Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/WUZAb-HEodHuM68ma1cj3WaXmxA.roa
File: WUZAb-HEodHuM68ma1cj3WaXmxA.roa (raw, json)
Hash identifier: n1Owv3FoRato/n46UvQjSyA6AocQo5r6303myZmZ2vI=
Subject key identifier: 59:46:40:6F:E1:C4:A1:D1:EE:33:AF:26:6B:57:23:DD:66:97:9B:10
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0184C4FCEE36DCEB812E4AC49754EB8DF54B
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/WUZAb-HEodHuM68ma1cj3WaXmxA.roa
Signing time: Tue 29 Nov 2022 20:03:41 +0000
ROA not before: Tue 29 Nov 2022 20:03:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 84.32.216.0/22 maxlen: 24
84.32.230.0/24 maxlen: 24
84.32.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c4:fc:ee:36:dc:eb:81:2e:4a:c4:97:54:eb:8d:f5:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 29 20:03:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5946406fe1c4a1d1ee33af266b5723dd66979b10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:05:d4:80:be:9d:2e:f8:6b:2e:ab:c4:49:7b:
24:fb:02:d5:0a:b2:f9:05:9a:13:95:74:e9:14:94:
1f:34:f9:8e:47:90:0d:85:86:8d:ff:c4:82:a4:96:
fb:79:09:56:34:a5:15:84:70:23:34:22:f6:ad:c1:
ae:79:1a:81:ac:c5:a9:81:41:23:cc:ea:43:6c:bf:
ee:a6:f4:85:ce:fb:fe:2a:85:87:30:f8:50:1c:50:
22:6c:37:5c:97:0d:0c:c8:4a:02:bd:bd:3d:e1:bf:
87:25:6c:0d:a2:1a:e7:0f:1e:d5:c9:d6:bd:d6:23:
aa:29:85:12:81:2a:5e:88:26:b5:9b:a0:6f:64:b9:
8a:99:02:9f:ca:18:5d:91:5a:af:9f:1a:fe:89:3e:
48:09:b4:26:5d:e0:a3:18:cb:a6:5c:68:c9:c3:39:
1f:e4:81:d8:29:b5:17:eb:a5:34:2f:45:6f:8f:73:
ef:60:d0:05:9f:d4:f3:41:14:a8:ee:f5:c4:8c:6e:
0a:22:c8:fa:e9:a0:e0:87:87:5a:f1:3d:e2:7a:7c:
42:a4:9b:f1:66:cd:0f:43:e9:df:8c:85:0b:3f:ae:
c2:17:00:9f:3e:b9:c7:5a:35:fb:de:43:a2:90:46:
e7:4e:ce:6e:f8:83:fe:b0:e0:77:f7:09:3c:48:d4:
3b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:46:40:6F:E1:C4:A1:D1:EE:33:AF:26:6B:57:23:DD:66:97:9B:10
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/WUZAb-HEodHuM68ma1cj3WaXmxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.49.0/24
84.32.216.0/22
84.32.230.0/24
Signature Algorithm: sha256WithRSAEncryption
33:27:30:98:c0:ef:30:71:88:9f:e1:1f:8d:c7:0b:df:5e:d5:
bd:00:54:bf:e1:82:16:8d:5e:9f:d9:fe:78:18:c8:48:70:7c:
6e:71:04:0d:67:4b:24:de:80:e8:86:96:58:2c:3f:15:5d:bd:
e9:38:f9:de:b4:35:81:1e:b4:41:70:2c:86:e8:7d:f8:c8:ed:
47:75:18:b7:26:b8:a0:5c:b3:59:47:3d:5c:92:a5:ba:8b:3c:
cb:69:ec:00:1b:d3:0e:9b:9d:96:a2:6c:80:41:ca:64:c5:ba:
93:10:ef:e4:dc:3b:ab:af:cf:b8:b7:7b:5e:a6:80:bc:25:c3:
ce:15:80:49:65:c4:35:54:0b:17:f0:d6:d1:0f:da:79:1e:89:
0a:8b:7c:8a:d0:3a:51:6f:1c:97:a6:9c:41:6f:b3:74:23:5f:
c2:c7:70:cd:98:41:f6:a2:20:0d:a4:5a:68:5c:f9:dc:4a:3b:
7f:35:95:8f:91:b0:dc:fa:57:f5:04:cf:8b:3f:f8:e5:1b:08:
d3:fd:7c:18:bb:76:45:d2:f7:f3:25:cc:5d:cf:51:67:af:08:
23:80:28:43:f2:65:dd:1d:18:ee:5c:78:28:a5:81:f9:9a:5d:
73:2f:c2:cc:4f:96:53:6c:48:cb:88:e9:b1:c0:50:7c:93:ab:
76:c5:7b:d2
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYTE/O423OuBLkrEl1TrjfVLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjIxMTI5MjAwMzQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OTQ2NDA2ZmUxYzRhMWQxZWUzM2FmMjY2YjU3MjNkZDY2OTc5YjEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAugXUgL6dLvhrLqvESXsk+wLVCrL5
BZoTlXTpFJQfNPmOR5ANhYaN/8SCpJb7eQlWNKUVhHAjNCL2rcGueRqBrMWpgUEj
zOpDbL/upvSFzvv+KoWHMPhQHFAibDdclw0MyEoCvb094b+HJWwNohrnDx7Vyda9
1iOqKYUSgSpeiCa1m6BvZLmKmQKfyhhdkVqvnxr+iT5ICbQmXeCjGMumXGjJwzkf
5IHYKbUX66U0L0Vvj3PvYNAFn9TzQRSo7vXEjG4KIsj66aDgh4da8T3ienxCpJvx
Zs0PQ+nfjIULP67CFwCfPrnHWjX73kOikEbnTs5u+IP+sOB39wk8SNQ7OQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFFlGQG/hxKHR7jOvJmtXI91ml5sQMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvV1VaQWItSEVvZEh1TTY4bWExY2ozV2FYbXhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAVCAxAwQC
VCDYAwQAVCDmMA0GCSqGSIb3DQEBCwUAA4IBAQAzJzCYwO8wcYif4R+NxwvfXtW9
AFS/4YIWjV6f2f54GMhIcHxucQQNZ0sk3oDohpZYLD8VXb3pOPnetDWBHrRBcCyG
6H34yO1HdRi3JrigXLNZRz1ckqW6izzLaewAG9MOm52WomyAQcpkxbqTEO/k3Dur
r8+4t3tepoC8JcPOFYBJZcQ1VAsX8NbRD9p5HokKi3yK0DpRbxyXppxBb7N0I1/C
x3DNmEH2oiANpFpoXPncSjt/NZWPkbDc+lf1BM+LP/jlGwjT/XwYu3ZF0vfzJcxd
z1FnrwgjgChD8mXdHRjuXHgopYH5ml1zL8LMT5ZTbEjLiOmxwFB8k6t2xXvS
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:30 2023 by rpki-client on console-ams.rpki-client.org