Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/wBXuplPQJGDMAtpHCIXRBiSbY_U.roa
File: wBXuplPQJGDMAtpHCIXRBiSbY_U.roa (raw, json)
Hash identifier: w59CI5aiXbVIzZX8WXsg9py5elG3gc+DuU8DOILG8Rg=
Subject key identifier: C0:15:EE:A6:53:D0:24:60:CC:02:DA:47:08:85:D1:06:24:9B:63:F5
Certificate issuer: /CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Certificate serial: 0184147E7ADD76BAD680DBEE2D5150277987
Authority key identifier: 3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/wBXuplPQJGDMAtpHCIXRBiSbY_U.roa
Signing time: Wed 26 Oct 2022 13:32:24 +0000
ROA not before: Wed 26 Oct 2022 13:32:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199296
IP address blocks: 91.233.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:14:7e:7a:dd:76:ba:d6:80:db:ee:2d:51:50:27:79:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf468d1515ad6f14ca69cf9c772e5cb57d277d6
Validity
Not Before: Oct 26 13:32:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c015eea653d02460cc02da470885d106249b63f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:61:1e:13:4c:a3:01:2f:91:b3:0b:49:8a:6f:
f5:56:1f:7b:71:8a:ea:69:46:36:1e:01:57:1f:a0:
ab:09:06:30:65:dd:d0:d7:55:31:a5:98:8c:81:26:
c4:5f:b6:00:17:37:f8:1f:44:6a:8f:08:cd:a2:35:
12:6e:db:7a:6a:5c:a4:d9:63:65:5a:ca:fa:05:ce:
70:83:2a:e8:e4:4a:6d:96:2a:86:2d:f6:0a:3e:72:
eb:9b:64:1f:a8:f9:75:dd:12:b2:f3:3d:bf:5e:ad:
ba:03:1f:3c:a6:e7:17:79:8d:0d:53:e0:7b:65:8e:
8b:f8:81:46:c5:ac:da:7b:57:da:95:63:81:d7:b2:
39:38:c1:c9:95:51:6e:50:86:41:85:f8:e9:69:0a:
a2:ad:7c:02:3d:8d:55:e3:6d:c8:b6:12:5b:ca:23:
44:fb:fa:29:62:8a:2d:a2:9a:cc:02:5f:6d:65:e9:
cb:93:4d:f5:ff:4b:66:1a:74:57:14:8d:e3:4c:22:
21:41:e6:25:1a:7e:48:2b:00:ea:df:e7:41:e7:9b:
74:f1:d6:83:63:11:48:d4:d3:e8:19:7e:de:37:04:
16:82:b5:f9:da:5c:7c:3f:b3:a8:91:a2:b4:a9:81:
56:e3:4a:a0:ff:e8:32:3c:a9:94:e6:51:5f:01:59:
a9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:15:EE:A6:53:D0:24:60:CC:02:DA:47:08:85:D1:06:24:9B:63:F5
X509v3 Authority Key Identifier:
keyid:3B:F4:68:D1:51:5A:D6:F1:4C:A6:9C:F9:C7:72:E5:CB:57:D2:77:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/wBXuplPQJGDMAtpHCIXRBiSbY_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/821f35-a880-4d64-adc0-4611046f1a4e/1/O_Ro0VFa1vFMppz5x3Lly1fSd9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.136.0/22
Signature Algorithm: sha256WithRSAEncryption
20:07:52:e5:ca:57:7d:a2:a1:63:90:23:98:ea:6b:49:26:cb:
e8:1f:e6:af:2c:c0:ca:2a:13:d3:ff:ef:9f:c1:cd:d2:71:2e:
17:16:4a:93:09:4b:92:ac:41:0f:b0:b5:a2:d2:0d:0a:d8:ab:
52:8e:08:4f:b9:73:d6:db:c7:54:e9:26:6b:4d:2f:32:a5:ef:
67:6d:a0:c1:ec:c3:58:4a:d9:93:58:d2:d0:c6:40:41:9e:61:
13:d4:41:61:98:ee:3b:40:73:60:c9:b2:5b:b3:81:88:aa:a0:
0e:f4:90:0f:5d:3f:ac:43:56:ba:3e:fd:ce:61:70:64:b9:af:
90:50:26:25:eb:96:05:d5:aa:6b:29:5d:11:c5:dc:0c:12:09:
81:be:8e:ac:6b:1c:f3:8d:e0:14:fc:6f:3c:04:05:0e:3c:53:
50:d6:77:a0:86:ea:31:22:94:c3:87:cd:7d:a3:a0:9b:1d:cd:
7f:84:90:31:f6:0c:e4:45:ca:3e:e6:dc:f6:fe:57:90:09:cd:
5b:ca:50:e5:a0:f6:85:46:63:d0:47:17:8a:74:04:2e:36:a0:
84:20:27:e4:91:fa:8f:58:dd:d3:db:cd:6f:7b:34:df:d6:53:
f0:69:09:c1:d0:14:5f:05:14:5b:fe:c2:85:f3:9c:a0:9f:31:
01:5e:f9:81
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQUfnrddrrWgNvuLVFQJ3mHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZjQ2OGQxNTE1YWQ2ZjE0Y2E2OWNmOWM3NzJlNWNiNTdk
Mjc3ZDYwHhcNMjIxMDI2MTMzMjI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMDE1ZWVhNjUzZDAyNDYwY2MwMmRhNDcwODg1ZDEwNjI0OWI2M2Y1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkGEeE0yjAS+RswtJim/1Vh97cYrq
aUY2HgFXH6CrCQYwZd3Q11UxpZiMgSbEX7YAFzf4H0RqjwjNojUSbtt6alyk2WNl
Wsr6Bc5wgyro5EptliqGLfYKPnLrm2QfqPl13RKy8z2/Xq26Ax88pucXeY0NU+B7
ZY6L+IFGxazae1falWOB17I5OMHJlVFuUIZBhfjpaQqirXwCPY1V423IthJbyiNE
+/opYootoprMAl9tZenLk031/0tmGnRXFI3jTCIhQeYlGn5IKwDq3+dB55t08daD
YxFI1NPoGX7eNwQWgrX52lx8P7OokaK0qYFW40qg/+gyPKmU5lFfAVmpWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMAV7qZT0CRgzALaRwiF0QYkm2P1MB8GA1UdIwQY
MBaAFDv0aNFRWtbxTKac+cdy5ctX0nfWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT19SbzBWRmExdkZNcHB6NXgzTGx5MWZTZDlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC84MjFmMzUtYTg4MC00ZDY0LWFkYzAt
NDYxMTA0NmYxYTRlLzEvd0JYdXBsUFFKR0RNQXRwSENJWFJCaVNiWV9VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC84MjFmMzUtYTg4MC00ZDY0LWFkYzAtNDYxMTA0NmYxYTRl
LzEvT19SbzBWRmExdkZNcHB6NXgzTGx5MWZTZDlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW+mIMA0G
CSqGSIb3DQEBCwUAA4IBAQAgB1Llyld9oqFjkCOY6mtJJsvoH+avLMDKKhPT/++f
wc3ScS4XFkqTCUuSrEEPsLWi0g0K2KtSjghPuXPW28dU6SZrTS8ype9nbaDB7MNY
StmTWNLQxkBBnmET1EFhmO47QHNgybJbs4GIqqAO9JAPXT+sQ1a6Pv3OYXBkua+Q
UCYl65YF1aprKV0RxdwMEgmBvo6saxzzjeAU/G88BAUOPFNQ1neghuoxIpTDh819
o6CbHc1/hJAx9gzkRco+5tz2/leQCc1bylDloPaFRmPQRxeKdAQuNqCEICfkkfqP
WN3T281vezTf1lPwaQnB0BRfBRRb/sKF85ygnzEBXvmB
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:07 2024 by rpki-client on console-fra.rpki-client.org