Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/WhZR_0AiSwar0Bwvh8teoSnvtEE.roa
File: WhZR_0AiSwar0Bwvh8teoSnvtEE.roa (raw, json)
Hash identifier: ZqEJoNHhKpOdeQWBGlQwk9ioFJPY9/7pMoCLXfQavbc=
Subject key identifier: 5A:16:51:FF:40:22:4B:06:AB:D0:1C:2F:87:CB:5E:A1:29:EF:B4:41
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 066C0A43
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/WhZR_0AiSwar0Bwvh8teoSnvtEE.roa
Signing time: Thu 21 Apr 2022 12:09:58 +0000
ROA not before: Thu 21 Apr 2022 12:09:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212494
IP address blocks: 128.127.146.0/24 maxlen: 24
128.127.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107743811 (0x66c0a43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Apr 21 12:09:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a1651ff40224b06abd01c2f87cb5ea129efb441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:98:c8:a1:34:e4:1a:9c:8b:11:55:e2:85:ad:
86:ab:22:0e:e6:75:96:56:7d:f1:c9:f3:07:08:ba:
79:61:34:14:d3:e9:a3:fe:4e:fe:d8:68:ac:d1:e0:
96:e7:4a:97:51:79:43:72:12:51:1d:2e:32:42:90:
a9:28:b5:b0:21:5d:3c:d4:c2:f5:b1:84:5f:2c:3f:
a7:bc:3c:b3:96:81:c0:b9:6d:65:9f:f4:ea:d2:ce:
2e:71:c1:f1:77:96:62:32:c6:d3:14:10:2c:85:0b:
53:c8:10:10:0d:cd:41:a6:50:c1:2d:d8:69:e9:8f:
62:9e:32:ef:b2:ed:82:74:2e:3e:0c:03:a8:de:6d:
61:13:e9:3a:ba:48:e2:a4:0a:32:68:db:6d:65:ee:
38:5c:f2:56:6f:ce:69:a7:68:c1:93:a2:70:c8:2b:
2f:be:6d:30:d8:ec:50:f5:c3:f7:f6:15:c4:40:2f:
c0:ad:3b:e2:16:12:ab:92:6b:d8:ae:fb:4f:65:38:
91:83:ba:c2:e6:63:0c:1c:82:8f:74:02:94:60:dc:
1f:79:f0:77:9c:34:61:fe:56:e8:6b:c9:24:67:ec:
a7:8f:be:90:69:36:c1:6f:72:f4:a9:bd:df:7e:d0:
3d:7d:36:ce:d1:23:a3:39:7b:4c:af:96:95:ad:8b:
39:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:16:51:FF:40:22:4B:06:AB:D0:1C:2F:87:CB:5E:A1:29:EF:B4:41
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/WhZR_0AiSwar0Bwvh8teoSnvtEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.127.146.0/23
Signature Algorithm: sha256WithRSAEncryption
30:3d:f1:3b:82:2a:2f:8a:03:7d:f8:8a:69:dc:24:a0:89:66:
70:62:36:bb:79:8f:2b:07:e8:d4:47:07:bb:d7:e4:8c:40:e0:
07:42:df:73:fc:db:05:f0:37:10:f9:c7:07:6e:7e:e3:4a:4e:
55:ff:02:4f:cd:40:11:ae:66:05:fb:fe:61:8f:36:1e:24:08:
0a:b0:36:4b:0c:28:fd:44:68:19:d6:4c:b8:be:c0:b7:70:2d:
0f:d0:d5:38:ba:83:4a:73:5e:4d:4e:f6:2d:3f:2a:ac:66:9c:
ab:58:f7:fd:2b:0a:ce:72:c5:7f:51:7b:12:48:0b:c7:98:c9:
ec:5e:46:55:f5:02:2a:7c:19:0b:19:cb:47:f0:58:d0:65:a2:
ed:17:22:1d:f8:ab:f6:75:be:ba:56:7b:3e:d1:38:14:94:95:
fa:6a:b9:f1:e5:a2:d8:1d:c4:e0:08:b8:e8:d7:a5:96:a6:c5:
03:c7:f1:32:18:db:95:0c:54:f5:b4:e0:2d:d4:38:bf:40:5e:
6a:d3:49:71:ac:e0:32:27:29:cc:07:88:66:59:e9:74:b5:af:
ad:60:24:ab:6e:11:9a:e5:ac:6c:17:ef:95:08:4b:df:78:07:
be:eb:d9:e5:6f:72:4e:2b:87:59:c4:51:81:f3:1b:27:45:58:
30:8f:71:72
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBmwKQzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MzM4ZWY0MWIyYzAxMDVhOTFjY2JiOWM4OTMzN2ZhZWIxMjlmZjg0MB4XDTIyMDQy
MTEyMDk1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWExNjUxZmY0MDIy
NGIwNmFiZDAxYzJmODdjYjVlYTEyOWVmYjQ0MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM+YyKE05BqcixFV4oWthqsiDuZ1llZ98cnzBwi6eWE0FNPp
o/5O/thorNHgludKl1F5Q3ISUR0uMkKQqSi1sCFdPNTC9bGEXyw/p7w8s5aBwLlt
ZZ/06tLOLnHB8XeWYjLG0xQQLIULU8gQEA3NQaZQwS3YaemPYp4y77LtgnQuPgwD
qN5tYRPpOrpI4qQKMmjbbWXuOFzyVm/OaadowZOicMgrL75tMNjsUPXD9/YVxEAv
wK074hYSq5Jr2K77T2U4kYO6wuZjDByCj3QClGDcH3nwd5w0Yf5W6GvJJGfsp4++
kGk2wW9y9Km9337QPX02ztEjozl7TK+Wla2LOaECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRaFlH/QCJLBqvQHC+Hy16hKe+0QTAfBgNVHSMEGDAWgBSDOO9BssAQWpHM
u5yJM3+usSn/hDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2d6anZRYkxBRUZxUnpMdWNpVE5fcnJFcF80US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWUvNDBkOTk2LWEyY2QtNDFmMS1hNzM4LTI4ZmM3Nzk2Nzc2My8x
L1doWlJfMEFpU3dhcjBCd3ZoOHRlb1NudnRFRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUv
NDBkOTk2LWEyY2QtNDFmMS1hNzM4LTI4ZmM3Nzk2Nzc2My8xL2d6anZRYkxBRUZx
UnpMdWNpVE5fcnJFcF80US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAYB/kjANBgkqhkiG9w0BAQsFAAOC
AQEAMD3xO4IqL4oDffiKadwkoIlmcGI2u3mPKwfo1EcHu9fkjEDgB0Lfc/zbBfA3
EPnHB25+40pOVf8CT81AEa5mBfv+YY82HiQICrA2Swwo/URoGdZMuL7At3AtD9DV
OLqDSnNeTU72LT8qrGacq1j3/SsKznLFf1F7EkgLx5jJ7F5GVfUCKnwZCxnLR/BY
0GWi7RciHfir9nW+ulZ7PtE4FJSV+mq58eWi2B3E4Ai46NellqbFA8fxMhjblQxU
9bTgLdQ4v0BeatNJcazgMicpzAeIZlnpdLWvrWAkq24RmuWsbBfvlQhL33gHvuvZ
5W9yTiuHWcRRgfMbJ0VYMI9xcg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:30 2024 by rpki-client on console-fra.rpki-client.org