Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WCbrbsC5Lq1AZOZWPx4OUul1CE0.roa
File: WCbrbsC5Lq1AZOZWPx4OUul1CE0.roa (raw, json)
Hash identifier: bO0K0/SHmBcbd+0ysPwmmnFKT4RbK358urOtPM+N/+c=
Subject key identifier: 58:26:EB:6E:C0:B9:2E:AD:40:64:E6:56:3F:1E:0E:52:E9:75:08:4D
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0186E7062EE65A2D605295F9AEBFE40F9FC6
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WCbrbsC5Lq1AZOZWPx4OUul1CE0.roa
Signing time: Wed 15 Mar 2023 20:46:27 +0000
ROA not before: Wed 15 Mar 2023 20:46:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199417
IP address blocks: 2a0c:b641:9c0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e7:06:2e:e6:5a:2d:60:52:95:f9:ae:bf:e4:0f:9f:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Mar 15 20:46:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5826eb6ec0b92ead4064e6563f1e0e52e975084d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f6:10:49:43:c8:b6:3c:25:d4:68:e4:5b:2d:
98:58:4f:09:04:15:a5:1d:3d:5d:30:b0:24:a1:73:
d3:35:dc:83:a7:3a:b4:4d:c1:39:c0:77:7e:75:82:
8e:2f:ad:54:9a:ec:76:ea:4e:91:93:c6:b0:13:e6:
b6:53:92:8d:0c:79:7e:b4:e6:63:5b:11:37:82:dd:
91:9f:d5:4d:34:37:3a:b4:cc:2d:2c:3d:8b:43:99:
7e:58:c1:fe:9c:bc:3a:fa:e3:d0:a0:ad:da:c6:bb:
59:a7:f6:a6:c1:b9:7a:16:d4:5e:3d:3a:33:fb:90:
60:ac:c3:c7:8b:0f:d4:ea:d7:7f:77:d1:dd:a5:0d:
24:30:fd:55:d6:e8:ad:bb:b4:2e:a8:3c:cd:65:77:
47:e7:16:5c:e2:04:85:d9:b2:7b:4d:e4:e9:e5:8d:
23:37:41:96:06:79:3d:85:5e:f7:ab:e9:59:30:89:
c5:56:6a:c2:ca:6a:d0:a7:83:5f:01:d7:8c:20:4c:
dc:0c:e3:5a:22:6f:c0:7b:13:60:d6:9b:fd:53:d8:
e1:08:25:19:11:b9:08:ce:53:57:0d:5e:b2:e6:0a:
13:d4:dd:53:8d:5f:93:be:26:74:36:3e:97:0b:1a:
3b:90:29:d6:a2:ef:bf:ff:ff:81:fc:e6:da:18:9b:
42:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:26:EB:6E:C0:B9:2E:AD:40:64:E6:56:3F:1E:0E:52:E9:75:08:4D
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/WCbrbsC5Lq1AZOZWPx4OUul1CE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:9c0::/44
Signature Algorithm: sha256WithRSAEncryption
3e:32:a6:7c:fc:f9:56:f3:5c:0e:49:06:02:cd:54:64:03:c6:
1b:36:5a:03:99:9c:01:f1:6c:7d:71:e5:fd:76:08:58:31:79:
43:6e:4b:63:d4:e0:e5:57:a4:53:30:ea:13:a8:bf:5c:6b:2c:
23:f4:96:50:4e:a3:82:03:ee:3a:25:e9:60:5a:cb:d1:8c:a5:
fc:20:d8:1b:9e:fb:c1:93:85:03:cc:78:38:89:21:e7:eb:3a:
6a:2d:e9:97:5a:ee:12:5e:62:95:45:45:27:0f:10:b4:77:48:
3c:a7:41:66:8a:f6:9a:e8:6b:69:c2:c6:1f:f8:0f:67:b4:88:
bf:56:98:13:be:ce:dc:37:e0:7b:17:31:ab:0a:46:95:35:ac:
d7:61:6a:35:de:6a:eb:73:ce:fe:28:5c:b6:9a:7a:70:ab:60:
59:ec:be:55:e8:62:1c:9e:9e:4f:07:39:e1:01:58:e8:a9:4b:
ea:93:a5:18:bf:48:18:7c:39:02:e3:51:f9:1d:fa:c5:78:50:
66:e0:a8:03:9b:25:ec:3f:2a:9d:cb:bd:68:94:1a:27:d1:68:
a6:11:43:16:17:15:cc:80:2c:5d:47:ce:25:17:20:42:9a:6a:
7f:69:a4:22:72:dc:5f:be:ef:95:37:eb:b5:68:f7:b5:0b:99:
e9:44:1c:dc
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYbnBi7mWi1gUpX5rr/kD5/GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjMwMzE1MjA0NjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ODI2ZWI2ZWMwYjkyZWFkNDA2NGU2NTYzZjFlMGU1MmU5NzUwODRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhfYQSUPItjwl1GjkWy2YWE8JBBWl
HT1dMLAkoXPTNdyDpzq0TcE5wHd+dYKOL61Umux26k6Rk8awE+a2U5KNDHl+tOZj
WxE3gt2Rn9VNNDc6tMwtLD2LQ5l+WMH+nLw6+uPQoK3axrtZp/amwbl6FtRePToz
+5BgrMPHiw/U6td/d9HdpQ0kMP1V1uitu7QuqDzNZXdH5xZc4gSF2bJ7TeTp5Y0j
N0GWBnk9hV73q+lZMInFVmrCymrQp4NfAdeMIEzcDONaIm/AexNg1pv9U9jhCCUZ
EbkIzlNXDV6y5goT1N1TjV+TviZ0Nj6XCxo7kCnWou+///+B/ObaGJtCYwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFgm627AuS6tQGTmVj8eDlLpdQhNMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvV0NicmJzQzVMcTFBWk9aV1B4NE9VdWwxQ0UwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQnA
MA0GCSqGSIb3DQEBCwUAA4IBAQA+MqZ8/PlW81wOSQYCzVRkA8YbNloDmZwB8Wx9
ceX9dghYMXlDbktj1ODlV6RTMOoTqL9caywj9JZQTqOCA+46JelgWsvRjKX8INgb
nvvBk4UDzHg4iSHn6zpqLemXWu4SXmKVRUUnDxC0d0g8p0Fmivaa6GtpwsYf+A9n
tIi/VpgTvs7cN+B7FzGrCkaVNazXYWo13mrrc87+KFy2mnpwq2BZ7L5V6GIcnp5P
BznhAVjoqUvqk6UYv0gYfDkC41H5HfrFeFBm4KgDmyXsPyqdy71olBon0WimEUMW
FxXMgCxdR84lFyBCmmp/aaQictxfvu+VN+u1aPe1C5npRBzc
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:27:34 2025 by rpki-client