Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/WWzaRwOgUC2XbAVIwrQWH_NggwY.roa
File: WWzaRwOgUC2XbAVIwrQWH_NggwY.roa (raw, json)
Hash identifier: WosZiKBLoUUFSAxGX37d2UskkXGHqwLAu59Yd4Oe0Xo=
Subject key identifier: 59:6C:DA:47:03:A0:50:2D:97:6C:05:48:C2:B4:16:1F:F3:60:83:06
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 151BA03C
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/WWzaRwOgUC2XbAVIwrQWH_NggwY.roa
Signing time: Fri 27 May 2022 13:04:13 +0000
ROA not before: Fri 27 May 2022 13:04:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 213.173.32.0/22 maxlen: 24
82.115.12.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354132028 (0x151ba03c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: May 27 13:04:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=596cda4703a0502d976c0548c2b4161ff3608306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:62:39:6a:22:83:77:c3:ed:55:f8:cf:41:ac:
a7:1b:37:d2:f8:b2:2e:63:f8:71:69:9e:21:8e:7f:
f3:88:e0:21:01:0d:66:89:b5:97:a8:27:d5:d3:d4:
a4:89:20:58:5e:8a:18:9f:e6:5b:8d:6d:8c:89:1c:
7b:b3:bb:b9:25:30:01:13:fc:8c:c9:21:31:66:19:
1f:5a:14:5a:ba:4f:62:fb:d5:48:d5:35:08:58:26:
b0:31:70:ea:3d:1a:48:5f:c0:61:d5:51:55:2c:84:
44:b2:34:d7:b9:eb:9e:e2:97:e6:11:c2:3d:2e:4c:
83:df:f4:8d:6e:85:0d:86:27:ed:51:12:e1:3c:16:
2e:a9:1f:94:21:e9:62:53:f7:5b:7e:77:77:c9:b4:
03:0c:81:99:9e:d7:eb:3e:1b:9c:07:14:f9:89:6b:
ef:fe:51:3b:16:e9:51:28:0c:a4:ba:e2:62:30:ac:
f8:1b:39:43:86:5e:35:bf:5d:00:fa:94:48:7a:39:
c4:cf:b8:be:af:ad:04:f8:7d:4f:7f:cb:9f:bf:36:
7e:7d:39:22:99:9b:f3:34:4c:77:60:60:cd:8d:5e:
72:db:86:5d:ab:c3:ef:97:f3:d9:9e:89:84:7b:a2:
c6:96:1e:eb:5b:cf:74:be:1e:24:5f:64:5f:71:eb:
89:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:6C:DA:47:03:A0:50:2D:97:6C:05:48:C2:B4:16:1F:F3:60:83:06
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/WWzaRwOgUC2XbAVIwrQWH_NggwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.12.0/23
213.173.32.0/22
Signature Algorithm: sha256WithRSAEncryption
84:33:ac:3e:ce:c4:41:00:79:4c:57:96:58:20:13:95:d7:6f:
6d:4a:56:ca:80:01:25:9f:73:ae:b6:21:f2:aa:dc:09:06:cc:
25:1c:aa:9d:48:e3:b9:03:b0:6d:5b:f4:d0:86:65:80:b6:7c:
fc:31:3a:87:b7:43:0e:b9:7e:42:22:ec:49:2f:aa:b7:1d:b3:
52:28:33:dd:41:a3:5a:e0:e6:ba:df:d3:04:9c:99:0b:b2:04:
52:4a:f6:72:35:46:23:b8:88:73:93:9f:85:b0:79:e4:5b:a2:
7b:96:e1:82:87:50:ec:34:cd:e5:bc:04:20:d2:d7:5f:1e:13:
c9:fe:df:94:6e:9c:99:46:fe:c2:eb:9a:0d:df:f4:d0:09:38:
1f:9d:f3:2c:51:8a:24:06:b7:27:ef:99:f3:6a:89:39:9e:4d:
5d:1a:ff:ca:8a:41:0f:c4:a8:9c:30:09:bb:4b:f3:30:b8:cd:
3d:9a:b3:af:5b:6a:23:dc:e3:13:99:e0:23:f9:58:6e:85:53:
75:10:32:77:85:16:d0:b6:0e:a0:1c:ce:20:27:93:48:1e:ef:
2a:18:e4:e3:3f:c0:1d:63:d1:a4:e6:93:cf:ce:a0:c9:e2:10:
83:2c:fb:b5:97:b1:a4:a9:80:84:68:e4:b4:42:0d:a5:bc:0e:
69:97:00:c5
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEFRugPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YWMzZGFhMWIxNDg1MGYyZTYxYzU5MmIyMTkxOTE1YTVlNjVhNDc4MB4XDTIyMDUy
NzEzMDQxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTk2Y2RhNDcwM2Ew
NTAyZDk3NmMwNTQ4YzJiNDE2MWZmMzYwODMwNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANdiOWoig3fD7VX4z0Gspxs30viyLmP4cWmeIY5/84jgIQEN
Zom1l6gn1dPUpIkgWF6KGJ/mW41tjIkce7O7uSUwARP8jMkhMWYZH1oUWrpPYvvV
SNU1CFgmsDFw6j0aSF/AYdVRVSyERLI017nrnuKX5hHCPS5Mg9/0jW6FDYYn7VES
4TwWLqkflCHpYlP3W353d8m0AwyBmZ7X6z4bnAcU+Ylr7/5ROxbpUSgMpLriYjCs
+Bs5Q4ZeNb9dAPqUSHo5xM+4vq+tBPh9T3/Ln782fn05Ipmb8zRMd2BgzY1ectuG
XavD75fz2Z6JhHuixpYe61vPdL4eJF9kX3HriRMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRZbNpHA6BQLZdsBUjCtBYf82CDBjAfBgNVHSMEGDAWgBQqw9qhsUhQ8uYc
WSshkZFaXmWkeDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tzUGFvYkZJVVBMbUhGa3JJWkdSV2w1bHBIZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvNDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8x
L1dXemFSd09nVUMyWGJBVkl3clFXSF9OZ2d3WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
NDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8xL0tzUGFvYkZJVVBM
bUhGa3JJWkdSV2w1bHBIZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAVJzDAMEAtWtIDANBgkqhkiG9w0B
AQsFAAOCAQEAhDOsPs7EQQB5TFeWWCATlddvbUpWyoABJZ9zrrYh8qrcCQbMJRyq
nUjjuQOwbVv00IZlgLZ8/DE6h7dDDrl+QiLsSS+qtx2zUigz3UGjWuDmut/TBJyZ
C7IEUkr2cjVGI7iIc5OfhbB55Fuie5bhgodQ7DTN5bwEINLXXx4Tyf7flG6cmUb+
wuuaDd/00Ak4H53zLFGKJAa3J++Z82qJOZ5NXRr/yopBD8SonDAJu0vzMLjNPZqz
r1tqI9zjE5ngI/lYboVTdRAyd4UW0LYOoBzOICeTSB7vKhjk4z/AHWPRpOaTz86g
yeIQgyz7tZexpKmAhGjktEINpbwOaZcAxQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:45 2023 by rpki-client on console-fra.rpki-client.org