Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/11081b-4ef9-4e2f-8153-287937940d7b/1/WXMDZdbej2O8B3NsbN5c70ech_0.roa
File: WXMDZdbej2O8B3NsbN5c70ech_0.roa (raw, json)
Hash identifier: CFDPjy5XvEu2C5s1gR6NJZcsdrHVXUiWEGLNN4mnyxI=
Subject key identifier: 59:73:03:65:D6:DE:8F:63:BC:07:73:6C:6C:DE:5C:EF:47:9C:87:FD
Certificate issuer: /CN=e7d799ae0efdd986dde77fb35ad0a10823cb972f
Certificate serial: 01836AF8985949DF43907AC0D04D5E959027
Authority key identifier: E7:D7:99:AE:0E:FD:D9:86:DD:E7:7F:B3:5A:D0:A1:08:23:CB:97:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/59eZrg792Ybd53-zWtChCCPLly8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/11081b-4ef9-4e2f-8153-287937940d7b/1/WXMDZdbej2O8B3NsbN5c70ech_0.roa
Signing time: Fri 23 Sep 2022 15:30:20 +0000
ROA not before: Fri 23 Sep 2022 15:30:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3261
IP address blocks: 2a02:300::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:6a:f8:98:59:49:df:43:90:7a:c0:d0:4d:5e:95:90:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7d799ae0efdd986dde77fb35ad0a10823cb972f
Validity
Not Before: Sep 23 15:30:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59730365d6de8f63bc07736c6cde5cef479c87fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f7:e9:33:35:36:94:8b:5b:45:fd:e9:6e:83:
40:f8:42:7d:79:f6:00:f3:22:16:6e:4f:37:de:1b:
07:f2:ed:0d:d5:cb:dc:bc:67:32:91:89:fe:88:38:
cf:f4:ff:37:1d:16:70:47:e8:60:51:03:e7:f8:5b:
1c:4f:6c:18:ff:9b:66:39:a2:b9:b3:5c:1a:7f:de:
63:4c:85:98:57:b0:50:c5:98:78:bd:2e:f0:eb:a0:
3f:ea:78:64:f3:7c:e8:76:8f:47:71:35:9a:86:65:
9d:b4:55:f8:00:b3:d0:ec:62:8c:a1:ea:e7:48:2d:
3a:e2:2c:b2:df:d4:35:45:f3:e7:c1:c5:b7:3b:78:
c4:b0:67:13:a3:7b:5c:3f:91:9f:7f:45:6c:ed:27:
eb:71:04:b7:b3:de:5c:18:05:ad:48:7a:f7:02:29:
53:e5:fd:01:63:24:04:12:71:20:ea:66:2d:e5:a1:
e8:fa:d2:72:12:a4:ff:a9:dd:82:1a:79:d3:06:05:
89:98:9b:28:45:b3:ba:6d:5a:91:48:7d:e7:3c:58:
fc:d0:35:1c:f2:1f:43:a7:8e:c5:3c:be:e5:e3:cc:
e7:f2:b0:d8:aa:64:27:8b:51:2b:02:cb:26:00:c5:
b1:3a:d7:dd:03:e0:eb:9c:62:b1:4a:83:a3:4d:40:
70:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:73:03:65:D6:DE:8F:63:BC:07:73:6C:6C:DE:5C:EF:47:9C:87:FD
X509v3 Authority Key Identifier:
keyid:E7:D7:99:AE:0E:FD:D9:86:DD:E7:7F:B3:5A:D0:A1:08:23:CB:97:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/59eZrg792Ybd53-zWtChCCPLly8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/11081b-4ef9-4e2f-8153-287937940d7b/1/WXMDZdbej2O8B3NsbN5c70ech_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/11081b-4ef9-4e2f-8153-287937940d7b/1/59eZrg792Ybd53-zWtChCCPLly8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:300::/32
Signature Algorithm: sha256WithRSAEncryption
95:2a:13:d1:5e:ba:5d:ff:67:61:77:c1:c6:73:a7:e9:9d:2a:
ff:0a:0f:ce:23:5f:df:9d:b5:b0:34:92:d7:9a:b7:77:63:0a:
0f:81:9d:26:e2:06:3b:e9:1a:34:6d:2b:fc:4e:8b:f1:d7:3d:
0a:bc:3c:21:8c:58:67:15:f2:5d:da:6e:29:64:74:d5:7e:9a:
aa:91:84:2a:6c:b4:62:58:79:bb:24:5d:b8:df:58:47:23:a3:
77:bc:9c:4d:d8:c1:b6:47:6d:bc:a3:66:05:e8:44:df:fe:34:
f4:b0:b3:f8:80:74:e0:8d:d9:72:03:55:db:5c:57:4e:73:f2:
fc:0a:a2:ed:83:71:ff:6d:65:fc:ab:e5:f1:3f:47:9d:fe:c4:
82:fc:70:ae:5c:e2:ed:c0:c2:3e:7a:c9:f1:0f:84:b3:2f:fa:
4c:0d:49:62:aa:15:ad:09:17:3f:56:88:46:d2:b0:d3:7b:f7:
24:e4:49:26:60:32:31:88:ed:83:fe:4b:ba:55:ad:ff:6e:63:
4b:72:74:a5:57:6f:d7:ec:61:3d:1b:ea:62:0e:d9:30:1a:e6:
b2:64:d3:05:8e:94:eb:74:05:98:1c:39:47:18:c9:bf:16:dc:
ad:3d:1d:ee:0f:2c:38:d7:b2:69:c4:67:a1:b7:74:d3:e7:ee:
4c:50:e6:aa
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYNq+JhZSd9DkHrA0E1elZAnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3ZDc5OWFlMGVmZGQ5ODZkZGU3N2ZiMzVhZDBhMTA4MjNj
Yjk3MmYwHhcNMjIwOTIzMTUzMDIwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OTczMDM2NWQ2ZGU4ZjYzYmMwNzczNmM2Y2RlNWNlZjQ3OWM4N2ZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhffpMzU2lItbRf3pboNA+EJ9efYA
8yIWbk833hsH8u0N1cvcvGcykYn+iDjP9P83HRZwR+hgUQPn+FscT2wY/5tmOaK5
s1waf95jTIWYV7BQxZh4vS7w66A/6nhk83zodo9HcTWahmWdtFX4ALPQ7GKMoern
SC064iyy39Q1RfPnwcW3O3jEsGcTo3tcP5Gff0Vs7SfrcQS3s95cGAWtSHr3AilT
5f0BYyQEEnEg6mYt5aHo+tJyEqT/qd2CGnnTBgWJmJsoRbO6bVqRSH3nPFj80DUc
8h9Dp47FPL7l48zn8rDYqmQni1ErAssmAMWxOtfdA+DrnGKxSoOjTUBwPQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFFlzA2XW3o9jvAdzbGzeXO9HnIf9MB8GA1UdIwQY
MBaAFOfXma4O/dmG3ed/s1rQoQgjy5cvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTllWnJnNzkyWWJkNTMteld0Q2hDQ1BMbHk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8xMTA4MWItNGVmOS00ZTJmLTgxNTMt
Mjg3OTM3OTQwZDdiLzEvV1hNRFpkYmVqMk84QjNOc2JONWM3MGVjaF8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS8xMTA4MWItNGVmOS00ZTJmLTgxNTMtMjg3OTM3OTQwZDdi
LzEvNTllWnJnNzkyWWJkNTMteld0Q2hDQ1BMbHk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgIDADAN
BgkqhkiG9w0BAQsFAAOCAQEAlSoT0V66Xf9nYXfBxnOn6Z0q/woPziNf3521sDSS
15q3d2MKD4GdJuIGO+kaNG0r/E6L8dc9Crw8IYxYZxXyXdpuKWR01X6aqpGEKmy0
Ylh5uyRduN9YRyOjd7ycTdjBtkdtvKNmBehE3/409LCz+IB04I3ZcgNV21xXTnPy
/Aqi7YNx/21l/Kvl8T9Hnf7Egvxwrlzi7cDCPnrJ8Q+Esy/6TA1JYqoVrQkXP1aI
RtKw03v3JORJJmAyMYjtg/5LulWt/25jS3J0pVdv1+xhPRvqYg7ZMBrmsmTTBY6U
63QFmBw5RxjJvxbcrT0d7g8sONeyacRnobd00+fuTFDmqg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:50 2023 by rpki-client on console-ams.rpki-client.org