Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d1dfd6-ccdf-4621-b454-6e3fa62cd2df/1/WXWDeMUIf8KdBBh9Q8XlDL1vjRA.roa
File: WXWDeMUIf8KdBBh9Q8XlDL1vjRA.roa (raw, json)
Hash identifier: 8oPWmGiNTHcKUTg73j+N3TrDMZXYnjZ34ioldEaggiw=
Subject key identifier: 59:75:83:78:C5:08:7F:C2:9D:04:18:7D:43:C5:E5:0C:BD:6F:8D:10
Certificate issuer: /CN=a2f516bf42214086db39847f9f563b4cf4a0ff43
Certificate serial: 01832151AB75E91461F0CA859EF2A70AF3A9
Authority key identifier: A2:F5:16:BF:42:21:40:86:DB:39:84:7F:9F:56:3B:4C:F4:A0:FF:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ovUWv0IhQIbbOYR_n1Y7TPSg_0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d1dfd6-ccdf-4621-b454-6e3fa62cd2df/1/WXWDeMUIf8KdBBh9Q8XlDL1vjRA.roa
Signing time: Fri 09 Sep 2022 08:15:43 +0000
ROA not before: Fri 09 Sep 2022 08:15:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5610
IP address blocks: 195.5.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:51:ab:75:e9:14:61:f0:ca:85:9e:f2:a7:0a:f3:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2f516bf42214086db39847f9f563b4cf4a0ff43
Validity
Not Before: Sep 9 08:15:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59758378c5087fc29d04187d43c5e50cbd6f8d10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0c:06:90:dc:7c:64:47:90:60:86:4c:dd:db:
48:4f:a0:a1:bc:ae:e8:26:d7:7c:bf:1b:52:a6:cc:
29:04:d4:ce:5b:78:4b:f1:0a:c3:5f:34:78:2a:c9:
fa:1c:76:5c:ad:73:83:85:41:f4:56:5a:99:ad:41:
26:07:fc:b5:f5:e6:2f:33:43:07:5c:5b:f5:e0:8e:
e3:22:0b:c2:6d:d3:50:45:92:e8:62:5b:0b:b1:8d:
94:65:4f:6f:59:5a:b6:b0:dc:27:e8:4b:c7:c5:91:
50:3b:f8:fb:4c:fb:d2:a7:08:36:93:43:c9:a7:48:
39:bd:64:df:7d:b5:c5:21:96:7b:e0:ba:fd:a7:35:
bc:42:a3:b5:a0:cf:79:2e:17:d5:41:d2:b5:d4:ec:
82:51:f8:46:0a:9e:a9:54:25:b6:c3:bb:df:9c:08:
68:d0:c4:12:de:28:db:b6:3b:97:c7:51:53:f4:90:
95:da:18:91:9f:b8:f2:91:0c:f2:a5:72:f6:86:38:
dc:8a:30:e3:95:f0:e0:40:4e:2d:ed:31:50:f1:4b:
d7:32:11:25:bb:26:02:0f:7e:16:86:b7:5d:61:51:
af:19:96:a9:52:18:c9:86:61:b3:dc:e3:ff:7a:1e:
c0:be:05:77:95:f4:79:31:2e:15:ea:42:62:3a:93:
ba:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:75:83:78:C5:08:7F:C2:9D:04:18:7D:43:C5:E5:0C:BD:6F:8D:10
X509v3 Authority Key Identifier:
keyid:A2:F5:16:BF:42:21:40:86:DB:39:84:7F:9F:56:3B:4C:F4:A0:FF:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ovUWv0IhQIbbOYR_n1Y7TPSg_0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d1dfd6-ccdf-4621-b454-6e3fa62cd2df/1/WXWDeMUIf8KdBBh9Q8XlDL1vjRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d1dfd6-ccdf-4621-b454-6e3fa62cd2df/1/ovUWv0IhQIbbOYR_n1Y7TPSg_0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.5.186.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:a4:97:18:d3:5d:4e:46:f5:50:fa:ce:1b:43:7f:76:b6:79:
41:9d:2a:30:70:46:ae:a1:5c:70:61:df:6c:42:3d:b9:16:52:
d1:f9:6f:c1:34:21:74:11:00:f0:30:11:bb:fd:1d:f9:bd:22:
6f:f2:24:0c:63:8c:7a:6a:ae:62:1b:2b:f5:02:f9:b7:2c:ed:
2c:d9:4b:a5:0e:8f:bf:90:6d:ba:81:91:ff:bf:36:ae:d1:b8:
61:4d:fd:16:37:54:77:06:11:a0:d2:e9:ba:6c:e5:c1:77:4e:
4e:fc:bd:ff:0c:80:a5:a4:4a:d9:d4:81:3c:34:a8:0c:41:7b:
b8:3a:0c:6f:6c:5d:f2:e6:70:39:b8:68:c5:0a:42:51:64:da:
96:99:f4:70:0e:81:fb:d5:b2:d8:72:9d:38:08:a0:a4:4d:45:
8c:a4:7c:52:00:9c:ae:8a:b4:08:74:0d:72:16:34:b1:1b:1b:
ab:51:4c:ea:be:1f:a5:ca:c5:8d:7b:dd:85:6f:e9:d2:6e:db:
3d:88:a9:ea:8c:d6:1d:f1:b1:d5:ba:af:f0:0a:ed:60:06:87:
49:f7:64:a5:6d:2d:1c:92:48:df:fe:c4:79:65:fe:e8:4d:79:
36:06:f8:b3:b3:0f:6c:0b:bb:46:72:b5:ae:f5:8b:ec:59:bb:
3d:53:bf:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMhUat16RRh8MqFnvKnCvOpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyZjUxNmJmNDIyMTQwODZkYjM5ODQ3ZjlmNTYzYjRjZjRh
MGZmNDMwHhcNMjIwOTA5MDgxNTQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OTc1ODM3OGM1MDg3ZmMyOWQwNDE4N2Q0M2M1ZTUwY2JkNmY4ZDEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhwwGkNx8ZEeQYIZM3dtIT6ChvK7o
Jtd8vxtSpswpBNTOW3hL8QrDXzR4Ksn6HHZcrXODhUH0VlqZrUEmB/y19eYvM0MH
XFv14I7jIgvCbdNQRZLoYlsLsY2UZU9vWVq2sNwn6EvHxZFQO/j7TPvSpwg2k0PJ
p0g5vWTffbXFIZZ74Lr9pzW8QqO1oM95LhfVQdK11OyCUfhGCp6pVCW2w7vfnAho
0MQS3ijbtjuXx1FT9JCV2hiRn7jykQzypXL2hjjcijDjlfDgQE4t7TFQ8UvXMhEl
uyYCD34WhrddYVGvGZapUhjJhmGz3OP/eh7AvgV3lfR5MS4V6kJiOpO6XQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFl1g3jFCH/CnQQYfUPF5Qy9b40QMB8GA1UdIwQY
MBaAFKL1Fr9CIUCG2zmEf59WO0z0oP9DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3ZVV3YwSWhRSWJiT1lSX24xWTdUUFNnXzBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9kMWRmZDYtY2NkZi00NjIxLWI0NTQt
NmUzZmE2MmNkMmRmLzEvV1hXRGVNVUlmOEtkQkJoOVE4WGxETDF2alJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9kMWRmZDYtY2NkZi00NjIxLWI0NTQtNmUzZmE2MmNkMmRm
LzEvb3ZVV3YwSWhRSWJiT1lSX24xWTdUUFNnXzBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwwW6MA0G
CSqGSIb3DQEBCwUAA4IBAQAfpJcY011ORvVQ+s4bQ392tnlBnSowcEauoVxwYd9s
Qj25FlLR+W/BNCF0EQDwMBG7/R35vSJv8iQMY4x6aq5iGyv1Avm3LO0s2UulDo+/
kG26gZH/vzau0bhhTf0WN1R3BhGg0um6bOXBd05O/L3/DIClpErZ1IE8NKgMQXu4
OgxvbF3y5nA5uGjFCkJRZNqWmfRwDoH71bLYcp04CKCkTUWMpHxSAJyuirQIdA1y
FjSxGxurUUzqvh+lysWNe92Fb+nSbts9iKnqjNYd8bHVuq/wCu1gBodJ92SlbS0c
kkjf/sR5Zf7oTXk2Bvizsw9sC7tGcrWu9YvsWbs9U78q
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:43 2025 by rpki-client