Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/WzVuHXzTx-v2SAz86v-aKSEZCuQ.roa
File: WzVuHXzTx-v2SAz86v-aKSEZCuQ.roa (raw, json)
Hash identifier: j73OA7o1zo8I9eVIToqrZZD7HAxLQUeAKALulQMZsIQ=
Subject key identifier: 5B:35:6E:1D:7C:D3:C7:EB:F6:48:0C:FC:EA:FF:9A:29:21:19:0A:E4
Certificate issuer: /CN=00f4cc412cc30fb2f9f7c37c3e390bec5e6256b0
Certificate serial: 055527EB
Authority key identifier: 00:F4:CC:41:2C:C3:0F:B2:F9:F7:C3:7C:3E:39:0B:EC:5E:62:56:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/WzVuHXzTx-v2SAz86v-aKSEZCuQ.roa
Signing time: Sat 01 Jan 2022 09:02:36 +0000
ROA not before: Sat 01 Jan 2022 09:02:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15525
IP address blocks: 158.162.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89466859 (0x55527eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00f4cc412cc30fb2f9f7c37c3e390bec5e6256b0
Validity
Not Before: Jan 1 09:02:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b356e1d7cd3c7ebf6480cfceaff9a2921190ae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:04:4b:a8:2c:24:ab:71:e6:ec:a1:74:ee:9f:
ac:3f:11:4f:cc:ef:e8:37:b6:a7:76:ed:62:0d:37:
f1:bf:38:be:c6:3b:a9:14:2b:62:ba:ac:01:73:af:
43:12:af:59:9b:f9:11:b0:e9:af:cd:71:7d:97:09:
ca:54:e2:5a:48:1c:79:1e:6a:60:3a:c7:72:86:43:
8e:98:97:a8:68:75:44:0a:ab:6e:24:43:bd:1a:1a:
89:6a:5e:c3:8e:9c:92:87:43:b5:73:45:37:99:ce:
b2:23:ce:6d:d7:35:cb:e4:cf:c0:3e:a7:31:61:2f:
90:83:d2:11:31:c9:67:e0:36:4e:8f:17:7f:52:31:
2f:f6:d7:d9:c0:30:6f:49:71:d5:5e:d9:a9:a8:30:
29:dd:1c:70:18:d1:14:78:ad:fe:69:c2:37:e8:40:
7f:9d:36:85:c4:11:c3:02:65:8e:60:00:9f:99:8b:
33:98:4c:81:0f:68:4c:c2:b6:0b:d7:2a:c9:ca:5e:
28:ca:26:2b:0b:b2:eb:d3:ff:1b:6b:29:3e:1d:4d:
80:cf:4d:95:18:f3:2f:45:1c:6e:4a:36:97:8c:bc:
3d:e5:71:b3:90:c8:c2:f2:40:e9:80:86:cc:ea:91:
b4:20:83:3a:f0:a1:25:33:e1:f5:01:e0:26:25:d8:
08:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:35:6E:1D:7C:D3:C7:EB:F6:48:0C:FC:EA:FF:9A:29:21:19:0A:E4
X509v3 Authority Key Identifier:
keyid:00:F4:CC:41:2C:C3:0F:B2:F9:F7:C3:7C:3E:39:0B:EC:5E:62:56:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/WzVuHXzTx-v2SAz86v-aKSEZCuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.162.120.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:42:15:7d:e1:0a:08:ce:c0:13:d8:5a:96:f0:97:80:e1:63:
8b:62:7e:96:bc:b9:34:d2:81:f4:62:08:32:89:0a:af:61:e6:
79:e0:c8:ce:b4:9b:2f:3a:6b:aa:6d:31:8a:1a:25:55:f0:3d:
41:23:bf:a2:48:e0:e7:c4:a6:ff:0a:87:96:06:cb:0d:37:76:
03:1c:e6:e1:47:60:a3:6f:6b:c6:c5:f8:02:0c:85:a9:f4:04:
06:ef:af:f1:07:d1:58:83:1b:2a:da:b5:86:26:1f:f7:0c:7d:
68:5e:d8:84:f0:d9:e0:2e:29:9f:09:a8:7c:e3:8d:8f:3b:4b:
14:f0:be:d4:67:7c:9a:92:fa:81:89:9f:61:fa:2f:e6:a8:d7:
02:04:44:11:7b:42:93:a2:97:af:db:25:c8:66:83:9c:65:b7:
84:38:db:96:b0:72:08:ac:51:7c:0f:5b:c9:a4:be:a6:16:a1:
f5:3c:8c:86:48:05:08:2c:85:d0:34:49:7c:34:06:37:c4:38:
74:36:53:87:d3:1e:f8:d0:06:03:b8:35:09:db:0a:98:d2:b9:
91:9e:8b:0a:c1:6f:1b:23:f1:52:d8:ac:d6:96:87:e6:6d:bd:
3a:c1:fe:88:45:dc:73:07:43:a7:76:8e:7b:22:77:05:9a:86:
64:3b:88:48
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBVUn6zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MGY0Y2M0MTJjYzMwZmIyZjlmN2MzN2MzZTM5MGJlYzVlNjI1NmIwMB4XDTIyMDEw
MTA5MDIzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWIzNTZlMWQ3Y2Qz
YzdlYmY2NDgwY2ZjZWFmZjlhMjkyMTE5MGFlNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALsES6gsJKtx5uyhdO6frD8RT8zv6De2p3btYg038b84vsY7
qRQrYrqsAXOvQxKvWZv5EbDpr81xfZcJylTiWkgceR5qYDrHcoZDjpiXqGh1RAqr
biRDvRoaiWpew46ckodDtXNFN5nOsiPObdc1y+TPwD6nMWEvkIPSETHJZ+A2To8X
f1IxL/bX2cAwb0lx1V7ZqagwKd0ccBjRFHit/mnCN+hAf502hcQRwwJljmAAn5mL
M5hMgQ9oTMK2C9cqycpeKMomKwuy69P/G2spPh1NgM9NlRjzL0Ucbko2l4y8PeVx
s5DIwvJA6YCGzOqRtCCDOvChJTPh9QHgJiXYCMkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRbNW4dfNPH6/ZIDPzq/5opIRkK5DAfBgNVHSMEGDAWgBQA9MxBLMMPsvn3
w3w+OQvsXmJWsDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FQVE1RU3pERDdMNTk4TjhQamtMN0Y1aVZyQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWMvOTM3NWEyLTNlNmYtNDU3Ny04NWQxLTVmMTQ1Y2ZkMjA3MC8x
L1d6VnVIWHpUeC12MlNBejg2di1hS1NFWkN1US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMv
OTM3NWEyLTNlNmYtNDU3Ny04NWQxLTVmMTQ1Y2ZkMjA3MC8xL0FQVE1RU3pERDdM
NTk4TjhQamtMN0Y1aVZyQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAp6ieDANBgkqhkiG9w0BAQsFAAOC
AQEATEIVfeEKCM7AE9halvCXgOFji2J+lry5NNKB9GIIMokKr2HmeeDIzrSbLzpr
qm0xiholVfA9QSO/okjg58Sm/wqHlgbLDTd2Axzm4Udgo29rxsX4AgyFqfQEBu+v
8QfRWIMbKtq1hiYf9wx9aF7YhPDZ4C4pnwmofOONjztLFPC+1Gd8mpL6gYmfYfov
5qjXAgREEXtCk6KXr9slyGaDnGW3hDjblrByCKxRfA9byaS+phah9TyMhkgFCCyF
0DRJfDQGN8Q4dDZTh9Me+NAGA7g1CdsKmNK5kZ6LCsFvGyPxUtis1paH5m29OsH+
iEXccwdDp3aOeyJ3BZqGZDuISA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:59 2023 by rpki-client on console-fra.rpki-client.org