Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/b9c1d7-2aed-4696-80a7-d5abf5031d21/1/Wyol-O6YXMah3Ifphec6Lmj7yPg.roa
File: Wyol-O6YXMah3Ifphec6Lmj7yPg.roa (raw, json)
Hash identifier: knGyV6g3FO/se5iDsVzsMIpGusdW+7Zc3xCLEmBW2rI=
Subject key identifier: 5B:2A:25:F8:EE:98:5C:C6:A1:DC:87:E9:85:E7:3A:2E:68:FB:C8:F8
Certificate issuer: /CN=9984b9eb122237111c1f8ca57707ec7307291ee8
Certificate serial: 37ECFEC5
Authority key identifier: 99:84:B9:EB:12:22:37:11:1C:1F:8C:A5:77:07:EC:73:07:29:1E:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mYS56xIiNxEcH4yldwfscwcpHug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/b9c1d7-2aed-4696-80a7-d5abf5031d21/1/Wyol-O6YXMah3Ifphec6Lmj7yPg.roa
Signing time: Sat 01 Jan 2022 08:59:46 +0000
ROA not before: Sat 01 Jan 2022 08:59:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15372
IP address blocks: 193.36.120.0/22 maxlen: 22
212.111.224.0/19 maxlen: 24
188.239.190.0/24 maxlen: 24
188.239.188.0/23 maxlen: 23
2a01:7700::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938278597 (0x37ecfec5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9984b9eb122237111c1f8ca57707ec7307291ee8
Validity
Not Before: Jan 1 08:59:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b2a25f8ee985cc6a1dc87e985e73a2e68fbc8f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bf:22:74:e2:39:cd:cb:2a:aa:f0:06:50:2b:
cc:0d:bd:a5:f2:5b:b7:14:b6:e8:11:6e:9c:60:aa:
aa:58:a1:0f:5b:a0:c8:14:a7:29:fe:de:c0:37:08:
00:d4:72:6f:e0:de:0b:da:d3:49:5d:80:4a:b0:57:
63:79:4d:21:d4:b9:83:62:de:a7:a1:e0:10:ab:ed:
78:67:d6:49:89:88:02:da:84:14:d5:6d:c8:55:99:
8a:66:d4:5f:5a:e2:ae:32:a9:3d:c8:27:46:83:58:
46:ea:6d:a1:5a:65:73:16:12:ec:fa:1d:06:1b:c7:
65:4d:ac:a8:b1:ff:07:9b:4b:0c:8f:8a:28:55:09:
20:5f:90:ae:5e:05:ac:2f:af:fc:92:90:5b:53:b4:
26:fa:7e:ff:4a:dc:d5:80:b9:23:4c:5c:33:2b:9d:
58:af:cf:8d:85:69:fb:36:e0:d1:bc:5c:97:09:6d:
24:9e:8d:4d:68:42:3c:18:42:87:1e:10:b9:ea:52:
b1:a5:13:fd:16:f4:85:b1:6d:14:2b:d4:bc:86:82:
a1:39:e1:f3:df:51:61:e4:ca:39:b1:1e:cf:72:96:
c5:d1:eb:ab:fd:12:fb:ec:bb:ee:53:8f:b7:85:ea:
aa:2d:5e:59:0c:f0:44:08:3f:1a:f5:43:b3:83:1d:
94:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:2A:25:F8:EE:98:5C:C6:A1:DC:87:E9:85:E7:3A:2E:68:FB:C8:F8
X509v3 Authority Key Identifier:
keyid:99:84:B9:EB:12:22:37:11:1C:1F:8C:A5:77:07:EC:73:07:29:1E:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mYS56xIiNxEcH4yldwfscwcpHug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/b9c1d7-2aed-4696-80a7-d5abf5031d21/1/Wyol-O6YXMah3Ifphec6Lmj7yPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/b9c1d7-2aed-4696-80a7-d5abf5031d21/1/mYS56xIiNxEcH4yldwfscwcpHug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.239.188.0-188.239.190.255
193.36.120.0/22
212.111.224.0/19
IPv6:
2a01:7700::/32
Signature Algorithm: sha256WithRSAEncryption
08:7b:61:3d:65:33:58:7b:18:6e:67:ad:b9:de:1a:9b:23:b4:
fd:d2:b2:70:29:9c:bf:69:1a:0d:3e:58:2f:a5:78:b8:cc:8f:
08:f9:25:1e:15:9e:a5:ed:a7:45:62:15:73:94:d8:d7:57:65:
f4:ac:7f:62:ca:ac:75:ab:40:4d:48:1a:e8:90:b7:d6:4c:9c:
f5:a2:39:8a:f4:c1:2b:9f:bb:ab:3f:f2:f4:6b:00:93:83:89:
42:9e:05:83:b6:47:fa:19:50:c7:74:4f:12:b2:c1:b6:bc:98:
98:09:f0:82:95:0b:58:6b:97:08:6e:61:9f:4d:35:8f:8f:6f:
41:01:6a:c9:6c:12:0a:e2:56:f7:c3:55:99:ae:d3:79:15:a8:
8b:8e:00:58:97:f8:97:03:cf:77:c9:a4:86:2d:cb:50:02:e1:
53:02:f4:52:b1:e1:cd:68:63:07:2c:1b:f3:e4:d2:0a:95:92:
9d:f5:db:fb:3d:da:9f:03:4e:8b:4e:ff:93:f1:71:ea:02:5f:
b1:2c:b8:7b:51:08:62:c5:6a:1c:31:e8:3e:21:c5:6b:b9:8f:
aa:a9:fb:e0:6f:d7:1f:e9:f0:78:93:4f:3c:a1:49:22:2d:fe:
1b:99:8e:87:e0:2b:f9:cd:e4:0a:f4:97:4f:f8:f2:c1:2c:c2:
e4:29:df:8c
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgIEN+z+xTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
OTg0YjllYjEyMjIzNzExMWMxZjhjYTU3NzA3ZWM3MzA3MjkxZWU4MB4XDTIyMDEw
MTA4NTk0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWIyYTI1ZjhlZTk4
NWNjNmExZGM4N2U5ODVlNzNhMmU2OGZiYzhmODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMe/InTiOc3LKqrwBlArzA29pfJbtxS26BFunGCqqlihD1ug
yBSnKf7ewDcIANRyb+DeC9rTSV2ASrBXY3lNIdS5g2Lep6HgEKvteGfWSYmIAtqE
FNVtyFWZimbUX1rirjKpPcgnRoNYRuptoVplcxYS7PodBhvHZU2sqLH/B5tLDI+K
KFUJIF+Qrl4FrC+v/JKQW1O0Jvp+/0rc1YC5I0xcMyudWK/PjYVp+zbg0bxclwlt
JJ6NTWhCPBhChx4QuepSsaUT/Rb0hbFtFCvUvIaCoTnh899RYeTKObEez3KWxdHr
q/0S++y77lOPt4Xqqi1eWQzwRAg/GvVDs4MdlEcCAwEAAaOCAiwwggIoMB0GA1Ud
DgQWBBRbKiX47phcxqHch+mF5zouaPvI+DAfBgNVHSMEGDAWgBSZhLnrEiI3ERwf
jKV3B+xzByke6DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21ZUzU2eElpTnhFY0g0eWxkd2ZzY3djcEh1Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWQvYjljMWQ3LTJhZWQtNDY5Ni04MGE3LWQ1YWJmNTAzMWQyMS8x
L1d5b2wtTzZZWE1haDNJZnBoZWM2TG1qN3lQZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQv
YjljMWQ3LTJhZWQtNDY5Ni04MGE3LWQ1YWJmNTAzMWQyMS8xL21ZUzU2eElpTnhF
Y0g0eWxkd2ZzY3djcEh1Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBC
BggrBgEFBQcBBwEB/wQzMDEwIAQCAAEwGjAMAwQCvO+8AwQAvO++AwQCwSR4AwQF
1G/gMA0EAgACMAcDBQAqAXcAMA0GCSqGSIb3DQEBCwUAA4IBAQAIe2E9ZTNYexhu
Z6253hqbI7T90rJwKZy/aRoNPlgvpXi4zI8I+SUeFZ6l7adFYhVzlNjXV2X0rH9i
yqx1q0BNSBrokLfWTJz1ojmK9MErn7urP/L0awCTg4lCngWDtkf6GVDHdE8SssG2
vJiYCfCClQtYa5cIbmGfTTWPj29BAWrJbBIK4lb3w1WZrtN5FaiLjgBYl/iXA893
yaSGLctQAuFTAvRSseHNaGMHLBvz5NIKlZKd9dv7PdqfA06LTv+T8XHqAl+xLLh7
UQhixWocMeg+IcVruY+qqfvgb9cf6fB4k088oUkiLf4bmY6H4Cv5zeQK9JdP+PLB
LMLkKd+M
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:47 2023 by rpki-client on console-ams.rpki-client.org