Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/WUMbeDJ5lGbDdWUaq2hA8yl44Rw.roa
File: WUMbeDJ5lGbDdWUaq2hA8yl44Rw.roa (raw, json)
Hash identifier: DsZ1cwvT4Ob4fy4PePZ2SO7lQE+qbsVsRUWJpT0+hEA=
Subject key identifier: 59:43:1B:78:32:79:94:66:C3:75:65:1A:AB:68:40:F3:29:78:E1:1C
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38CD6040
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/WUMbeDJ5lGbDdWUaq2hA8yl44Rw.roa
Signing time: Sat 01 Jan 2022 07:55:11 +0000
ROA not before: Sat 01 Jan 2022 07:55:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1149
IP address blocks: 145.100.118.0/23 maxlen: 24
2001:610:9000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 952983616 (0x38cd6040)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59431b7832799466c375651aab6840f32978e11c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:43:e7:52:b8:3f:3f:ad:d8:25:a6:5c:c1:f1:
5f:6a:08:4d:cc:b4:e7:74:c9:6e:07:ff:8f:e5:17:
15:6e:15:0c:3c:cb:6c:58:a8:66:14:3f:74:cb:04:
95:22:0e:12:78:4e:aa:b2:ca:9a:86:3c:c6:51:db:
9e:32:8f:37:4b:fd:5d:25:0d:2b:e2:c9:3f:c3:a9:
cc:1d:ee:ab:19:dd:de:42:c0:05:3f:d9:ef:76:22:
db:c5:a1:32:c6:38:80:13:f2:f5:9f:bf:24:76:77:
ce:04:48:44:c8:43:4d:91:d3:3a:de:77:8d:af:bc:
d4:59:58:78:0d:7f:a9:15:eb:5c:79:ad:0d:17:48:
ed:32:fa:bf:3e:a2:ea:d3:c0:10:86:12:ed:1e:93:
62:74:84:11:71:e5:ee:be:92:be:8c:81:fe:f2:22:
e0:a6:10:fe:74:84:02:79:b7:43:65:00:a1:83:bd:
df:ae:d9:c9:94:50:55:0f:f4:9e:67:20:47:1e:22:
49:90:e7:4b:0d:c9:51:95:c1:9c:92:86:62:52:91:
7c:25:97:36:62:ac:3d:84:4b:cf:6f:1b:d0:b5:f9:
7b:f9:c0:72:1f:ec:e5:3b:c0:e1:62:3b:a0:78:e3:
af:31:03:98:b4:bb:9a:3f:eb:1c:20:ce:98:4c:bb:
16:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:43:1B:78:32:79:94:66:C3:75:65:1A:AB:68:40:F3:29:78:E1:1C
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/WUMbeDJ5lGbDdWUaq2hA8yl44Rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.100.118.0/23
IPv6:
2001:610:9000::/40
Signature Algorithm: sha256WithRSAEncryption
aa:cc:6a:e3:92:fb:f8:6f:46:0d:cb:11:d3:b8:41:50:36:da:
13:1c:3b:f4:bd:bd:e2:f4:7e:a8:1b:c3:58:63:73:cf:34:8f:
9b:e3:a0:71:4f:6e:55:46:e4:42:6c:11:b8:7a:16:e7:52:bb:
7f:89:7a:f5:f6:2c:e2:6e:af:69:3c:27:d8:59:a3:f8:c3:d3:
d3:04:97:ad:c1:04:60:5b:e9:b7:b1:3d:43:96:86:7b:39:00:
b2:33:d4:87:5a:42:54:84:e1:3a:5a:a6:ae:86:da:f7:c0:8b:
bf:f9:08:f4:fc:4e:86:7d:b6:52:c3:08:7b:da:a4:8d:4e:4f:
27:bb:47:0a:98:47:40:7f:aa:d4:b7:a1:d8:60:76:b8:43:7e:
e6:5d:a2:b2:2d:cd:25:c5:b1:e7:f5:3b:a0:3e:97:7a:2c:5b:
be:8b:7d:f5:27:b3:a8:4d:bc:8f:d6:bb:42:92:65:ba:ee:c5:
2e:60:6b:24:2c:4e:cd:0a:f1:cd:3d:62:29:84:70:3b:36:b5:
77:aa:0b:bf:3f:e8:56:7d:58:06:d0:36:e1:48:5b:71:44:ac:
14:bf:18:a3:80:4c:a1:57:e5:cd:90:35:62:0c:c8:4e:68:03:
b3:8a:37:e0:85:a9:89:2a:02:16:9a:84:59:09:6f:f3:83:9d:
09:a9:c7:d0
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIEOM1gQDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NzczZGIxNzc5NWQyYmYxYjRiNTM0NWM1YjI5MzkwZGJhZjQ1MjNlMB4XDTIyMDEw
MTA3NTUxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTk0MzFiNzgzMjc5
OTQ2NmMzNzU2NTFhYWI2ODQwZjMyOTc4ZTExYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALJD51K4Pz+t2CWmXMHxX2oITcy053TJbgf/j+UXFW4VDDzL
bFioZhQ/dMsElSIOEnhOqrLKmoY8xlHbnjKPN0v9XSUNK+LJP8OpzB3uqxnd3kLA
BT/Z73Yi28WhMsY4gBPy9Z+/JHZ3zgRIRMhDTZHTOt53ja+81FlYeA1/qRXrXHmt
DRdI7TL6vz6i6tPAEIYS7R6TYnSEEXHl7r6SvoyB/vIi4KYQ/nSEAnm3Q2UAoYO9
367ZyZRQVQ/0nmcgRx4iSZDnSw3JUZXBnJKGYlKRfCWXNmKsPYRLz28b0LX5e/nA
ch/s5TvA4WI7oHjjrzEDmLS7mj/rHCDOmEy7FkECAwEAAaOCAhkwggIVMB0GA1Ud
DgQWBBRZQxt4MnmUZsN1ZRqraEDzKXjhHDAfBgNVHSMEGDAWgBQXc9sXeV0r8bS1
NFxbKTkNuvRSPjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0YzUGJGM2xkS19HMHRUUmNXeWs1RGJyMFVqNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmQvZjc3Y2JkLTg5M2ItNDYxNi05ZDc2LTU0ODYxZjIzMjQ5ZC8x
L1dVTWJlREo1bEdiRGRXVWFxMmhBOHlsNDRSdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQv
Zjc3Y2JkLTg5M2ItNDYxNi05ZDc2LTU0ODYxZjIzMjQ5ZC8xL0YzUGJGM2xkS19H
MHRUUmNXeWs1RGJyMFVqNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAv
BggrBgEFBQcBBwEB/wQgMB4wDAQCAAEwBgMEAZFkdjAOBAIAAjAIAwYAIAEGEJAw
DQYJKoZIhvcNAQELBQADggEBAKrMauOS+/hvRg3LEdO4QVA22hMcO/S9veL0fqgb
w1hjc880j5vjoHFPblVG5EJsEbh6FudSu3+JevX2LOJur2k8J9hZo/jD09MEl63B
BGBb6bexPUOWhns5ALIz1IdaQlSE4Tpapq6G2vfAi7/5CPT8ToZ9tlLDCHvapI1O
Tye7RwqYR0B/qtS3odhgdrhDfuZdorItzSXFsef1O6A+l3osW76LffUns6hNvI/W
u0KSZbruxS5gayQsTs0K8c09YimEcDs2tXeqC78/6FZ9WAbQNuFIW3FErBS/GKOA
TKFX5c2QNWIMyE5oA7OKN+CFqYkqAhaahFkJb/ODnQmpx9A=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org