Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/WbZj_wa8k9157RLAHkjscsRH54g.roa
File: WbZj_wa8k9157RLAHkjscsRH54g.roa (raw, json)
Hash identifier: D2QCfM8cS1bJRg/zLZA/CJKd1BmO5Ng5rjNIw4c1Vlg=
Subject key identifier: 59:B6:63:FF:06:BC:93:DD:79:ED:12:C0:1E:48:EC:72:C4:47:E7:88
Certificate issuer: /CN=8777b5b36f66e13c4388c9934da507856515d073
Certificate serial: 38878DF8
Authority key identifier: 87:77:B5:B3:6F:66:E1:3C:43:88:C9:93:4D:A5:07:85:65:15:D0:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3e1s29m4TxDiMmTTaUHhWUV0HM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/WbZj_wa8k9157RLAHkjscsRH54g.roa
Signing time: Sat 01 Jan 2022 01:51:47 +0000
ROA not before: Sat 01 Jan 2022 01:51:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34144
IP address blocks: 85.88.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 948407800 (0x38878df8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8777b5b36f66e13c4388c9934da507856515d073
Validity
Not Before: Jan 1 01:51:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59b663ff06bc93dd79ed12c01e48ec72c447e788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3f:ff:7a:0c:bc:0b:28:a6:0d:23:20:52:20:
48:da:6d:ac:34:fc:35:8e:8b:a2:3a:a1:82:ae:0e:
0f:ef:39:35:63:83:3e:4b:7f:df:17:e8:a9:c0:76:
be:ff:74:bc:f3:78:b8:3c:b6:8b:47:2e:67:86:1f:
c1:7d:c6:c8:b4:6a:8f:7b:72:aa:5f:1f:00:f8:aa:
59:eb:74:dc:3f:d7:9d:7e:10:1f:b8:8b:b6:85:53:
bf:55:65:90:0a:cc:3b:7e:2c:fe:0c:28:a9:fa:e8:
30:ac:e4:a9:9b:5b:5e:76:77:ab:81:09:26:19:8f:
ed:44:e5:86:93:e6:34:b6:07:b2:89:c7:b8:94:a9:
65:9a:0c:d4:87:0f:a5:d9:04:82:e5:27:11:f3:0b:
10:bc:73:08:ea:91:a9:eb:a5:18:2c:75:25:c4:e1:
09:5b:db:0b:30:5f:1e:3d:e4:22:d7:53:07:4a:e9:
e1:69:1b:c6:3e:4f:34:05:42:bc:59:b5:c9:d7:65:
3f:b9:2c:de:d8:11:ef:38:6c:bb:b4:56:03:f9:0d:
7d:f6:fb:56:e1:b7:1d:9c:be:78:97:53:1c:2f:8f:
ff:7f:c3:bf:8a:3a:c4:ec:79:fd:4e:b3:90:98:3b:
48:18:3b:ed:8b:4b:c8:ec:f8:9a:3c:6f:79:73:c2:
49:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B6:63:FF:06:BC:93:DD:79:ED:12:C0:1E:48:EC:72:C4:47:E7:88
X509v3 Authority Key Identifier:
keyid:87:77:B5:B3:6F:66:E1:3C:43:88:C9:93:4D:A5:07:85:65:15:D0:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3e1s29m4TxDiMmTTaUHhWUV0HM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/WbZj_wa8k9157RLAHkjscsRH54g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/h3e1s29m4TxDiMmTTaUHhWUV0HM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.88.39.0/24
Signature Algorithm: sha256WithRSAEncryption
93:82:d2:97:17:72:bd:20:19:38:99:59:3f:a7:d0:04:4f:1f:
06:d0:c2:e0:91:16:0f:7d:67:05:ed:15:ed:59:d0:98:7e:51:
f4:4b:51:60:26:00:66:b5:fa:f1:e2:04:f1:47:a8:04:7d:1f:
49:76:00:70:b9:bc:35:97:8e:25:61:5c:6a:40:f4:61:ca:19:
68:3c:bd:e7:a4:6f:e7:62:c2:b4:27:c5:63:4a:f1:79:51:41:
03:3d:e6:15:d8:8a:61:1d:c6:57:05:f1:1c:2d:a7:8a:b8:93:
17:cb:4b:38:92:66:c7:cd:5d:d3:0e:63:5c:88:28:32:a3:af:
cf:e1:f6:3b:7c:14:69:a7:7b:f8:af:49:10:cb:87:fc:e9:18:
02:99:b5:85:4c:50:11:d3:33:fa:12:82:a4:1b:03:cb:33:cc:
d5:fe:4e:bf:88:10:48:c2:e9:4e:4f:7c:5f:94:07:b9:87:71:
81:c4:7e:9f:27:2b:38:ab:33:19:18:73:cd:e8:aa:e3:ec:16:
b3:f8:78:77:21:6c:d2:23:13:60:c2:b2:23:d5:16:3a:1a:3e:
2a:84:d8:64:23:96:12:d6:0d:c4:15:b3:ae:55:14:b0:f0:9d:
10:b1:56:60:1e:8b:db:c5:69:64:1f:9c:82:cd:f4:7c:87:bf:
9e:83:3b:43
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOIeN+DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
Nzc3YjViMzZmNjZlMTNjNDM4OGM5OTM0ZGE1MDc4NTY1MTVkMDczMB4XDTIyMDEw
MTAxNTE0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTliNjYzZmYwNmJj
OTNkZDc5ZWQxMmMwMWU0OGVjNzJjNDQ3ZTc4ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK8//3oMvAsopg0jIFIgSNptrDT8NY6Lojqhgq4OD+85NWOD
Pkt/3xfoqcB2vv90vPN4uDy2i0cuZ4YfwX3GyLRqj3tyql8fAPiqWet03D/XnX4Q
H7iLtoVTv1VlkArMO34s/gwoqfroMKzkqZtbXnZ3q4EJJhmP7UTlhpPmNLYHsonH
uJSpZZoM1IcPpdkEguUnEfMLELxzCOqRqeulGCx1JcThCVvbCzBfHj3kItdTB0rp
4Wkbxj5PNAVCvFm1yddlP7ks3tgR7zhsu7RWA/kNffb7VuG3HZy+eJdTHC+P/3/D
v4o6xOx5/U6zkJg7SBg77YtLyOz4mjxveXPCSYsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRZtmP/BryT3XntEsAeSOxyxEfniDAfBgNVHSMEGDAWgBSHd7Wzb2bhPEOI
yZNNpQeFZRXQczAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2gzZTFzMjltNFR4RGlNbVRUYVVIaFdVVjBITS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjEvZjkyZTJhLWUxZTQtNDg3ZC05YWNjLWVkMWYzMGNjMWM1Ny8x
L1diWmpfd2E4azkxNTdSTEFIa2pzY3NSSDU0Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjEv
ZjkyZTJhLWUxZTQtNDg3ZC05YWNjLWVkMWYzMGNjMWM1Ny8xL2gzZTFzMjltNFR4
RGlNbVRUYVVIaFdVVjBITS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFVYJzANBgkqhkiG9w0BAQsFAAOC
AQEAk4LSlxdyvSAZOJlZP6fQBE8fBtDC4JEWD31nBe0V7VnQmH5R9EtRYCYAZrX6
8eIE8UeoBH0fSXYAcLm8NZeOJWFcakD0YcoZaDy956Rv52LCtCfFY0rxeVFBAz3m
FdiKYR3GVwXxHC2niriTF8tLOJJmx81d0w5jXIgoMqOvz+H2O3wUaad7+K9JEMuH
/OkYApm1hUxQEdMz+hKCpBsDyzPM1f5Ov4gQSMLpTk98X5QHuYdxgcR+nycrOKsz
GRhzzeiq4+wWs/h4dyFs0iMTYMKyI9UWOho+KoTYZCOWEtYNxBWzrlUUsPCdELFW
YB6L28VpZB+cgs30fIe/noM7Qw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:22 2025 by rpki-client