Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/871c28-66f3-406d-bb54-8e40435f4ba3/1/wjPK4Me_gaFnn6PHIQtyp4ttOwg.roa
File: wjPK4Me_gaFnn6PHIQtyp4ttOwg.roa (raw, json)
Hash identifier: /qiAjZDp0XH1XNIlZS+3cYqCZt6ZOokFLvkIllsl2Ro=
Subject key identifier: C2:33:CA:E0:C7:BF:81:A1:67:9F:A3:C7:21:0B:72:A7:8B:6D:3B:08
Certificate issuer: /CN=c2e1dda1df73f3ff6ae4f5e7c7b24cab35e6849d
Certificate serial: 0184E959697B27CBDC804477E9417D1EE2F3
Authority key identifier: C2:E1:DD:A1:DF:73:F3:FF:6A:E4:F5:E7:C7:B2:4C:AB:35:E6:84:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wuHdod9z8_9q5PXnx7JMqzXmhJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/871c28-66f3-406d-bb54-8e40435f4ba3/1/wjPK4Me_gaFnn6PHIQtyp4ttOwg.roa
Signing time: Tue 06 Dec 2022 21:31:01 +0000
ROA not before: Tue 06 Dec 2022 21:31:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205757
IP address blocks: 185.198.53.0/24 maxlen: 24
185.198.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e9:59:69:7b:27:cb:dc:80:44:77:e9:41:7d:1e:e2:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2e1dda1df73f3ff6ae4f5e7c7b24cab35e6849d
Validity
Not Before: Dec 6 21:31:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c233cae0c7bf81a1679fa3c7210b72a78b6d3b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fb:7b:8a:f9:f9:c8:96:71:ec:4d:1b:5b:e2:
b7:df:d8:60:48:e3:0b:ec:3b:3a:63:0e:b1:2f:b8:
a7:07:d4:58:c2:fb:f9:68:3b:4c:6e:74:e2:f4:3d:
5d:26:f7:b4:61:cf:0a:ce:c2:83:8e:8f:fc:3f:fa:
93:dc:5b:dd:ff:75:2a:ef:10:cf:88:f7:9b:6d:c1:
31:d4:42:00:8a:2f:f4:7b:ed:64:3a:c5:be:f0:64:
e2:62:25:05:8c:32:81:e1:82:fb:e6:5e:ac:cc:9b:
74:10:ee:0a:e3:ac:71:73:75:74:25:cc:64:cb:3f:
bc:73:a4:70:fc:eb:6e:4c:7a:2d:1f:a9:ab:4f:66:
ca:31:22:ea:d6:f7:03:3f:44:09:98:cb:a4:83:4a:
a2:02:69:8c:fc:a7:b0:b2:df:9f:74:8d:47:42:01:
3d:93:e4:4e:69:c5:1b:68:51:54:85:7d:d8:1e:c0:
8c:44:84:7a:42:e7:0b:2d:e6:e8:16:19:72:5b:36:
c5:41:0e:59:43:cb:e6:87:1d:17:3b:7f:ff:f2:20:
7a:23:7b:8a:6e:99:e4:14:66:3f:ce:78:5a:da:d2:
b9:06:03:c3:34:6e:6f:4e:a6:c2:95:b9:98:9f:dc:
0d:db:0b:6b:91:9b:f0:fd:86:cc:13:c0:96:26:f6:
c3:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:33:CA:E0:C7:BF:81:A1:67:9F:A3:C7:21:0B:72:A7:8B:6D:3B:08
X509v3 Authority Key Identifier:
keyid:C2:E1:DD:A1:DF:73:F3:FF:6A:E4:F5:E7:C7:B2:4C:AB:35:E6:84:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wuHdod9z8_9q5PXnx7JMqzXmhJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/871c28-66f3-406d-bb54-8e40435f4ba3/1/wjPK4Me_gaFnn6PHIQtyp4ttOwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/871c28-66f3-406d-bb54-8e40435f4ba3/1/wuHdod9z8_9q5PXnx7JMqzXmhJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.52.0/23
Signature Algorithm: sha256WithRSAEncryption
92:1b:ed:aa:27:fc:1f:8c:f0:a6:8d:47:f8:60:be:a6:7b:93:
dd:47:94:a4:ed:28:87:a0:f9:fb:13:40:c4:11:78:12:46:59:
21:c0:dd:88:f5:10:8a:7f:ea:a4:03:e7:17:13:1a:a1:ea:8e:
2a:30:75:85:85:d9:76:c4:1c:c5:40:59:01:60:fd:76:c6:a0:
1b:ed:78:89:da:e4:2f:da:39:f4:be:eb:b3:ac:90:b3:e4:39:
88:f3:d5:42:02:33:34:9c:88:13:76:fc:ea:42:bf:74:76:a1:
34:68:bf:f4:2f:19:0b:90:5e:23:78:c3:53:c0:00:2f:f1:a8:
cb:c7:95:68:21:74:40:a2:77:e7:d4:64:90:5d:13:3d:72:99:
f0:15:c8:1e:f5:f1:36:f3:39:b2:26:41:5d:f9:a4:5a:7d:0e:
7f:06:bf:3d:4b:43:52:ff:f0:67:7b:60:6a:ec:34:b6:bc:47:
a0:2c:45:46:91:3e:41:e9:87:56:8e:a4:35:85:a8:39:5d:7b:
48:6c:75:9a:b9:60:cf:79:78:3b:ae:83:21:81:22:88:ea:13:
c2:6d:10:c3:0b:47:4d:e7:eb:af:ce:53:f3:cc:2c:27:33:1e:
66:4a:31:f7:10:ed:ca:77:81:be:ea:08:2c:5d:8b:d6:bb:6e:
31:89:ae:cc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTpWWl7J8vcgER36UF9HuLzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyZTFkZGExZGY3M2YzZmY2YWU0ZjVlN2M3YjI0Y2FiMzVl
Njg0OWQwHhcNMjIxMjA2MjEzMTAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMjMzY2FlMGM3YmY4MWExNjc5ZmEzYzcyMTBiNzJhNzhiNmQzYjA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjPt7ivn5yJZx7E0bW+K339hgSOML
7Ds6Yw6xL7inB9RYwvv5aDtMbnTi9D1dJve0Yc8KzsKDjo/8P/qT3Fvd/3Uq7xDP
iPebbcEx1EIAii/0e+1kOsW+8GTiYiUFjDKB4YL75l6szJt0EO4K46xxc3V0Jcxk
yz+8c6Rw/OtuTHotH6mrT2bKMSLq1vcDP0QJmMukg0qiAmmM/Kewst+fdI1HQgE9
k+ROacUbaFFUhX3YHsCMRIR6QucLLeboFhlyWzbFQQ5ZQ8vmhx0XO3//8iB6I3uK
bpnkFGY/znha2tK5BgPDNG5vTqbClbmYn9wN2wtrkZvw/YbME8CWJvbDHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMIzyuDHv4GhZ5+jxyELcqeLbTsIMB8GA1UdIwQY
MBaAFMLh3aHfc/P/auT158eyTKs15oSdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3VIZG9kOXo4XzlxNVBYbng3Sk1xelhtaEowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My84NzFjMjgtNjZmMy00MDZkLWJiNTQt
OGU0MDQzNWY0YmEzLzEvd2pQSzRNZV9nYUZubjZQSElRdHlwNHR0T3dnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My84NzFjMjgtNjZmMy00MDZkLWJiNTQtOGU0MDQzNWY0YmEz
LzEvd3VIZG9kOXo4XzlxNVBYbng3Sk1xelhtaEowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBucY0MA0G
CSqGSIb3DQEBCwUAA4IBAQCSG+2qJ/wfjPCmjUf4YL6me5PdR5Sk7SiHoPn7E0DE
EXgSRlkhwN2I9RCKf+qkA+cXExqh6o4qMHWFhdl2xBzFQFkBYP12xqAb7XiJ2uQv
2jn0vuuzrJCz5DmI89VCAjM0nIgTdvzqQr90dqE0aL/0LxkLkF4jeMNTwAAv8ajL
x5VoIXRAonfn1GSQXRM9cpnwFcge9fE28zmyJkFd+aRafQ5/Br89S0NS//Bne2Bq
7DS2vEegLEVGkT5B6YdWjqQ1hag5XXtIbHWauWDPeXg7roMhgSKI6hPCbRDDC0dN
5+uvzlPzzCwnMx5mSjH3EO3Kd4G+6ggsXYvWu24xia7M
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:57 2024 by rpki-client on console-ams.rpki-client.org