Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/WYo7u2fzvh7K2IyX7VxVsn3ZSwM.roa
File: WYo7u2fzvh7K2IyX7VxVsn3ZSwM.roa (raw, json)
Hash identifier: RZzTnpkddKM1UPvnzyx/NSynGzf824VaoyAVznfP9xo=
Subject key identifier: 59:8A:3B:BB:67:F3:BE:1E:CA:D8:8C:97:ED:5C:55:B2:7D:D9:4B:03
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 0AB2568B
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/WYo7u2fzvh7K2IyX7VxVsn3ZSwM.roa
Signing time: Sat 01 Jan 2022 12:00:26 +0000
ROA not before: Sat 01 Jan 2022 12:00:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61420
IP address blocks: 176.41.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179459723 (0xab2568b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 1 12:00:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=598a3bbb67f3be1ecad88c97ed5c55b27dd94b03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f4:4f:39:31:7f:1c:68:b7:0b:cf:79:77:88:
7a:d7:53:9b:6d:6c:10:3f:8f:6e:b9:ec:73:b3:ea:
3b:83:0a:0e:09:31:d5:02:43:26:0f:75:35:ff:93:
ba:7d:24:9e:c6:a9:d1:46:5a:69:5d:27:4c:91:18:
af:47:d4:d8:ad:b4:13:a9:d3:a5:ec:75:4b:56:70:
00:b1:cf:75:71:0f:4c:2d:dc:6f:31:89:25:10:91:
9e:9c:08:cd:45:f6:26:9c:06:c7:48:58:3f:10:61:
43:5f:e2:c1:85:61:f1:5c:50:9c:61:de:95:cd:9a:
6d:69:4c:14:11:b6:01:b7:8f:02:03:c1:cc:75:ca:
f1:ac:61:1f:28:39:6e:bd:ba:79:39:c9:8e:7b:73:
a6:6b:98:03:f2:36:64:4a:6b:82:68:17:6b:a2:dd:
ff:ce:1c:25:3d:02:ce:94:70:93:b0:f5:64:6e:8c:
f8:13:56:16:20:ad:ae:9a:59:f9:70:be:58:44:9c:
72:8d:6f:17:a1:67:2a:87:b5:e4:61:3a:8c:23:cf:
7c:fd:a6:ee:48:29:79:68:20:43:b9:86:2a:e3:c2:
0c:4b:28:3d:96:4d:19:a6:d9:1b:5b:49:c6:c1:1a:
ba:f8:3c:49:19:20:69:e3:a8:f9:01:34:32:bf:1c:
21:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:8A:3B:BB:67:F3:BE:1E:CA:D8:8C:97:ED:5C:55:B2:7D:D9:4B:03
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/WYo7u2fzvh7K2IyX7VxVsn3ZSwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.41.133.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:65:c1:3f:98:db:c1:cf:bc:10:7d:d5:d6:6b:3f:56:b5:54:
0c:36:36:4c:a6:fb:dd:c3:bb:e9:81:d6:3a:c2:0c:0e:e8:6a:
ce:25:96:12:12:d6:55:9d:30:f0:97:20:a9:af:c6:ba:37:20:
ef:28:9f:20:47:55:0f:f0:7a:13:29:9b:97:1e:9a:cc:43:49:
6c:62:36:47:bb:36:21:c6:d9:ea:03:3c:74:97:43:d3:5d:54:
e4:be:f4:c4:12:89:58:cd:b6:97:ea:19:af:f6:16:b6:f0:bc:
fd:93:fc:a4:a6:1f:3f:84:23:ba:a5:24:d3:fe:5f:62:1c:44:
81:0a:a0:a0:3a:19:ab:d9:0b:2b:5e:0e:c6:e5:cc:71:af:b2:
14:25:c7:33:92:79:b0:0b:20:c0:f4:4b:ca:76:dc:ab:aa:63:
b3:ef:8c:53:10:0a:37:53:f8:dc:48:3f:3d:5c:9e:6d:d1:ef:
f3:cf:2b:5f:b3:42:a9:3d:e8:1f:b9:17:30:ae:7f:ae:a8:73:
b9:5c:18:46:d4:ba:dc:73:82:00:dd:9b:bc:36:45:96:49:4c:
72:0d:20:ff:a2:c8:2e:d2:a2:5d:1b:35:11:e1:da:ab:16:d3:
f6:35:7b:ac:30:d4:51:40:1e:3c:be:ae:97:ef:05:3b:d6:67:
9b:79:67:fb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECrJWizANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YTlkMzBlNjAzNWJlOGI4Mzg2MDYxZjI3MTQ4MWM3MDdlMDRjZTJiMB4XDTIyMDEw
MTEyMDAyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTk4YTNiYmI2N2Yz
YmUxZWNhZDg4Yzk3ZWQ1YzU1YjI3ZGQ5NGIwMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMH0TzkxfxxotwvPeXeIetdTm21sED+Pbrnsc7PqO4MKDgkx
1QJDJg91Nf+Tun0knsap0UZaaV0nTJEYr0fU2K20E6nTpex1S1ZwALHPdXEPTC3c
bzGJJRCRnpwIzUX2JpwGx0hYPxBhQ1/iwYVh8VxQnGHelc2abWlMFBG2AbePAgPB
zHXK8axhHyg5br26eTnJjntzpmuYA/I2ZEprgmgXa6Ld/84cJT0CzpRwk7D1ZG6M
+BNWFiCtrppZ+XC+WEScco1vF6FnKoe15GE6jCPPfP2m7kgpeWggQ7mGKuPCDEso
PZZNGabZG1tJxsEauvg8SRkgaeOo+QE0Mr8cIXsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRZiju7Z/O+HsrYjJftXFWyfdlLAzAfBgNVHSMEGDAWgBS6nTDmA1vouDhg
YfJxSBxwfgTOKzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VwMHc1Z05iNkxnNFlHSHljVWdjY0g0RXppcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzYvYWM5YzMyLTdkYmMtNGQ2Yy1iYzA4LTVkNTg0ZmJjNWQyNy8x
L1dZbzd1MmZ6dmg3SzJJeVg3VnhWc24zWlN3TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzYv
YWM5YzMyLTdkYmMtNGQ2Yy1iYzA4LTVkNTg0ZmJjNWQyNy8xL3VwMHc1Z05iNkxn
NFlHSHljVWdjY0g0RXppcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALAphTANBgkqhkiG9w0BAQsFAAOC
AQEAPGXBP5jbwc+8EH3V1ms/VrVUDDY2TKb73cO76YHWOsIMDuhqziWWEhLWVZ0w
8Jcgqa/Gujcg7yifIEdVD/B6Eymblx6azENJbGI2R7s2IcbZ6gM8dJdD011U5L70
xBKJWM22l+oZr/YWtvC8/ZP8pKYfP4QjuqUk0/5fYhxEgQqgoDoZq9kLK14OxuXM
ca+yFCXHM5J5sAsgwPRLynbcq6pjs++MUxAKN1P43Eg/PVyebdHv888rX7NCqT3o
H7kXMK5/rqhzuVwYRtS63HOCAN2bvDZFlklMcg0g/6LILtKiXRs1EeHaqxbT9jV7
rDDUUUAePL6ul+8FO9Znm3ln+w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org