Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/wi9XN5Ww1GqBmPvdMQZG5ypIYqY.roa
File: wi9XN5Ww1GqBmPvdMQZG5ypIYqY.roa (raw, json)
Hash identifier: LtRx88sCFp2Qud/eCst0gxj+LQhILYq1TQ+QuHs1Sgc=
Subject key identifier: C2:2F:57:37:95:B0:D4:6A:81:98:FB:DD:31:06:46:E7:2A:48:62:A6
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 0655F546
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/wi9XN5Ww1GqBmPvdMQZG5ypIYqY.roa
Signing time: Fri 18 Feb 2022 18:14:13 +0000
ROA not before: Fri 18 Feb 2022 18:14:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.137.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106296646 (0x655f546)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Feb 18 18:14:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c22f573795b0d46a8198fbdd310646e72a4862a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6c:bd:e1:bf:8f:3c:5e:e8:70:be:fa:c8:df:
2b:33:49:89:99:a6:0e:fa:e2:cc:4c:36:04:58:9d:
d9:f6:cb:73:9c:c1:aa:41:01:9b:39:33:71:81:27:
0b:70:af:0f:49:25:bc:39:aa:ed:da:82:9d:7d:0e:
0f:34:94:a5:b8:cf:a9:7f:33:ac:c0:ac:f8:99:62:
ef:ff:9b:d6:9d:1d:52:3a:84:3b:0d:3a:47:0a:e3:
2f:1a:68:6b:d1:96:28:ee:1a:0e:d9:71:60:7f:5b:
ac:75:82:e1:00:00:ad:1b:73:66:72:7d:51:28:bb:
85:90:48:93:6e:e3:90:1d:8d:79:0d:e2:79:a7:a4:
69:6f:2f:cf:51:3f:14:a8:64:1d:23:56:5b:28:cc:
8a:d3:49:a0:9e:46:5f:72:24:73:93:0c:df:d9:99:
a8:e2:67:8a:98:22:38:7f:6f:72:b9:c8:fa:96:1b:
b7:02:a4:8e:e5:e3:59:14:e1:27:30:70:a2:d2:82:
5e:04:44:f7:fa:14:7a:ed:01:fe:07:7e:76:e0:09:
9e:5b:cc:ec:46:11:14:42:ec:cb:1b:ea:05:50:6e:
6c:5f:15:8f:cf:50:d8:10:e7:2b:86:d4:da:fb:45:
fe:a9:ef:f1:2a:ce:df:79:0b:22:6f:df:97:8d:f7:
b4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:2F:57:37:95:B0:D4:6A:81:98:FB:DD:31:06:46:E7:2A:48:62:A6
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/wi9XN5Ww1GqBmPvdMQZG5ypIYqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.137.78.0/24
Signature Algorithm: sha256WithRSAEncryption
86:a9:28:44:f6:36:e0:21:2f:b0:d7:79:fd:d9:04:ff:3b:95:
9b:d5:ed:75:33:bb:bd:6f:f9:38:ad:f8:71:dc:23:b7:ff:0c:
89:4f:07:28:e9:fb:f4:ed:73:95:3f:fb:50:45:f3:34:43:17:
a4:28:25:8b:82:82:53:51:15:c9:2e:bc:4d:05:de:43:9e:13:
38:96:23:70:69:1b:cb:1d:ba:4a:13:6f:41:d7:d8:bd:1a:55:
dc:4e:f8:02:33:ac:8f:b7:72:84:a3:59:a7:c4:80:44:7a:8e:
fa:d7:f5:d3:ff:48:8d:c4:e3:61:3e:0f:13:1e:da:5d:fd:4c:
0f:4a:c1:2f:dd:ac:4d:dc:0b:cb:b9:18:b6:03:d7:00:ca:0c:
d2:72:00:ef:fb:67:a0:a7:3f:4b:e2:aa:39:00:3c:1a:70:99:
49:e1:fe:d9:85:3f:db:54:69:3f:e9:7f:9c:dd:fb:5d:3f:7a:
43:9f:b8:f8:18:6e:53:89:4f:94:2f:31:ae:2f:20:51:c0:ab:
47:9f:b9:ef:41:ed:00:7c:3c:46:7d:69:f8:38:db:65:ac:46:
e3:6e:70:ea:a8:17:5e:81:4a:a6:f6:25:43:3e:f9:cb:df:9c:
c3:ec:db:e4:27:e8:40:0e:19:85:0d:4c:2a:d7:7e:0e:0b:0c:
3a:fd:3f:b9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBlX1RjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
OWFjMGFjYmZkYjdhMjc0ZWYzNmMxNmY1ODYwYWRhMmEyNDcwNjk3MB4XDTIyMDIx
ODE4MTQxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzIyZjU3Mzc5NWIw
ZDQ2YTgxOThmYmRkMzEwNjQ2ZTcyYTQ4NjJhNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL5sveG/jzxe6HC++sjfKzNJiZmmDvrizEw2BFid2fbLc5zB
qkEBmzkzcYEnC3CvD0klvDmq7dqCnX0ODzSUpbjPqX8zrMCs+Jli7/+b1p0dUjqE
Ow06RwrjLxpoa9GWKO4aDtlxYH9brHWC4QAArRtzZnJ9USi7hZBIk27jkB2NeQ3i
eaekaW8vz1E/FKhkHSNWWyjMitNJoJ5GX3Ikc5MM39mZqOJnipgiOH9vcrnI+pYb
twKkjuXjWRThJzBwotKCXgRE9/oUeu0B/gd+duAJnlvM7EYRFELsyxvqBVBubF8V
j89Q2BDnK4bU2vtF/qnv8SrO33kLIm/fl433tJ8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTCL1c3lbDUaoGY+90xBkbnKkhipjAfBgNVHSMEGDAWgBSJrArL/beidO82
wW9YYK2iokcGlzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lhd0t5XzIzb25Udk5zRnZXR0N0b3FKSEJwYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzEvOTNhNzY4LTI2NzctNDhkNi05MTRjLWQ0ZGJmNzA2NmZkMy8x
L3dpOVhONVd3MUdxQm1QdmRNUVpHNXlwSVlxWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzEv
OTNhNzY4LTI2NzctNDhkNi05MTRjLWQ0ZGJmNzA2NmZkMy8xL2lhd0t5XzIzb25U
dk5zRnZXR0N0b3FKSEJwYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF6JTjANBgkqhkiG9w0BAQsFAAOC
AQEAhqkoRPY24CEvsNd5/dkE/zuVm9XtdTO7vW/5OK34cdwjt/8MiU8HKOn79O1z
lT/7UEXzNEMXpCgli4KCU1EVyS68TQXeQ54TOJYjcGkbyx26ShNvQdfYvRpV3E74
AjOsj7dyhKNZp8SARHqO+tf10/9IjcTjYT4PEx7aXf1MD0rBL92sTdwLy7kYtgPX
AMoM0nIA7/tnoKc/S+KqOQA8GnCZSeH+2YU/21RpP+l/nN37XT96Q5+4+BhuU4lP
lC8xri8gUcCrR5+570HtAHw8Rn1p+DjbZaxG425w6qgXXoFKpvYlQz75y9+cw+zb
5CfoQA4ZhQ1MKtd+DgsMOv0/uQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:57 2023 by rpki-client on console-ams.rpki-client.org