Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/zWpc-81xBL2rfVh5PZe5yQfXVTE.roa
File: zWpc-81xBL2rfVh5PZe5yQfXVTE.roa (raw, json)
Hash identifier: xuJpFLzH7lwmrnRSmSKS0aysSnW1nDhMNlMhZsfDbXk=
Subject key identifier: CD:6A:5C:FB:CD:71:04:BD:AB:7D:58:79:3D:97:B9:C9:07:D7:55:31
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 018457CED898FD6DFFE9B52519BE85251428
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/zWpc-81xBL2rfVh5PZe5yQfXVTE.roa
Signing time: Tue 08 Nov 2022 15:14:44 +0000
ROA not before: Tue 08 Nov 2022 15:14:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203252
IP address blocks: 185.176.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:57:ce:d8:98:fd:6d:ff:e9:b5:25:19:be:85:25:14:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: Nov 8 15:14:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd6a5cfbcd7104bdab7d58793d97b9c907d75531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7b:32:d4:10:2a:16:66:ca:b7:5b:ce:de:69:
2d:06:7e:56:8c:ba:35:9a:e3:66:d7:36:2f:aa:02:
e7:77:86:f3:ff:15:69:ad:d2:3d:92:ad:be:01:76:
67:87:ff:2e:69:3a:6c:64:72:27:9d:66:87:17:6c:
45:e1:bc:b2:55:9c:01:61:88:55:44:6e:d9:bb:a2:
08:4e:4d:16:2d:4b:59:af:f4:47:4d:6c:cb:c5:ab:
27:02:0e:fc:b2:17:bc:da:c0:0f:ad:f4:4c:e9:55:
bb:e4:55:86:de:9d:13:3e:7e:ae:fa:16:1b:9d:7d:
7f:4e:80:ad:11:3a:75:e7:c4:96:ec:5d:2d:6b:13:
df:c7:e9:65:6d:c5:4e:c5:40:18:88:73:5d:d8:54:
10:9d:b9:bc:a7:99:57:8d:b9:f3:64:59:c5:9a:6f:
62:34:ed:bc:9c:40:04:d2:b9:e2:c9:73:db:07:0e:
79:a0:39:40:2d:51:d8:25:fa:e1:46:8e:92:de:99:
e6:f0:d4:ea:96:2f:3a:17:08:86:f9:17:76:f6:6e:
6b:0a:8d:80:a9:02:5c:23:41:cb:b0:31:e5:49:e3:
c2:10:66:61:70:8b:f1:ed:00:ed:66:20:42:0a:a3:
8d:11:ef:53:e6:bc:19:e6:b9:79:67:f2:1b:23:3b:
af:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:6A:5C:FB:CD:71:04:BD:AB:7D:58:79:3D:97:B9:C9:07:D7:55:31
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/zWpc-81xBL2rfVh5PZe5yQfXVTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.24.0/24
Signature Algorithm: sha256WithRSAEncryption
40:20:3c:f3:b0:0d:e7:98:6d:e0:6d:87:b7:aa:9c:9d:87:fd:
d8:5a:0e:00:be:1e:19:f2:1a:d6:0a:56:93:93:3b:85:f7:e6:
ac:93:03:4e:57:b4:ea:ec:39:66:13:03:b2:82:50:0d:31:73:
06:3a:f9:9d:e9:1d:45:69:c2:0c:fc:23:fb:f5:cb:39:ba:17:
5c:92:2e:db:1b:a9:03:47:d8:b1:fb:b8:96:78:c6:9e:f8:1d:
d3:fe:a9:dd:76:26:f3:1f:45:92:c7:fe:f5:f5:b7:0c:c8:df:
bd:aa:25:b5:24:54:de:ba:b2:29:62:d4:fa:24:15:15:43:7f:
ab:0f:43:bb:ec:0c:92:11:59:d8:e0:64:fe:71:62:2e:bb:c6:
32:1b:47:0b:06:20:2f:8e:dd:dc:c7:6a:57:d5:e7:80:08:6e:
47:66:d1:12:9c:20:a9:f0:36:34:f4:1f:f0:c2:79:e7:4b:98:
94:17:55:0e:6c:34:c6:79:76:45:bc:5d:f8:99:8b:96:91:c8:
1e:5e:2f:40:16:07:be:20:d1:8a:f1:a6:a9:88:6d:ee:3d:e6:
f6:77:3a:85:b9:73:29:f2:f9:16:cf:2b:98:47:6b:eb:95:b5:
0d:62:f1:b8:30:27:e8:49:ff:b9:d9:91:a7:90:2d:1f:44:76:
cb:5c:6c:5d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRXztiY/W3/6bUlGb6FJRQoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYWYxMmY1Y2E3NWM5MjJhNGFhNWRhY2I0OWMwNGE5MzIz
N2Y0ZWQwHhcNMjIxMTA4MTUxNDQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZDZhNWNmYmNkNzEwNGJkYWI3ZDU4NzkzZDk3YjljOTA3ZDc1NTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3sy1BAqFmbKt1vO3mktBn5WjLo1
muNm1zYvqgLnd4bz/xVprdI9kq2+AXZnh/8uaTpsZHInnWaHF2xF4byyVZwBYYhV
RG7Zu6IITk0WLUtZr/RHTWzLxasnAg78she82sAPrfRM6VW75FWG3p0TPn6u+hYb
nX1/ToCtETp158SW7F0taxPfx+llbcVOxUAYiHNd2FQQnbm8p5lXjbnzZFnFmm9i
NO28nEAE0rniyXPbBw55oDlALVHYJfrhRo6S3pnm8NTqli86FwiG+Rd29m5rCo2A
qQJcI0HLsDHlSePCEGZhcIvx7QDtZiBCCqONEe9T5rwZ5rl5Z/IbIzuvQwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM1qXPvNcQS9q31YeT2XuckH11UxMB8GA1UdIwQY
MBaAFLGvEvXKdckipKpdrLScBKkyN/TtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2E4UzljcDF5U0trcWwyc3RKd0VxVEkzOU8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9jYmNmNjgtN2NiZi00N2YwLTgyZWUt
NTc2MGVmYmNjNjU0LzEveldwYy04MXhCTDJyZlZoNVBaZTV5UWZYVlRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9jYmNmNjgtN2NiZi00N2YwLTgyZWUtNTc2MGVmYmNjNjU0
LzEvc2E4UzljcDF5U0trcWwyc3RKd0VxVEkzOU8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubAYMA0G
CSqGSIb3DQEBCwUAA4IBAQBAIDzzsA3nmG3gbYe3qpydh/3YWg4Avh4Z8hrWClaT
kzuF9+askwNOV7Tq7DlmEwOyglANMXMGOvmd6R1FacIM/CP79cs5uhdcki7bG6kD
R9ix+7iWeMae+B3T/qnddibzH0WSx/719bcMyN+9qiW1JFTeurIpYtT6JBUVQ3+r
D0O77AySEVnY4GT+cWIuu8YyG0cLBiAvjt3cx2pX1eeACG5HZtESnCCp8DY09B/w
wnnnS5iUF1UObDTGeXZFvF34mYuWkcgeXi9AFge+INGK8aapiG3uPeb2dzqFuXMp
8vkWzyuYR2vrlbUNYvG4MCfoSf+52ZGnkC0fRHbLXGxd
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:09 2023 by rpki-client on console-fra.rpki-client.org