv7jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0drSWF6a2JGM1ZpaW5VYk5rZnNvX0RuRmItNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjYvOWM0OGEwLWQzY2QtNDRiMy05YWU2LTdkZmZjZTFkNmUyZC8x
L1d1dTNIT0dnZ3Y4SUtGVVFHbU5zUGdIbF9sNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjYv
OWM0OGEwLWQzY2QtNDRiMy05YWU2LTdkZmZjZTFkNmUyZC8xL0drSWF6a2JGM1Zp
aW5VYk5rZnNvX0RuRmItNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEArmugAMEArm5lDANBgkqhkiG9w0B
AQsFAAOCAQEAjUEOS5F1vSvG0CEYPZcxMgJuL5Jd15NxuL5cHySOAFd2uNDKlPGt
mSysBDnDUCjxC6AoAH54yeCmEpLSYTqZ4dtSwbo1OjImVpVEmPZRfOhPluoaneEl
BfM5PjBnQEtP/aOyWRLl9kuT1567ZVJTPYPACT8VAsjsLjSgZI0+tAbpvi5P4bMn
0plYTa+LRG9p96zhdcCz1KTHCoCS7BJ5bmnvW/6qOu72bcnQlmbL1lGpQTHcMG4c
r9uNd9LKq6ZKmUcGHuko0vC4DDNAkCUVoGymPDK3RWbFiClFMP8ra7vdFT51CR9r
8oIjYv4aDVlzjCfIyZ3VgKgXvgjDYfm55g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:29 2023 by rpki-client on console-fra.rpki-client.org