Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/WIFZqGHEQ_NSvYyluJvIxAkUPtE.roa
File: WIFZqGHEQ_NSvYyluJvIxAkUPtE.roa (raw, json)
Hash identifier: 0Cfu/oOzEHEFoDbO+dWgA9cuBc7Gtd3Or46xJXoXTWA=
Subject key identifier: 58:81:59:A8:61:C4:43:F3:52:BD:8C:A5:B8:9B:C8:C4:09:14:3E:D1
Certificate issuer: /CN=83bf36eb18ef9a57c5fb603ada400fe6b6688e6e
Certificate serial: 026BF0F1
Authority key identifier: 83:BF:36:EB:18:EF:9A:57:C5:FB:60:3A:DA:40:0F:E6:B6:68:8E:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g7826xjvmlfF-2A62kAP5rZojm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/WIFZqGHEQ_NSvYyluJvIxAkUPtE.roa
Signing time: Sat 22 Jan 2022 12:01:02 +0000
ROA not before: Sat 22 Jan 2022 12:01:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25591
IP address blocks: 80.242.96.0/22 maxlen: 22
80.242.104.0/22 maxlen: 22
80.242.100.0/22 maxlen: 22
80.242.108.0/22 maxlen: 22
185.14.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40628465 (0x26bf0f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83bf36eb18ef9a57c5fb603ada400fe6b6688e6e
Validity
Not Before: Jan 22 12:01:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=588159a861c443f352bd8ca5b89bc8c409143ed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:e4:fd:10:d0:f3:20:27:55:bf:04:af:5a:51:
67:6f:a1:56:c7:4a:62:65:cb:a3:44:55:7f:78:ef:
fe:d9:85:9f:3a:88:f5:ea:44:81:da:7f:d7:95:ae:
b0:72:c1:fc:e9:42:78:ca:dd:a4:46:b3:1e:97:37:
3e:cd:57:e4:9c:da:da:26:80:6b:93:98:00:a5:78:
d3:61:3c:29:10:4c:44:b4:74:56:f1:88:14:4e:b6:
25:95:0b:27:09:ef:d2:f0:b2:59:75:2b:3e:47:d1:
6a:9b:af:d5:b3:3f:94:cb:da:6f:27:d9:11:a0:d3:
70:a9:61:99:d9:ac:6c:e5:24:d2:31:76:ca:19:94:
62:f3:6b:68:94:4e:3e:a8:bf:9e:0b:01:3d:a6:fd:
e8:45:21:e8:0e:68:36:62:0d:ab:fb:78:f2:4f:07:
b5:cb:16:ec:7e:2c:30:ec:20:64:2d:b4:5a:c0:dc:
9c:f3:1d:73:0b:bd:24:de:f2:06:6c:9b:e2:55:44:
1e:15:45:63:0d:78:27:96:04:3d:aa:a7:55:72:47:
8a:6d:01:26:fb:1f:a9:c3:99:c3:2a:df:95:76:95:
6d:ce:db:75:10:d5:89:e0:3a:ad:ab:b6:0f:44:82:
7a:d8:89:a5:49:b9:09:43:89:de:ef:9d:15:0b:4e:
a9:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:81:59:A8:61:C4:43:F3:52:BD:8C:A5:B8:9B:C8:C4:09:14:3E:D1
X509v3 Authority Key Identifier:
keyid:83:BF:36:EB:18:EF:9A:57:C5:FB:60:3A:DA:40:0F:E6:B6:68:8E:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g7826xjvmlfF-2A62kAP5rZojm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/WIFZqGHEQ_NSvYyluJvIxAkUPtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/g7826xjvmlfF-2A62kAP5rZojm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.242.96.0/20
185.14.16.0/22
Signature Algorithm: sha256WithRSAEncryption
04:b3:be:f9:71:0f:e2:34:6e:54:0c:0b:a4:6c:0e:5d:98:92:
a4:a3:f8:0e:ec:53:07:04:9e:ed:3d:e9:99:c3:af:00:4e:fb:
b7:21:9c:ab:de:24:79:c8:86:55:0a:f7:f1:ec:a1:57:d2:da:
b8:87:ea:ad:1e:88:9c:2e:0a:64:3e:f0:4e:88:4a:b6:c2:ae:
5a:34:14:00:05:ff:b6:12:16:f3:68:fd:61:57:07:24:51:10:
fe:87:aa:3e:0a:c0:80:ed:fc:e3:3b:07:6d:17:85:1d:9a:69:
2f:e1:1b:35:a4:66:f6:f0:1e:3c:87:e6:fe:6f:b3:91:49:fa:
d2:41:02:f2:3d:4f:c0:a5:69:fc:1e:56:0b:df:70:b5:4f:85:
80:e8:53:22:37:aa:e7:b9:11:cf:49:8d:cf:38:7f:dd:6f:2b:
7e:74:75:1e:9a:05:22:51:33:65:13:c5:23:e6:40:f2:3e:54:
fc:c0:19:e9:6a:66:f7:73:d9:2e:79:ca:8e:29:fd:b7:30:a6:
21:24:63:4a:18:0c:6c:df:ac:43:9c:af:f7:44:8f:b5:3a:4f:
e3:e1:58:19:5c:7e:e1:10:ab:36:30:77:71:49:e6:58:b1:e8:
77:b8:6a:b6:a9:0c:10:78:eb:06:1b:8a:d1:b1:72:62:a7:0a:
20:b9:ad:34
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAmvw8TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
M2JmMzZlYjE4ZWY5YTU3YzVmYjYwM2FkYTQwMGZlNmI2Njg4ZTZlMB4XDTIyMDEy
MjEyMDEwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTg4MTU5YTg2MWM0
NDNmMzUyYmQ4Y2E1Yjg5YmM4YzQwOTE0M2VkMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOjk/RDQ8yAnVb8Er1pRZ2+hVsdKYmXLo0RVf3jv/tmFnzqI
9epEgdp/15WusHLB/OlCeMrdpEazHpc3Ps1X5Jza2iaAa5OYAKV402E8KRBMRLR0
VvGIFE62JZULJwnv0vCyWXUrPkfRapuv1bM/lMvabyfZEaDTcKlhmdmsbOUk0jF2
yhmUYvNraJROPqi/ngsBPab96EUh6A5oNmINq/t48k8HtcsW7H4sMOwgZC20WsDc
nPMdcwu9JN7yBmyb4lVEHhVFYw14J5YEPaqnVXJHim0BJvsfqcOZwyrflXaVbc7b
dRDVieA6rau2D0SCetiJpUm5CUOJ3u+dFQtOqTECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRYgVmoYcRD81K9jKW4m8jECRQ+0TAfBgNVHSMEGDAWgBSDvzbrGO+aV8X7
YDraQA/mtmiObjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2c3ODI2eGp2bWxmRi0yQTYya0FQNXJab2ptNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzIvZjc3ZDUxLWVlMWMtNDdhOS05MGJjLWUwZDJhMWI2ZThhYy8x
L1dJRlpxR0hFUV9OU3ZZeWx1SnZJeEFrVVB0RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzIv
Zjc3ZDUxLWVlMWMtNDdhOS05MGJjLWUwZDJhMWI2ZThhYy8xL2c3ODI2eGp2bWxm
Ri0yQTYya0FQNXJab2ptNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEBFDyYAMEArkOEDANBgkqhkiG9w0B
AQsFAAOCAQEABLO++XEP4jRuVAwLpGwOXZiSpKP4DuxTBwSe7T3pmcOvAE77tyGc
q94keciGVQr38eyhV9LauIfqrR6InC4KZD7wTohKtsKuWjQUAAX/thIW82j9YVcH
JFEQ/oeqPgrAgO384zsHbReFHZppL+EbNaRm9vAePIfm/m+zkUn60kEC8j1PwKVp
/B5WC99wtU+FgOhTIjeq57kRz0mNzzh/3W8rfnR1HpoFIlEzZRPFI+ZA8j5U/MAZ
6Wpm93PZLnnKjin9tzCmISRjShgMbN+sQ5yv90SPtTpP4+FYGVx+4RCrNjB3cUnm
WLHod7hqtqkMEHjrBhuK0bFyYqcKILmtNA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:47 2025 by rpki-client