Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/WxNV_PVMM5PuXVc4fLmNoM0Q66c.roa
File: WxNV_PVMM5PuXVc4fLmNoM0Q66c.roa (raw, json)
Hash identifier: wwMcOtQ6MRoAMUjUJd4xsWb0TDF6QCqkP+VGwNvXiZA=
Subject key identifier: 5B:13:55:FC:F5:4C:33:93:EE:5D:57:38:7C:B9:8D:A0:CD:10:EB:A7
Certificate issuer: /CN=52a165dc3aafbe2c62e265ff104327a3e675f89f
Certificate serial: EF1F1E
Authority key identifier: 52:A1:65:DC:3A:AF:BE:2C:62:E2:65:FF:10:43:27:A3:E6:75:F8:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqFl3Dqvvixi4mX_EEMno-Z1-J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/WxNV_PVMM5PuXVc4fLmNoM0Q66c.roa
Signing time: Sat 01 Jan 2022 08:03:16 +0000
ROA not before: Sat 01 Jan 2022 08:03:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49453
IP address blocks: 2a0c:de80::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15671070 (0xef1f1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a165dc3aafbe2c62e265ff104327a3e675f89f
Validity
Not Before: Jan 1 08:03:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b1355fcf54c3393ee5d57387cb98da0cd10eba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9a:b9:45:fd:34:c4:54:37:6f:ff:33:e1:03:
e5:e5:b1:4b:5a:fd:d4:ba:3a:09:10:b7:17:2b:b0:
34:2a:00:bf:d2:eb:24:ac:74:af:cd:3b:32:3d:4a:
d1:1c:97:0d:6c:a9:97:d6:bd:fb:e5:b9:3e:bb:a6:
f7:f0:6d:8a:9f:a6:c8:70:6e:b0:66:56:3c:20:6b:
11:ab:d9:49:95:93:f4:50:98:cb:1c:2c:fc:ff:5e:
c2:ed:fc:1b:72:12:8a:ce:fc:e9:97:5f:7e:1b:12:
72:53:e9:a8:ad:19:5b:21:da:7d:f7:b6:02:0e:dd:
cc:3e:13:5d:33:ed:9b:b7:6c:fb:ee:13:28:ca:0c:
fe:41:45:91:74:97:70:b0:51:07:71:95:7c:c0:e4:
02:f4:4a:b9:79:f9:27:bf:1b:39:81:31:f6:87:33:
da:e0:fa:29:92:44:29:e0:8f:8b:b0:7c:1d:09:0c:
55:08:a7:b9:66:fa:03:84:2e:84:68:fa:a0:2a:7f:
df:3c:6e:09:93:18:ad:1b:68:54:ec:c3:5e:dc:6a:
77:74:0e:da:ae:fd:f2:70:16:a8:6b:80:92:7a:f9:
53:7a:6c:74:a8:6e:24:60:0f:48:56:ab:68:ea:2b:
59:b4:a5:19:d5:93:ca:cc:fe:da:58:ae:2c:9b:3f:
df:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:13:55:FC:F5:4C:33:93:EE:5D:57:38:7C:B9:8D:A0:CD:10:EB:A7
X509v3 Authority Key Identifier:
keyid:52:A1:65:DC:3A:AF:BE:2C:62:E2:65:FF:10:43:27:A3:E6:75:F8:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqFl3Dqvvixi4mX_EEMno-Z1-J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/WxNV_PVMM5PuXVc4fLmNoM0Q66c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/UqFl3Dqvvixi4mX_EEMno-Z1-J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:de80::/48
Signature Algorithm: sha256WithRSAEncryption
7c:6c:39:e9:f9:21:c4:82:f6:00:80:10:e1:50:4e:cb:67:c1:
d7:1d:f9:79:bb:ca:6b:c5:a2:d7:00:64:71:eb:ba:e5:ac:17:
c9:d6:ce:06:64:67:07:cf:24:a3:c3:6b:d5:8c:69:c6:4a:fc:
7b:2e:b1:22:1e:32:26:00:9b:38:cb:27:5e:95:0d:c5:d6:ce:
fd:7f:a9:02:6c:d9:35:d8:bf:e6:56:22:61:ac:51:5e:b4:83:
9f:40:31:a3:c0:95:6e:a3:b2:8f:46:9e:ec:3f:e4:0d:e0:52:
67:0b:a2:aa:76:b8:f9:1f:22:d5:c4:b2:6c:0b:08:ef:a7:8b:
cc:09:72:fd:f1:b1:91:84:6a:ed:7f:11:91:32:7f:aa:bc:dc:
f6:4a:57:0f:d9:91:18:93:8d:7e:1d:d1:0d:3f:2d:4c:b0:03:
fa:a7:a3:8c:66:52:38:0d:cf:64:8d:d1:4f:08:30:96:c9:c4:
97:d9:10:a5:1d:e6:ef:78:8c:5d:15:3c:0c:b9:07:89:89:66:
f7:b8:8c:8a:da:ae:29:a6:2d:22:91:05:cf:80:32:6e:d5:dc:
47:88:9c:d6:73:f1:d7:ef:be:c3:11:0f:de:ca:c4:bb:77:4a:
85:3f:2f:a8:e3:89:b0:08:4f:7d:66:8f:99:27:52:ae:0d:94:
f3:f9:ba:c7
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEAO8fHjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MmExNjVkYzNhYWZiZTJjNjJlMjY1ZmYxMDQzMjdhM2U2NzVmODlmMB4XDTIyMDEw
MTA4MDMxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWIxMzU1ZmNmNTRj
MzM5M2VlNWQ1NzM4N2NiOThkYTBjZDEwZWJhNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALaauUX9NMRUN2//M+ED5eWxS1r91Lo6CRC3FyuwNCoAv9Lr
JKx0r807Mj1K0RyXDWypl9a9++W5Prum9/Btip+myHBusGZWPCBrEavZSZWT9FCY
yxws/P9ewu38G3ISis786ZdffhsSclPpqK0ZWyHaffe2Ag7dzD4TXTPtm7ds++4T
KMoM/kFFkXSXcLBRB3GVfMDkAvRKuXn5J78bOYEx9ocz2uD6KZJEKeCPi7B8HQkM
VQinuWb6A4QuhGj6oCp/3zxuCZMYrRtoVOzDXtxqd3QO2q798nAWqGuAknr5U3ps
dKhuJGAPSFaraOorWbSlGdWTysz+2liuLJs/3ysCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRbE1X89Uwzk+5dVzh8uY2gzRDrpzAfBgNVHSMEGDAWgBRSoWXcOq++LGLi
Zf8QQyej5nX4nzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VxRmwzRHF2dml4aTRtWF9FRU1uby1aMS1KOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzcvODBhY2ViLTUwZTItNDBjMC1hODUyLWUyOThiNDFiNmM4MS8x
L1d4TlZfUFZNTTVQdVhWYzRmTG1Ob00wUTY2Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcv
ODBhY2ViLTUwZTItNDBjMC1hODUyLWUyOThiNDFiNmM4MS8xL1VxRmwzRHF2dml4
aTRtWF9FRU1uby1aMS1KOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoM3oAAADANBgkqhkiG9w0BAQsF
AAOCAQEAfGw56fkhxIL2AIAQ4VBOy2fB1x35ebvKa8Wi1wBkceu65awXydbOBmRn
B88ko8Nr1Yxpxkr8ey6xIh4yJgCbOMsnXpUNxdbO/X+pAmzZNdi/5lYiYaxRXrSD
n0Axo8CVbqOyj0ae7D/kDeBSZwuiqna4+R8i1cSybAsI76eLzAly/fGxkYRq7X8R
kTJ/qrzc9kpXD9mRGJONfh3RDT8tTLAD+qejjGZSOA3PZI3RTwgwlsnEl9kQpR3m
73iMXRU8DLkHiYlm97iMitquKaYtIpEFz4AybtXcR4ic1nPx1+++wxEP3srEu3dK
hT8vqOOJsAhPfWaPmSdSrg2U8/m6xw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:23 2024 by rpki-client on console-fra.rpki-client.org