Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/W-CDZBpOov1aXNRZ378F4YnwhYU.roa
File: W-CDZBpOov1aXNRZ378F4YnwhYU.roa (raw, json)
Hash identifier: DcZ4K3F0YqeZPuFU/w91I54LuknxV0Uz/ks7c1Y3rwQ=
Subject key identifier: 5B:E0:83:64:1A:4E:A2:FD:5A:5C:D4:59:DF:BF:05:E1:89:F0:85:85
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 01845D4347DC48A7F33FD52A1600209ADB3F
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/W-CDZBpOov1aXNRZ378F4YnwhYU.roa
Signing time: Wed 09 Nov 2022 16:40:01 +0000
ROA not before: Wed 09 Nov 2022 16:40:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207633
IP address blocks: 193.228.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5d:43:47:dc:48:a7:f3:3f:d5:2a:16:00:20:9a:db:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: Nov 9 16:40:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5be083641a4ea2fd5a5cd459dfbf05e189f08585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:05:ff:91:ae:89:47:57:16:9f:b0:a6:9c:e1:
6a:a6:30:56:1f:4a:b0:87:69:02:b5:8e:6d:94:2f:
ad:b1:83:84:ea:f6:01:6d:de:0e:ae:cf:aa:f4:b9:
44:cc:39:89:48:0b:f7:b1:33:17:39:f8:9a:4b:22:
d0:a3:28:5c:01:5b:6d:8f:93:17:66:d0:65:d2:b2:
a6:bd:b8:36:52:a6:8a:5d:43:79:9d:76:4a:a8:28:
12:1a:0f:60:fa:2f:3c:0b:d3:35:f9:f5:99:12:3e:
bc:53:46:14:e5:44:ab:04:fd:7c:09:10:a8:2f:a1:
55:82:b2:ed:40:77:f6:86:95:3e:87:73:5e:c9:0e:
69:be:05:0c:43:cd:f4:2a:28:2f:c8:05:ac:92:4a:
0c:60:f8:23:c6:90:03:2f:0d:25:8b:a6:a8:d0:8f:
d5:97:c2:2b:f1:fa:06:cf:31:1b:85:03:40:c6:31:
c9:47:d0:34:20:b6:67:0a:3f:db:b5:6e:42:b9:70:
db:e1:38:b7:47:77:2f:15:d9:41:f4:0a:8c:41:67:
f6:6f:09:7f:43:08:13:bf:36:37:f0:64:2d:72:47:
eb:b5:9d:74:21:ca:0c:83:13:90:65:af:89:e4:62:
47:39:ae:34:05:b5:ba:36:a7:06:cf:93:01:44:bb:
4f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E0:83:64:1A:4E:A2:FD:5A:5C:D4:59:DF:BF:05:E1:89:F0:85:85
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/W-CDZBpOov1aXNRZ378F4YnwhYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.168.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:36:1b:71:b7:6b:90:30:c5:6b:0e:e2:bd:61:5a:47:2a:c6:
e2:8d:1b:aa:65:e0:08:0a:eb:29:47:e7:5c:0a:bd:90:49:0b:
8b:35:b8:c8:9a:ee:af:a3:f0:a9:38:ab:a2:68:2e:9d:06:69:
ff:68:9e:8d:79:3f:62:9d:7f:a4:b3:3b:8d:33:69:4c:67:78:
a0:12:74:d8:ef:76:fc:fa:98:43:96:15:12:f7:46:82:19:9e:
34:d9:88:3f:dc:11:85:b0:3c:76:94:ec:82:70:00:43:30:b7:
8c:24:ab:1d:10:00:e7:ee:ce:1e:4c:7f:07:8f:14:ca:0c:12:
da:82:d2:4a:e5:10:d8:ab:0c:26:12:e1:9b:37:1a:e3:57:31:
71:65:d8:d1:74:27:b7:e7:2a:d4:fc:c8:df:aa:0e:85:39:db:
99:2c:46:2a:f8:bb:12:9e:5f:26:38:34:9b:8e:08:7c:1e:22:
43:83:ab:8d:59:c9:fa:89:f9:c6:ff:b3:86:e3:28:64:fe:47:
55:97:eb:2a:74:36:74:d5:cc:a3:36:06:4e:c0:1b:06:04:7f:
e8:74:e4:61:67:48:61:65:1d:8a:42:fb:27:0b:67:9f:60:09:
65:65:d7:a3:68:1c:06:61:23:fd:d8:de:d6:e6:ef:6c:1d:ca:
fd:b1:40:55
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRdQ0fcSKfzP9UqFgAgmts/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlZTA1M2NiOWNiNGY0MWMxZTQ3NzNlN2YxNmU4NGJiNTc1
MjIwMzMwHhcNMjIxMTA5MTY0MDAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YmUwODM2NDFhNGVhMmZkNWE1Y2Q0NTlkZmJmMDVlMTg5ZjA4NTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjQX/ka6JR1cWn7CmnOFqpjBWH0qw
h2kCtY5tlC+tsYOE6vYBbd4Ors+q9LlEzDmJSAv3sTMXOfiaSyLQoyhcAVttj5MX
ZtBl0rKmvbg2UqaKXUN5nXZKqCgSGg9g+i88C9M1+fWZEj68U0YU5USrBP18CRCo
L6FVgrLtQHf2hpU+h3NeyQ5pvgUMQ830KigvyAWskkoMYPgjxpADLw0li6ao0I/V
l8Ir8foGzzEbhQNAxjHJR9A0ILZnCj/btW5CuXDb4Ti3R3cvFdlB9AqMQWf2bwl/
QwgTvzY38GQtckfrtZ10IcoMgxOQZa+J5GJHOa40BbW6NqcGz5MBRLtP5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFvgg2QaTqL9WlzUWd+/BeGJ8IWFMB8GA1UdIwQY
MBaAFH7gU8uctPQcHkdz5/FuhLtXUiAzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZnVCVHk1eTA5QndlUjNQbjhXNkV1MWRTSURNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS8wNjAwYTQtMTQ2NC00YTdjLWFmNTYt
MThlODZmMGIxZDgxLzEvVy1DRFpCcE9vdjFhWE5SWjM3OEY0WW53aFlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS8wNjAwYTQtMTQ2NC00YTdjLWFmNTYtMThlODZmMGIxZDgx
LzEvZnVCVHk1eTA5QndlUjNQbjhXNkV1MWRTSURNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAweSoMA0G
CSqGSIb3DQEBCwUAA4IBAQBNNhtxt2uQMMVrDuK9YVpHKsbijRuqZeAICuspR+dc
Cr2QSQuLNbjImu6vo/CpOKuiaC6dBmn/aJ6NeT9inX+kszuNM2lMZ3igEnTY73b8
+phDlhUS90aCGZ402Yg/3BGFsDx2lOyCcABDMLeMJKsdEADn7s4eTH8HjxTKDBLa
gtJK5RDYqwwmEuGbNxrjVzFxZdjRdCe35yrU/Mjfqg6FOduZLEYq+LsSnl8mODSb
jgh8HiJDg6uNWcn6ifnG/7OG4yhk/kdVl+sqdDZ01cyjNgZOwBsGBH/odORhZ0hh
ZR2KQvsnC2efYAllZdejaBwGYSP92N7W5u9sHcr9sUBV
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:26 2023 by rpki-client on console-ams.rpki-client.org