Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/W73IrGzp8O2ZKkjaEm17Ky_lNrk.roa
File: W73IrGzp8O2ZKkjaEm17Ky_lNrk.roa (raw, json)
Hash identifier: 7bQtblCDi3OG2a/VJHRIVPdRW1+uii4nkapQ+Yr1nV8=
Subject key identifier: 5B:BD:C8:AC:6C:E9:F0:ED:99:2A:48:DA:12:6D:7B:2B:2F:E5:36:B9
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0182DAA8754DCBA4B7D015F1492103F2F1EF
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/W73IrGzp8O2ZKkjaEm17Ky_lNrk.roa
Signing time: Fri 26 Aug 2022 14:57:29 +0000
ROA not before: Fri 26 Aug 2022 14:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 272786
IP address blocks: 84.32.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:da:a8:75:4d:cb:a4:b7:d0:15:f1:49:21:03:f2:f1:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Aug 26 14:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bbdc8ac6ce9f0ed992a48da126d7b2b2fe536b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:50:29:fc:da:ad:48:74:38:18:f5:9f:6f:89:
af:42:ea:62:6f:42:8a:98:46:4f:88:20:32:84:52:
58:2a:50:9e:d6:1f:bc:46:73:61:28:b4:28:b5:81:
a4:75:d6:0e:aa:f0:cc:18:43:c1:6b:b3:75:6d:e8:
02:87:23:7a:2c:dc:55:a9:6b:46:5c:87:d5:56:dd:
66:d1:7c:e8:0c:a8:d6:c6:dd:34:f8:a7:f6:ba:d7:
11:ee:0f:21:69:d7:af:c6:4f:ad:67:fc:78:64:6b:
e6:a2:88:d1:51:90:92:21:d0:75:9c:65:00:af:22:
c1:14:88:b8:d1:7e:2b:8c:6c:aa:7e:df:d1:ae:83:
a8:f6:77:ba:94:de:a9:e2:ec:ce:a0:eb:3e:6c:f2:
ce:b0:2f:bd:7c:50:49:62:45:83:54:af:55:f8:d0:
38:0a:ef:c3:d0:0c:94:12:c9:4d:e9:38:57:4e:74:
80:d6:3c:3f:b2:a4:01:92:f3:d1:01:41:f6:d5:c1:
b8:2d:83:24:7c:15:3a:4c:0e:b1:56:02:ff:8a:31:
31:80:f4:80:66:89:35:38:4a:3f:3b:6a:6f:2a:87:
6d:55:17:52:a9:ca:34:46:07:af:22:a6:ae:67:0e:
0c:4d:24:d0:cb:a6:82:df:be:88:b0:4f:4e:be:00:
c8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:BD:C8:AC:6C:E9:F0:ED:99:2A:48:DA:12:6D:7B:2B:2F:E5:36:B9
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/W73IrGzp8O2ZKkjaEm17Ky_lNrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.32.0/24
Signature Algorithm: sha256WithRSAEncryption
38:c4:77:7d:84:6c:0c:42:38:4c:94:b1:e0:23:50:df:5c:44:
cb:59:2b:3a:d2:85:27:2b:f9:ff:f5:af:36:01:55:64:6d:6f:
ce:43:31:53:9c:7e:df:7c:ca:d7:b4:6d:48:95:d8:9d:1f:34:
1a:fc:9c:59:02:a7:2f:ba:44:e2:0b:ad:33:e7:10:ca:06:3b:
17:65:49:98:27:1d:32:08:51:c5:83:a8:a6:69:d6:27:f9:c6:
a2:b5:ea:7c:00:6c:92:06:8d:83:d9:29:92:1e:55:53:49:35:
fa:f6:10:8a:e5:e9:80:0a:1c:e0:d4:a7:0c:a2:06:ee:24:a3:
15:65:33:15:ca:1f:69:96:1d:b4:e5:6b:5b:7a:ea:b7:e4:dc:
74:1d:d6:16:1a:2f:e7:dc:5f:5e:5e:6c:94:7f:77:5c:71:63:
7f:d1:34:e9:0c:9c:70:04:c5:28:11:5a:cd:6e:f7:1b:37:c8:
2c:db:4b:33:ac:0a:f9:9c:ae:20:b7:2e:f4:96:bf:99:65:61:
c1:f0:56:39:5b:75:0a:be:fe:43:db:77:c0:4c:da:6a:93:1a:
b6:bc:93:65:06:d9:b1:27:3a:cc:13:ce:af:21:74:6a:77:38:
e0:6b:04:59:48:3a:0a:83:46:32:3d:61:45:ae:21:2c:0e:c6:
2a:b9:b0:04
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYLaqHVNy6S30BXxSSED8vHvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjIwODI2MTQ1NzI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YmJkYzhhYzZjZTlmMGVkOTkyYTQ4ZGExMjZkN2IyYjJmZTUzNmI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu1Ap/NqtSHQ4GPWfb4mvQupib0KK
mEZPiCAyhFJYKlCe1h+8RnNhKLQotYGkddYOqvDMGEPBa7N1begChyN6LNxVqWtG
XIfVVt1m0XzoDKjWxt00+Kf2utcR7g8hadevxk+tZ/x4ZGvmoojRUZCSIdB1nGUA
ryLBFIi40X4rjGyqft/RroOo9ne6lN6p4uzOoOs+bPLOsC+9fFBJYkWDVK9V+NA4
Cu/D0AyUEslN6ThXTnSA1jw/sqQBkvPRAUH21cG4LYMkfBU6TA6xVgL/ijExgPSA
Zok1OEo/O2pvKodtVRdSqco0RgevIqauZw4MTSTQy6aC376IsE9OvgDIWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFu9yKxs6fDtmSpI2hJteysv5Ta5MB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvVzczSXJHenA4TzJaS2tqYUVtMTdLeV9sTnJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVCAgMA0G
CSqGSIb3DQEBCwUAA4IBAQA4xHd9hGwMQjhMlLHgI1DfXETLWSs60oUnK/n/9a82
AVVkbW/OQzFTnH7ffMrXtG1IldidHzQa/JxZAqcvukTiC60z5xDKBjsXZUmYJx0y
CFHFg6imadYn+caitep8AGySBo2D2SmSHlVTSTX69hCK5emAChzg1KcMogbuJKMV
ZTMVyh9plh205Wtbeuq35Nx0HdYWGi/n3F9eXmyUf3dccWN/0TTpDJxwBMUoEVrN
bvcbN8gs20szrAr5nK4gty70lr+ZZWHB8FY5W3UKvv5D23fATNpqkxq2vJNlBtmx
JzrME86vIXRqdzjgawRZSDoKg0YyPWFFriEsDsYqubAE
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:30 2023 by rpki-client on console-ams.rpki-client.org