Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/WbDASLDTt0d39cV2VBk-JKH4aoY.roa
File: WbDASLDTt0d39cV2VBk-JKH4aoY.roa (raw, json)
Hash identifier: WIj+a4B6Zs9PxRb52ZE7Z2kNJh3EhfSrrWetskfnuJs=
Subject key identifier: 59:B0:C0:48:B0:D3:B7:47:77:F5:C5:76:54:19:3E:24:A1:F8:6A:86
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 06E558AA
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/WbDASLDTt0d39cV2VBk-JKH4aoY.roa
Signing time: Sat 01 Jan 2022 07:00:18 +0000
ROA not before: Sat 01 Jan 2022 07:00:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12886
IP address blocks: 213.209.128.0/24 maxlen: 24
213.209.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115693738 (0x6e558aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jan 1 07:00:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59b0c048b0d3b74777f5c57654193e24a1f86a86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:79:d6:f1:dc:e1:2c:20:ae:58:b4:eb:71:1e:
3e:fc:8d:48:0d:c4:a6:b6:e8:3c:2d:36:a8:bb:97:
7a:8e:45:2f:50:ee:00:89:41:3b:9e:a0:11:a1:20:
e9:6d:1a:2f:c4:65:d8:4a:fe:a4:69:d6:84:b3:52:
8a:d1:ff:d7:f5:56:e6:00:eb:b5:05:4c:17:70:ef:
77:f0:b7:c7:2c:4b:45:22:12:ab:eb:ba:7f:ce:63:
d8:25:16:75:b9:25:7c:d4:03:9a:0b:9d:c2:c3:f6:
4c:58:b8:0f:68:32:e4:4e:b6:bb:9d:5d:a1:07:b0:
cd:d6:5e:81:46:84:f8:b3:f4:76:25:e5:0b:ec:c9:
ac:3e:3b:31:2a:be:5d:cf:bb:8e:bd:94:3b:45:23:
c5:bc:67:74:3b:4c:b5:df:a3:72:c6:57:42:20:37:
ac:c6:06:00:fc:57:df:80:d0:08:1a:aa:57:ba:77:
59:c0:e7:55:0e:3a:ab:8e:bf:a0:19:99:bb:11:b1:
4a:00:aa:f2:f0:bd:9c:ee:4c:14:d0:18:7f:08:d2:
2b:4d:1c:6c:42:11:f7:30:17:47:e5:40:38:ac:a5:
5a:b3:1b:cb:5f:d2:0a:59:ce:14:4e:cb:e7:05:a9:
9f:9b:b5:75:2f:73:ce:2f:1d:d6:01:9c:9f:c3:89:
f1:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B0:C0:48:B0:D3:B7:47:77:F5:C5:76:54:19:3E:24:A1:F8:6A:86
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/WbDASLDTt0d39cV2VBk-JKH4aoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.209.128.0/24
213.209.142.0/24
Signature Algorithm: sha256WithRSAEncryption
93:94:2c:8b:b9:07:8b:59:32:bf:e6:26:00:38:20:17:8e:63:
20:3f:d2:7a:3f:16:f6:cd:7e:3d:d4:a8:30:58:f6:df:2f:cb:
6d:04:0c:a8:50:6b:7c:4b:d1:dd:c0:9d:96:1e:e1:43:a2:a9:
70:d9:02:a8:eb:cd:e5:b1:cd:c2:92:cf:50:98:ad:f3:78:2d:
db:77:7b:f7:bd:ee:b6:3b:70:80:3a:24:b7:ef:6c:30:d8:21:
95:cf:d8:00:64:26:61:43:2a:a9:43:09:e5:8a:62:0c:75:da:
69:8f:05:5a:98:1a:23:11:2c:3f:30:0e:1e:42:11:26:51:0d:
70:45:3d:50:5d:7d:63:5b:9d:62:ea:11:55:62:26:57:54:3e:
c0:98:26:32:60:11:fe:5e:dc:1f:77:07:9c:5d:e4:1d:2a:5e:
e6:bd:4a:05:23:47:0c:b8:a3:e1:78:eb:43:09:f0:36:9c:06:
2c:81:f5:d1:d8:36:d1:17:9e:aa:91:f6:05:d2:b2:a1:35:e2:
fb:fc:34:80:7d:4b:ae:74:c6:d2:32:e5:51:87:8c:11:14:fd:
fd:ae:46:7c:0d:92:ae:e5:42:87:f1:37:99:5d:c9:98:04:b6:
6f:6d:4c:97:43:a4:3f:fd:57:c9:49:1f:eb:ca:e8:27:37:05:
50:1b:1c:eb
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBuVYqjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YjQ3NmUxMmU4OTg3ZTViMzAyY2RjMjRiZGQ5ZGIzZmU4M2M4NDQ5MB4XDTIyMDEw
MTA3MDAxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTliMGMwNDhiMGQz
Yjc0Nzc3ZjVjNTc2NTQxOTNlMjRhMWY4NmE4NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKt51vHc4Swgrli063EePvyNSA3EprboPC02qLuXeo5FL1Du
AIlBO56gEaEg6W0aL8Rl2Er+pGnWhLNSitH/1/VW5gDrtQVMF3Dvd/C3xyxLRSIS
q+u6f85j2CUWdbklfNQDmgudwsP2TFi4D2gy5E62u51doQewzdZegUaE+LP0diXl
C+zJrD47MSq+Xc+7jr2UO0UjxbxndDtMtd+jcsZXQiA3rMYGAPxX34DQCBqqV7p3
WcDnVQ46q46/oBmZuxGxSgCq8vC9nO5MFNAYfwjSK00cbEIR9zAXR+VAOKylWrMb
y1/SClnOFE7L5wWpn5u1dS9zzi8d1gGcn8OJ8TMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRZsMBIsNO3R3f1xXZUGT4kofhqhjAfBgNVHSMEGDAWgBQ7R24S6Jh+WzAs
3CS92ds/6DyESTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L08wZHVFdWlZZmxzd0xOd2t2ZG5iUC1nOGhFay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8x
L1diREFTTERUdDBkMzljVjJWQmstSktINGFvWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
ZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8xL08wZHVFdWlZZmxz
d0xOd2t2ZG5iUC1nOGhFay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEANXRgAMEANXRjjANBgkqhkiG9w0B
AQsFAAOCAQEAk5Qsi7kHi1kyv+YmADggF45jID/Sej8W9s1+PdSoMFj23y/LbQQM
qFBrfEvR3cCdlh7hQ6KpcNkCqOvN5bHNwpLPUJit83gt23d7973utjtwgDokt+9s
MNghlc/YAGQmYUMqqUMJ5YpiDHXaaY8FWpgaIxEsPzAOHkIRJlENcEU9UF19Y1ud
YuoRVWImV1Q+wJgmMmAR/l7cH3cHnF3kHSpe5r1KBSNHDLij4XjrQwnwNpwGLIH1
0dg20ReeqpH2BdKyoTXi+/w0gH1LrnTG0jLlUYeMERT9/a5GfA2SruVCh/E3mV3J
mAS2b21Ml0OkP/1XyUkf68roJzcFUBsc6w==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org