Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/W0j8fFyWD2IgjNx80ERL4cvQ2eI.roa
File: W0j8fFyWD2IgjNx80ERL4cvQ2eI.roa (raw, json)
Hash identifier: SMGg4UBf4eqQshoMeU1dm21fn8B9GHaRQINE+kGhCkQ=
Subject key identifier: 5B:48:FC:7C:5C:96:0F:62:20:8C:DC:7C:D0:44:4B:E1:CB:D0:D9:E2
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 1325B575
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/W0j8fFyWD2IgjNx80ERL4cvQ2eI.roa
Signing time: Sat 01 Jan 2022 04:02:55 +0000
ROA not before: Sat 01 Jan 2022 04:02:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 188.253.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321238389 (0x1325b575)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 1 04:02:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b48fc7c5c960f62208cdc7cd0444be1cbd0d9e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:90:6e:fa:b3:b1:fd:ea:f4:9e:c9:84:67:d7:
79:7f:10:70:df:d0:de:91:b9:2c:67:c4:e5:ef:a5:
f8:08:94:53:a6:67:93:5f:d0:78:94:75:ec:a4:79:
a9:7a:f8:70:20:2f:42:1a:b4:ef:b8:25:b4:98:74:
de:4a:66:57:47:e4:ca:10:4d:44:36:08:fb:97:83:
cb:30:9d:d1:8c:c9:ed:1c:dc:83:2c:99:c8:8e:2f:
d6:13:c6:4e:b8:b7:d4:04:59:54:91:8e:d4:10:46:
bc:05:8c:b0:97:8c:97:f8:91:d5:4d:dd:ff:42:08:
9a:e1:e9:7a:4c:ab:d3:42:72:17:30:64:24:1c:d8:
f3:0c:73:47:44:e9:7b:b0:47:22:86:fe:e1:cd:75:
b7:10:77:0c:27:17:f1:1e:f6:a5:49:97:5b:75:3c:
ae:b9:5d:44:29:fb:21:b9:1c:8b:95:18:8f:cf:07:
15:a6:a6:45:f3:2c:91:7c:88:97:05:1b:b9:bf:33:
0a:8e:0f:37:2a:16:0e:e7:08:93:dd:92:85:b4:08:
9b:be:83:0c:54:3d:35:16:51:b7:b3:be:93:6a:a5:
ff:83:28:18:a8:35:76:5e:86:70:1a:38:b0:84:4d:
74:5d:84:a8:f5:50:55:65:72:54:08:61:04:00:b8:
8f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:48:FC:7C:5C:96:0F:62:20:8C:DC:7C:D0:44:4B:E1:CB:D0:D9:E2
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/W0j8fFyWD2IgjNx80ERL4cvQ2eI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.253.1.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:56:14:a6:9b:27:cf:6e:d8:74:ac:b9:d4:c9:14:81:cb:fe:
80:71:97:b0:2c:4f:6e:70:74:0a:5c:8d:93:c6:b8:3f:da:73:
53:44:cc:eb:e0:4c:3c:a1:2f:46:fd:94:31:84:90:2a:6a:58:
59:65:9f:cc:47:f2:89:6c:8b:46:60:ce:49:93:dc:0f:fe:c1:
8d:f4:c6:07:49:77:cf:a0:8c:32:f2:f4:a2:fc:dc:3c:c7:16:
7f:9a:f6:33:e9:07:ff:2e:b0:07:80:55:19:bb:27:ad:bf:f4:
e8:35:54:f6:49:4f:d0:68:55:df:a2:d7:89:f7:a4:01:55:f0:
31:f4:5a:58:8e:49:80:e2:f4:af:54:27:a5:48:88:b5:19:c0:
9d:dc:f5:ed:f1:4e:ac:da:81:a5:3a:8b:7d:3b:b0:49:73:c1:
3a:1e:27:99:05:74:42:1d:59:69:15:04:18:38:84:87:78:3f:
10:63:dc:48:8d:d1:96:eb:7f:88:6b:48:44:ab:0a:53:58:a5:
f4:da:65:68:65:61:a2:00:c1:e8:41:b0:b3:5c:2f:c5:6d:ae:
79:58:3a:c1:06:77:c0:42:fa:61:a6:d2:2b:ea:d4:67:cb:7d:
2e:3f:65:b2:b1:77:69:5c:67:fb:48:14:b0:88:31:bc:c8:ad:
4a:51:d2:dd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEyW1dTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YWMzZGFhMWIxNDg1MGYyZTYxYzU5MmIyMTkxOTE1YTVlNjVhNDc4MB4XDTIyMDEw
MTA0MDI1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWI0OGZjN2M1Yzk2
MGY2MjIwOGNkYzdjZDA0NDRiZTFjYmQwZDllMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN+Qbvqzsf3q9J7JhGfXeX8QcN/Q3pG5LGfE5e+l+AiUU6Zn
k1/QeJR17KR5qXr4cCAvQhq077gltJh03kpmV0fkyhBNRDYI+5eDyzCd0YzJ7Rzc
gyyZyI4v1hPGTri31ARZVJGO1BBGvAWMsJeMl/iR1U3d/0IImuHpekyr00JyFzBk
JBzY8wxzR0Tpe7BHIob+4c11txB3DCcX8R72pUmXW3U8rrldRCn7Ibkci5UYj88H
FaamRfMskXyIlwUbub8zCo4PNyoWDucIk92ShbQIm76DDFQ9NRZRt7O+k2ql/4Mo
GKg1dl6GcBo4sIRNdF2EqPVQVWVyVAhhBAC4j/cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRbSPx8XJYPYiCM3HzQREvhy9DZ4jAfBgNVHSMEGDAWgBQqw9qhsUhQ8uYc
WSshkZFaXmWkeDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tzUGFvYkZJVVBMbUhGa3JJWkdSV2w1bHBIZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvNDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8x
L1cwajhmRnlXRDJJZ2pOeDgwRVJMNGN2UTJlSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
NDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8xL0tzUGFvYkZJVVBM
bUhGa3JJWkdSV2w1bHBIZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALz9ATANBgkqhkiG9w0BAQsFAAOC
AQEAoVYUppsnz27YdKy51MkUgcv+gHGXsCxPbnB0ClyNk8a4P9pzU0TM6+BMPKEv
Rv2UMYSQKmpYWWWfzEfyiWyLRmDOSZPcD/7BjfTGB0l3z6CMMvL0ovzcPMcWf5r2
M+kH/y6wB4BVGbsnrb/06DVU9klP0GhV36LXifekAVXwMfRaWI5JgOL0r1QnpUiI
tRnAndz17fFOrNqBpTqLfTuwSXPBOh4nmQV0Qh1ZaRUEGDiEh3g/EGPcSI3Rlut/
iGtIRKsKU1il9NplaGVhogDB6EGws1wvxW2ueVg6wQZ3wEL6YabSK+rUZ8t9Lj9l
srF3aVxn+0gUsIgxvMitSlHS3Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org