Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/_WqnzA4N59ihWiSwuiTrKNlM1sE.roa
File: _WqnzA4N59ihWiSwuiTrKNlM1sE.roa (raw, json)
Hash identifier: tqKrT35zxiVWQSEG5XE/+x4r1Hpn7OGrhN/blh6dztI=
Subject key identifier: FD:6A:A7:CC:0E:0D:E7:D8:A1:5A:24:B0:BA:24:EB:28:D9:4C:D6:C1
Certificate issuer: /CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae
Certificate serial: 0900EB51
Authority key identifier: 20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/_WqnzA4N59ihWiSwuiTrKNlM1sE.roa
Signing time: Sat 01 Jan 2022 02:52:31 +0000
ROA not before: Sat 01 Jan 2022 02:52:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8970
IP address blocks: 156.17.0.0/16 maxlen: 16
2001:a48::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151055185 (0x900eb51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae
Validity
Not Before: Jan 1 02:52:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd6aa7cc0e0de7d8a15a24b0ba24eb28d94cd6c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:90:80:31:10:89:17:0f:02:f7:75:44:66:3d:
78:d0:f5:0f:ca:e2:c3:8a:6a:6a:04:32:51:6c:79:
9f:fc:da:27:e0:47:b9:91:86:93:b1:7c:c5:05:40:
3c:39:5a:d7:7f:ce:26:bb:a2:70:13:f1:b2:a2:59:
d3:c2:47:e0:73:96:e3:6c:91:78:77:53:d0:ee:f8:
a7:54:7f:1a:db:0f:58:11:e5:0c:e9:d2:ab:79:1b:
62:fe:e9:a5:ed:54:dd:ea:58:24:69:53:9d:b6:3c:
77:f6:36:f9:79:b9:06:7a:cc:36:68:ac:18:40:ab:
74:0d:ef:66:9e:61:9a:3f:89:83:02:f9:9f:a3:b0:
99:e2:23:1e:89:73:82:66:47:b9:b3:83:29:cb:a7:
fa:f1:97:c4:a5:9c:0b:f6:5e:8b:2e:b9:85:6f:5b:
d7:c0:fb:e1:dc:7d:a0:11:ab:1e:fc:89:0a:06:20:
81:ee:d7:b6:2b:66:fe:3f:14:47:0b:04:a7:9c:5b:
0b:e8:27:2f:3f:cd:31:fd:a4:3f:08:b7:ec:55:b7:
bd:1c:65:63:3a:5d:3f:68:00:e7:76:3e:db:0c:90:
cc:cc:da:02:19:b9:69:6b:5e:88:b7:cf:19:4b:17:
2e:3c:d8:c3:66:4d:10:4b:cb:3d:3d:a8:96:ed:1f:
c2:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:6A:A7:CC:0E:0D:E7:D8:A1:5A:24:B0:BA:24:EB:28:D9:4C:D6:C1
X509v3 Authority Key Identifier:
keyid:20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/_WqnzA4N59ihWiSwuiTrKNlM1sE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/IC9MGjfpMTzdLup3UK4CjRjNWq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.17.0.0/16
IPv6:
2001:a48::/32
Signature Algorithm: sha256WithRSAEncryption
80:81:e7:db:be:36:0e:70:ae:4d:f2:77:d9:dd:45:bc:85:a4:
4d:e7:ce:f4:db:83:e4:c2:fe:98:bd:a6:1a:40:a1:4d:5b:ff:
46:97:a7:9d:d4:27:19:96:43:d8:7b:94:13:2f:10:fc:4f:57:
66:61:46:c4:f2:fb:5a:37:0e:b0:5a:1c:1f:ed:83:85:9b:8b:
21:5d:2b:73:35:f1:48:e1:ee:d2:26:41:57:04:dd:00:96:f5:
dc:67:c2:70:bb:59:bb:c2:94:92:4f:11:dd:2a:ed:b1:8b:71:
e8:4f:1e:00:2a:18:0e:b5:47:37:8a:28:85:3a:41:2b:89:19:
87:f1:5f:54:18:af:0a:10:c8:22:a1:7a:72:93:7a:1f:67:e8:
42:f2:e7:f4:b4:8a:cf:a5:64:62:18:20:2d:26:08:b5:85:58:
ba:96:b1:41:b2:cc:55:e2:e2:26:83:66:f6:55:ff:39:21:f5:
66:99:fd:65:e4:3f:dd:e3:22:45:71:f2:21:fd:2e:ad:a5:3e:
f4:53:b5:92:41:81:5a:50:24:b7:01:bd:fc:55:c1:36:93:1a:
4e:7e:76:a6:4b:fb:d7:f2:d6:c0:68:d3:12:73:91:d9:1f:f7:
91:49:12:5c:16:d5:38:d1:4c:f9:a5:5b:10:ec:e2:fe:0d:5f:
56:e4:da:04
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIECQDrUTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MDJmNGMxYTM3ZTkzMTNjZGQyZWVhNzc1MGFlMDI4ZDE4Y2Q1YWFlMB4XDTIyMDEw
MTAyNTIzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmQ2YWE3Y2MwZTBk
ZTdkOGExNWEyNGIwYmEyNGViMjhkOTRjZDZjMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN2QgDEQiRcPAvd1RGY9eND1D8riw4pqagQyUWx5n/zaJ+BH
uZGGk7F8xQVAPDla13/OJruicBPxsqJZ08JH4HOW42yReHdT0O74p1R/GtsPWBHl
DOnSq3kbYv7ppe1U3epYJGlTnbY8d/Y2+Xm5BnrMNmisGECrdA3vZp5hmj+JgwL5
n6OwmeIjHolzgmZHubODKcun+vGXxKWcC/Zeiy65hW9b18D74dx9oBGrHvyJCgYg
ge7Xtitm/j8URwsEp5xbC+gnLz/NMf2kPwi37FW3vRxlYzpdP2gA53Y+2wyQzMza
Ahm5aWteiLfPGUsXLjzYw2ZNEEvLPT2olu0fwqECAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBT9aqfMDg3n2KFaJLC6JOso2UzWwTAfBgNVHSMEGDAWgBQgL0waN+kxPN0u
6ndQrgKNGM1arjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lDOU1HamZwTVR6ZEx1cDNVSzRDalJqTldxNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGUvZWRiOGNkLTAwM2QtNDgzYS05MDZhLWY2Yjc4ZTJiMTdhMS8x
L19XcW56QTRONTlpaFdpU3d1aVRyS05sTTFzRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUv
ZWRiOGNkLTAwM2QtNDgzYS05MDZhLWY2Yjc4ZTJiMTdhMS8xL0lDOU1HamZwTVR6
ZEx1cDNVSzRDalJqTldxNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwCwQCAAEwBQMDAJwRMA0EAgACMAcDBQAgAQpIMA0G
CSqGSIb3DQEBCwUAA4IBAQCAgefbvjYOcK5N8nfZ3UW8haRN587024Pkwv6YvaYa
QKFNW/9Gl6ed1CcZlkPYe5QTLxD8T1dmYUbE8vtaNw6wWhwf7YOFm4shXStzNfFI
4e7SJkFXBN0AlvXcZ8Jwu1m7wpSSTxHdKu2xi3HoTx4AKhgOtUc3iiiFOkEriRmH
8V9UGK8KEMgioXpyk3ofZ+hC8uf0tIrPpWRiGCAtJgi1hVi6lrFBssxV4uImg2b2
Vf85IfVmmf1l5D/d4yJFcfIh/S6tpT70U7WSQYFaUCS3Ab38VcE2kxpOfnamS/vX
8tbAaNMSc5HZH/eRSRJcFtU40Uz5pVsQ7OL+DV9W5NoE
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:46 2023 by rpki-client on console-ams.rpki-client.org