Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/6e43b9-c6a7-4d51-8061-06c8bb374a58/1/wOhP_lve160s3T5_FXABDoaXl5A.roa
File: wOhP_lve160s3T5_FXABDoaXl5A.roa (raw, json)
Hash identifier: qnAWHfGA9+oqlHoaLtnr2BSurXhGZK5PyxykdJEAbcU=
Subject key identifier: C0:E8:4F:FE:5B:DE:D7:AD:2C:DD:3E:7F:15:70:01:0E:86:97:97:90
Certificate issuer: /CN=e06536d2b17c45c175739f3313119be219d331ac
Certificate serial: 0487C66F
Authority key identifier: E0:65:36:D2:B1:7C:45:C1:75:73:9F:33:13:11:9B:E2:19:D3:31:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4GU20rF8RcF1c58zExGb4hnTMaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/6e43b9-c6a7-4d51-8061-06c8bb374a58/1/wOhP_lve160s3T5_FXABDoaXl5A.roa
Signing time: Sat 01 Jan 2022 14:55:54 +0000
ROA not before: Sat 01 Jan 2022 14:55:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15576
IP address blocks: 188.92.224.0/21 maxlen: 21
185.254.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76007023 (0x487c66f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e06536d2b17c45c175739f3313119be219d331ac
Validity
Not Before: Jan 1 14:55:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0e84ffe5bded7ad2cdd3e7f1570010e86979790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ce:ee:7d:42:34:af:13:8e:73:82:48:ca:da:
5b:1f:49:fa:2f:3b:25:cf:00:19:9d:ba:48:ee:60:
74:af:e7:09:09:ea:90:50:02:6f:6b:93:a7:5a:ee:
1a:c3:8e:3d:4d:09:73:86:14:b9:76:42:9b:5d:04:
54:80:84:32:8c:b4:e3:5a:da:6e:73:3f:c8:7e:f6:
72:ab:79:b2:87:04:f8:b4:a5:22:43:2e:af:ac:7f:
06:fc:0d:de:24:c0:e8:58:58:87:d3:1e:9f:c2:8d:
df:f0:47:ad:44:ff:3b:af:0b:ac:92:ea:d5:8a:66:
fb:25:46:12:66:8d:26:f7:8c:6a:9e:ef:11:65:43:
41:c7:db:cd:16:5a:12:80:7a:bd:5e:e9:99:3f:aa:
b5:53:85:4a:50:09:43:7d:53:0e:b9:58:51:39:1e:
18:22:4a:8b:12:b8:54:5e:fd:01:28:c2:ca:82:06:
5c:a4:bc:be:d8:06:ff:e4:84:02:55:e2:8a:fb:15:
94:47:4f:21:cf:e4:35:ae:3a:9d:5b:41:a7:b2:e0:
61:31:71:f5:d6:c4:f0:4e:de:62:20:53:e8:80:a3:
25:e1:41:96:2b:3c:a5:ed:22:15:3c:e6:8a:e8:f9:
c8:09:33:27:51:92:7e:38:8f:6a:2d:12:98:96:88:
b8:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E8:4F:FE:5B:DE:D7:AD:2C:DD:3E:7F:15:70:01:0E:86:97:97:90
X509v3 Authority Key Identifier:
keyid:E0:65:36:D2:B1:7C:45:C1:75:73:9F:33:13:11:9B:E2:19:D3:31:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4GU20rF8RcF1c58zExGb4hnTMaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/6e43b9-c6a7-4d51-8061-06c8bb374a58/1/wOhP_lve160s3T5_FXABDoaXl5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/6e43b9-c6a7-4d51-8061-06c8bb374a58/1/4GU20rF8RcF1c58zExGb4hnTMaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.76.0/22
188.92.224.0/21
Signature Algorithm: sha256WithRSAEncryption
54:9f:41:1c:e9:86:fc:dc:1d:73:1f:0d:4e:ec:bb:8c:6f:98:
05:99:6e:4e:7e:54:da:44:3c:73:94:aa:9c:22:3a:01:a0:e0:
75:f2:e0:49:33:71:58:b7:4e:78:e5:e1:e6:06:e4:27:e8:45:
d8:62:af:10:4f:66:1e:1f:4d:d6:d7:be:a2:2e:5b:4e:77:e9:
d2:c4:ff:ab:07:de:69:47:8f:a8:9d:80:ba:4c:d1:2b:33:d8:
b3:13:5e:0d:bf:e5:3c:31:4c:37:99:0b:0b:ca:26:8d:db:c1:
af:77:0a:60:5e:b3:83:04:62:1a:83:91:72:2d:80:ef:44:04:
be:8b:15:ea:89:75:78:02:f1:d3:11:51:f9:9b:f2:7f:2c:40:
82:c8:bf:54:f1:9d:f3:97:f6:1a:bd:4d:fe:1f:76:61:74:e2:
05:90:c4:16:e8:70:42:38:65:6d:2c:1f:04:cd:67:5e:1b:b6:
fd:ff:95:7a:53:02:03:48:b2:21:9f:2b:c0:b3:38:59:28:b0:
96:bb:1f:04:68:33:ce:d6:80:41:6b:c5:c7:7c:34:e0:8a:ad:
ac:f8:eb:dc:1e:a3:2e:03:97:0b:78:e7:81:2b:09:40:81:ff:
01:17:48:ed:20:4d:7c:a3:b3:91:7b:fb:3f:74:74:3e:f3:f3:
fa:24:b5:aa
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBIfGbzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MDY1MzZkMmIxN2M0NWMxNzU3MzlmMzMxMzExOWJlMjE5ZDMzMWFjMB4XDTIyMDEw
MTE0NTU1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzBlODRmZmU1YmRl
ZDdhZDJjZGQzZTdmMTU3MDAxMGU4Njk3OTc5MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKPO7n1CNK8TjnOCSMraWx9J+i87Jc8AGZ26SO5gdK/nCQnq
kFACb2uTp1ruGsOOPU0Jc4YUuXZCm10EVICEMoy041rabnM/yH72cqt5socE+LSl
IkMur6x/BvwN3iTA6FhYh9Men8KN3/BHrUT/O68LrJLq1Ypm+yVGEmaNJveMap7v
EWVDQcfbzRZaEoB6vV7pmT+qtVOFSlAJQ31TDrlYUTkeGCJKixK4VF79ASjCyoIG
XKS8vtgG/+SEAlXiivsVlEdPIc/kNa46nVtBp7LgYTFx9dbE8E7eYiBT6ICjJeFB
lis8pe0iFTzmiuj5yAkzJ1GSfjiPai0SmJaIuKcCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTA6E/+W97XrSzdPn8VcAEOhpeXkDAfBgNVHSMEGDAWgBTgZTbSsXxFwXVz
nzMTEZviGdMxrDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRHVTIwckY4UmNGMWM1OHpFeEdiNGhuVE1hdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzMvNmU0M2I5LWM2YTctNGQ1MS04MDYxLTA2YzhiYjM3NGE1OC8x
L3dPaFBfbHZlMTYwczNUNV9GWEFCRG9hWGw1QS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzMv
NmU0M2I5LWM2YTctNGQ1MS04MDYxLTA2YzhiYjM3NGE1OC8xLzRHVTIwckY4UmNG
MWM1OHpFeEdiNGhuVE1hdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEArn+TAMEA7xc4DANBgkqhkiG9w0B
AQsFAAOCAQEAVJ9BHOmG/Nwdcx8NTuy7jG+YBZluTn5U2kQ8c5SqnCI6AaDgdfLg
STNxWLdOeOXh5gbkJ+hF2GKvEE9mHh9N1te+oi5bTnfp0sT/qwfeaUePqJ2AukzR
KzPYsxNeDb/lPDFMN5kLC8omjdvBr3cKYF6zgwRiGoORci2A70QEvosV6ol1eALx
0xFR+ZvyfyxAgsi/VPGd85f2Gr1N/h92YXTiBZDEFuhwQjhlbSwfBM1nXhu2/f+V
elMCA0iyIZ8rwLM4WSiwlrsfBGgzztaAQWvFx3w04IqtrPjr3B6jLgOXC3jngSsJ
QIH/ARdI7SBNfKOzkXv7P3R0PvPz+iS1qg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:17 2023 by rpki-client on console-fra.rpki-client.org