Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/wnsL9HG_2uGT8opqwCiRWCeeXKY.roa
File: wnsL9HG_2uGT8opqwCiRWCeeXKY.roa (raw, json)
Hash identifier: +/6w03AJX0DIv2zcG0J+neNT90thFR+F3vUUP99i1yY=
Subject key identifier: C2:7B:0B:F4:71:BF:DA:E1:93:F2:8A:6A:C0:28:91:58:27:9E:5C:A6
Certificate issuer: /CN=1662cfd26eccf289757399cc99c17d1cb4357535
Certificate serial: 05875829
Authority key identifier: 16:62:CF:D2:6E:CC:F2:89:75:73:99:CC:99:C1:7D:1C:B4:35:75:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/wnsL9HG_2uGT8opqwCiRWCeeXKY.roa
Signing time: Sat 01 Jan 2022 08:52:49 +0000
ROA not before: Sat 01 Jan 2022 08:52:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15945
IP address blocks: 45.148.216.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92756009 (0x5875829)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1662cfd26eccf289757399cc99c17d1cb4357535
Validity
Not Before: Jan 1 08:52:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c27b0bf471bfdae193f28a6ac0289158279e5ca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6f:0e:4a:ad:e7:5f:05:0d:55:68:3e:28:78:
87:82:4d:aa:4e:44:30:7d:e8:1e:b0:19:db:6e:ba:
8d:86:01:0e:94:6a:c7:b0:1e:3a:5e:1d:4c:78:c1:
a3:ad:b0:10:f1:36:1f:fe:a2:b9:55:5d:39:99:e4:
e0:72:b2:e3:d1:1a:03:22:10:8a:ea:16:4d:c0:fc:
52:4c:05:67:b3:52:02:22:cc:f3:42:7f:12:0a:ff:
ff:32:7a:3b:ce:8b:60:55:35:17:1d:63:56:ff:63:
e1:67:5a:94:9d:00:ae:fd:91:33:8a:03:f5:7e:e8:
98:3b:5f:b9:5e:b6:fc:ab:5c:80:65:b6:0f:bc:48:
85:66:fd:71:54:ac:35:68:53:40:34:2d:d5:5e:5f:
82:28:ae:b5:94:5a:0d:fc:dd:7b:56:6b:b6:25:a8:
12:c4:59:55:2a:71:69:87:6f:00:37:ac:ee:3b:a9:
34:e2:a2:9e:1f:e2:6e:75:3b:49:71:3f:8a:fa:91:
ae:4c:31:f7:c0:02:3c:2d:6a:a0:3e:4d:38:06:7c:
03:db:81:1d:a0:40:6c:4b:b9:3d:02:f5:7d:c3:4e:
be:4f:f6:d2:88:ca:7e:d1:67:55:e7:c5:20:87:83:
28:e2:a9:01:9b:d6:85:e1:2f:27:48:8f:0b:bb:01:
b4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:7B:0B:F4:71:BF:DA:E1:93:F2:8A:6A:C0:28:91:58:27:9E:5C:A6
X509v3 Authority Key Identifier:
keyid:16:62:CF:D2:6E:CC:F2:89:75:73:99:CC:99:C1:7D:1C:B4:35:75:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/wnsL9HG_2uGT8opqwCiRWCeeXKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5b9878-2080-4354-9592-b7231941fc3a/1/FmLP0m7M8ol1c5nMmcF9HLQ1dTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.216.0/23
Signature Algorithm: sha256WithRSAEncryption
60:d8:e5:33:06:cc:6b:8b:ff:62:ff:bb:66:e4:ad:24:2d:ee:
f5:51:81:29:b8:b9:7c:0a:17:78:81:79:f3:e1:fa:e2:f5:5a:
0e:95:f1:c5:78:e1:f7:fa:c2:df:52:7c:8b:76:e2:02:68:14:
2f:64:35:86:e4:91:87:cc:fc:f6:5b:5b:01:49:03:06:54:7b:
53:1f:ea:c3:70:9a:90:fe:7e:9f:b4:6e:bd:95:eb:c1:c9:ac:
1f:f3:7e:5f:4a:65:6d:6d:42:8a:7f:7a:68:47:a4:31:e6:f3:
c1:b2:9e:ee:fd:ea:18:ee:b5:81:96:d8:3c:44:12:68:b8:ac:
8c:0f:29:a9:bf:62:4e:0d:7a:18:14:c4:c6:c5:7d:e2:a3:be:
ea:d9:37:02:21:3e:f0:7c:ce:8d:e5:67:42:47:c0:0a:94:32:
88:07:0d:fa:a9:69:e5:ca:7b:59:08:51:b9:71:c1:8f:d3:fd:
06:e6:e3:7d:ab:97:8c:8f:7a:3b:0e:ef:8e:95:08:d8:8f:44:
2e:f2:e7:f8:a4:e2:e3:fa:bb:9c:87:7e:0c:a0:f2:59:a1:2f:
78:5b:82:09:f1:2e:8b:ae:8e:7f:23:18:1d:81:5f:2b:88:25:
5b:63:85:d5:32:1c:e2:38:5c:2f:aa:66:6f:3d:46:9f:a1:aa:
e4:9f:94:33
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBYdYKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NjYyY2ZkMjZlY2NmMjg5NzU3Mzk5Y2M5OWMxN2QxY2I0MzU3NTM1MB4XDTIyMDEw
MTA4NTI0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzI3YjBiZjQ3MWJm
ZGFlMTkzZjI4YTZhYzAyODkxNTgyNzllNWNhNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKBvDkqt518FDVVoPih4h4JNqk5EMH3oHrAZ2266jYYBDpRq
x7AeOl4dTHjBo62wEPE2H/6iuVVdOZnk4HKy49EaAyIQiuoWTcD8UkwFZ7NSAiLM
80J/Egr//zJ6O86LYFU1Fx1jVv9j4WdalJ0Arv2RM4oD9X7omDtfuV62/KtcgGW2
D7xIhWb9cVSsNWhTQDQt1V5fgiiutZRaDfzde1ZrtiWoEsRZVSpxaYdvADes7jup
NOKinh/ibnU7SXE/ivqRrkwx98ACPC1qoD5NOAZ8A9uBHaBAbEu5PQL1fcNOvk/2
0ojKftFnVefFIIeDKOKpAZvWheEvJ0iPC7sBtLUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTCewv0cb/a4ZPyimrAKJFYJ55cpjAfBgNVHSMEGDAWgBQWYs/SbszyiXVz
mcyZwX0ctDV1NTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZtTFAwbTdNOG9sMWM1bk1tY0Y5SExRMWRUVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODMvNWI5ODc4LTIwODAtNDM1NC05NTkyLWI3MjMxOTQxZmMzYS8x
L3duc0w5SEdfMnVHVDhvcHF3Q2lSV0NlZVhLWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODMv
NWI5ODc4LTIwODAtNDM1NC05NTkyLWI3MjMxOTQxZmMzYS8xL0ZtTFAwbTdNOG9s
MWM1bk1tY0Y5SExRMWRUVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS2U2DANBgkqhkiG9w0BAQsFAAOC
AQEAYNjlMwbMa4v/Yv+7ZuStJC3u9VGBKbi5fAoXeIF58+H64vVaDpXxxXjh9/rC
31J8i3biAmgUL2Q1huSRh8z89ltbAUkDBlR7Ux/qw3CakP5+n7RuvZXrwcmsH/N+
X0plbW1Cin96aEekMebzwbKe7v3qGO61gZbYPEQSaLisjA8pqb9iTg16GBTExsV9
4qO+6tk3AiE+8HzOjeVnQkfACpQyiAcN+qlp5cp7WQhRuXHBj9P9BubjfauXjI96
Ow7vjpUI2I9ELvLn+KTi4/q7nId+DKDyWaEveFuCCfEui66OfyMYHYFfK4glW2OF
1TIc4jhcL6pmbz1Gn6Gq5J+UMw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:23 2023 by rpki-client on console-ams.rpki-client.org