Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/WKFBe9imJpd1TtVW4MWFGIVCxD4.roa
File: WKFBe9imJpd1TtVW4MWFGIVCxD4.roa (raw, json)
Hash identifier: dsUOP4Q9jU34Q6jAjZf99o0JD174fcNMecDcVbDlp8s=
Subject key identifier: 58:A1:41:7B:D8:A6:26:97:75:4E:D5:56:E0:C5:85:18:85:42:C4:3E
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 02F69B21
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/WKFBe9imJpd1TtVW4MWFGIVCxD4.roa
Signing time: Wed 08 Jun 2022 06:53:02 +0000
ROA not before: Wed 08 Jun 2022 06:53:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 147.185.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49716001 (0x2f69b21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jun 8 06:53:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58a1417bd8a62697754ed556e0c585188542c43e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ab:9b:15:56:b6:b6:01:96:67:dc:cd:0d:43:
82:1a:c9:f4:64:6c:d8:2c:63:fb:5b:f5:86:11:2e:
3e:f2:82:55:9f:d8:f9:94:1b:1c:af:44:c7:52:81:
00:3e:3e:46:d0:41:71:80:d1:c1:e5:0a:18:9c:a4:
c0:23:ba:79:75:78:e7:00:e1:95:fc:8a:c4:e5:99:
ca:77:11:da:4f:07:de:a9:62:7a:c1:bc:68:8a:b2:
37:0f:c9:e9:39:c6:b7:c3:71:55:d0:58:77:ff:d9:
71:6a:5c:68:eb:71:80:5d:8f:c9:77:df:17:82:e2:
6e:87:43:ed:31:ff:da:a2:fc:8d:d9:c2:ce:f6:4e:
ba:bc:c4:f6:09:40:19:80:61:5e:ca:8a:0a:c1:63:
f2:83:88:6d:cc:e2:7a:53:84:d3:72:5f:e5:7e:12:
7d:03:88:4f:fa:0b:89:b8:76:33:73:79:90:d6:4f:
87:03:a6:8f:ba:b0:50:8b:60:4d:3d:f2:be:89:45:
fb:a3:35:a7:59:0b:01:38:a6:db:a3:0a:b4:ad:b4:
e9:1c:d9:44:05:75:d8:75:01:b1:f5:cc:3d:24:58:
ad:9d:be:b5:d1:04:35:e7:d3:67:6e:4a:2f:8a:b1:
d0:97:58:98:34:d1:02:36:8a:38:08:df:d9:7e:d4:
58:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A1:41:7B:D8:A6:26:97:75:4E:D5:56:E0:C5:85:18:85:42:C4:3E
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/WKFBe9imJpd1TtVW4MWFGIVCxD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.185.163.0/24
Signature Algorithm: sha256WithRSAEncryption
48:7c:3e:78:63:d4:9e:ea:d2:1f:db:a9:92:60:5d:d1:69:63:
c0:58:74:af:fd:de:f2:c5:fb:bf:d8:08:e7:87:5e:f0:9d:f1:
34:15:08:2f:9e:b6:7e:25:35:83:a3:05:bb:4e:02:78:8e:78:
92:fc:97:6d:33:21:b9:b6:c6:94:b0:a3:c8:66:19:38:2a:11:
a5:88:56:67:67:98:86:39:88:5d:79:fb:05:db:46:13:ed:06:
b4:f5:f1:cc:93:aa:f3:b9:dd:1f:2f:78:71:1c:ea:84:8b:0c:
99:53:6f:f7:b6:a9:f3:72:05:46:ca:b6:ae:4b:05:d4:57:2a:
36:32:7e:9d:50:86:f6:8e:5a:61:bc:46:21:cd:c9:d3:be:ae:
9b:72:a6:e4:7d:63:7f:68:89:ce:d0:9b:52:bd:9f:be:79:8f:
ad:af:0c:8a:20:b9:57:d6:fa:63:b9:96:30:75:4a:74:d9:ac:
49:78:b2:b6:6a:b1:2a:ff:63:12:aa:2c:df:25:96:7b:f5:69:
ec:1d:60:20:8d:9d:03:77:23:7e:d1:d4:67:b6:57:f6:cf:cc:
b7:a5:9a:62:31:8a:6f:ed:79:79:ca:4c:c7:3a:07:fd:d4:1d:
90:32:0b:58:4d:8d:a2:ee:a6:49:67:db:62:2b:68:25:40:72:
0b:b8:fe:35
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAvabITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YWMyYzFhZmQ0YmRlYzk4MDUwNmZhMDdkZjdjODY2MmQ1NTRmYTQ2MB4XDTIyMDYw
ODA2NTMwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNThhMTQxN2JkOGE2
MjY5Nzc1NGVkNTU2ZTBjNTg1MTg4NTQyYzQzZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIirmxVWtrYBlmfczQ1DghrJ9GRs2Cxj+1v1hhEuPvKCVZ/Y
+ZQbHK9Ex1KBAD4+RtBBcYDRweUKGJykwCO6eXV45wDhlfyKxOWZyncR2k8H3qli
esG8aIqyNw/J6TnGt8NxVdBYd//ZcWpcaOtxgF2PyXffF4LibodD7TH/2qL8jdnC
zvZOurzE9glAGYBhXsqKCsFj8oOIbczielOE03Jf5X4SfQOIT/oLibh2M3N5kNZP
hwOmj7qwUItgTT3yvolF+6M1p1kLATim26MKtK206RzZRAV12HUBsfXMPSRYrZ2+
tdEENefTZ25KL4qx0JdYmDTRAjaKOAjf2X7UWJ0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRYoUF72KYml3VO1VbgxYUYhULEPjAfBgNVHSMEGDAWgBTqwsGv1L3smAUG
+gfffIZi1VT6RjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZzTEJyOVM5N0pnRkJ2b0gzM3lHWXRWVS1rWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjUvNTg5YTZiLTRkN2UtNDAxMi1hMGZjLWMwY2ViMDM3YWQ0Mi8x
L1dLRkJlOWltSnBkMVR0Vlc0TVdGR0lWQ3hENC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjUv
NTg5YTZiLTRkN2UtNDAxMi1hMGZjLWMwY2ViMDM3YWQ0Mi8xLzZzTEJyOVM5N0pn
RkJ2b0gzM3lHWXRWVS1rWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJO5ozANBgkqhkiG9w0BAQsFAAOC
AQEASHw+eGPUnurSH9upkmBd0WljwFh0r/3e8sX7v9gI54de8J3xNBUIL562fiU1
g6MFu04CeI54kvyXbTMhubbGlLCjyGYZOCoRpYhWZ2eYhjmIXXn7BdtGE+0GtPXx
zJOq87ndHy94cRzqhIsMmVNv97ap83IFRsq2rksF1FcqNjJ+nVCG9o5aYbxGIc3J
076um3Km5H1jf2iJztCbUr2fvnmPra8MiiC5V9b6Y7mWMHVKdNmsSXiytmqxKv9j
Eqos3yWWe/Vp7B1gII2dA3cjftHUZ7ZX9s/Mt6WaYjGKb+15ecpMxzoH/dQdkDIL
WE2Nou6mSWfbYitoJUByC7j+NQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-fra.rpki-client.org