Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/cf0072-10d7-4759-80f6-4296937c9d94/1/wsOxeQhvTZ3E2cCmoeSHvHBIbD0.roa
File: wsOxeQhvTZ3E2cCmoeSHvHBIbD0.roa (raw, json)
Hash identifier: 7G34S4D8cb/3nV9/ATT1SpMMYN/6xB3ytery7eSFi3E=
Subject key identifier: C2:C3:B1:79:08:6F:4D:9D:C4:D9:C0:A6:A1:E4:87:BC:70:48:6C:3D
Certificate issuer: /CN=a5cce7916c7afa649532a7b829a459d6ee5e36bc
Certificate serial: 06A1041A
Authority key identifier: A5:CC:E7:91:6C:7A:FA:64:95:32:A7:B8:29:A4:59:D6:EE:5E:36:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcznkWx6-mSVMqe4KaRZ1u5eNrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/cf0072-10d7-4759-80f6-4296937c9d94/1/wsOxeQhvTZ3E2cCmoeSHvHBIbD0.roa
Signing time: Sat 01 Jan 2022 10:03:57 +0000
ROA not before: Sat 01 Jan 2022 10:03:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208810
IP address blocks: 91.216.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111215642 (0x6a1041a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5cce7916c7afa649532a7b829a459d6ee5e36bc
Validity
Not Before: Jan 1 10:03:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2c3b179086f4d9dc4d9c0a6a1e487bc70486c3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:23:57:c7:03:d2:56:53:7c:1f:54:ae:45:51:
83:82:37:5a:9e:0c:73:14:89:31:d5:06:5f:76:2a:
fc:23:c0:16:ad:b3:04:da:8b:e4:e5:44:9c:cf:8d:
37:fc:f5:0b:7c:17:6f:61:87:af:19:b2:fa:54:cc:
8f:cd:f8:de:5f:81:1a:f9:35:3b:94:3e:8a:b1:35:
58:5f:0d:fc:44:77:30:2b:29:2b:91:1e:eb:59:8b:
f3:fe:42:60:fe:20:32:b3:61:bf:6e:48:6d:b1:ad:
5d:cb:e9:3b:13:db:ec:2d:ff:09:71:0f:ce:c8:b0:
c0:a1:4b:f6:01:12:5a:bb:9c:2d:ac:b2:91:1e:04:
61:3c:8a:02:9d:17:6c:9e:b6:1f:dc:f5:23:2b:e1:
3d:27:51:ac:54:49:ad:26:46:49:49:35:3a:e7:42:
18:2a:6f:94:ee:83:b7:78:5e:6b:e1:79:f3:bd:21:
a4:b7:91:03:0f:0c:d4:9b:57:37:6a:71:92:3d:55:
34:c0:e4:5d:ef:99:22:63:2e:4c:87:4e:34:eb:63:
82:d9:39:b6:05:82:ba:1f:79:37:38:67:ec:c8:fc:
45:c5:53:b5:86:7d:29:04:6c:db:31:8d:c9:6b:1e:
9f:f9:ca:47:d0:84:c6:4b:c0:a7:f8:26:cb:ef:b2:
26:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:C3:B1:79:08:6F:4D:9D:C4:D9:C0:A6:A1:E4:87:BC:70:48:6C:3D
X509v3 Authority Key Identifier:
keyid:A5:CC:E7:91:6C:7A:FA:64:95:32:A7:B8:29:A4:59:D6:EE:5E:36:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcznkWx6-mSVMqe4KaRZ1u5eNrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/cf0072-10d7-4759-80f6-4296937c9d94/1/wsOxeQhvTZ3E2cCmoeSHvHBIbD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/cf0072-10d7-4759-80f6-4296937c9d94/1/pcznkWx6-mSVMqe4KaRZ1u5eNrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.250.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:9c:02:a1:27:bf:72:b4:9e:30:99:a0:fd:4d:19:5f:fa:18:
2f:ca:32:35:ad:9f:2a:1b:4b:6f:72:f0:aa:9b:61:92:76:68:
7f:f1:1a:26:63:27:6b:f3:f4:23:e6:14:b2:78:e8:9d:a8:3a:
24:bb:08:4f:d4:c7:32:28:23:10:19:35:1e:2e:d4:21:35:51:
87:b0:85:75:ae:07:64:5a:d8:0b:86:db:c5:c2:86:22:67:28:
1e:b0:a8:c3:94:d7:cc:22:f9:79:bf:3b:ab:ec:e9:c7:43:d9:
e5:4d:18:0b:6a:7f:2d:a1:b0:29:19:a5:3a:b3:5c:14:f0:ef:
ed:d5:e1:98:59:3c:87:89:a3:05:b2:70:5b:96:03:71:c5:44:
27:34:62:5a:cf:6c:08:be:e4:29:f6:43:7a:7b:b8:df:c1:83:
9a:11:71:1d:e4:f4:00:70:28:21:42:da:69:8c:f4:0c:a4:55:
f8:72:11:78:bf:09:e0:15:4a:92:44:1a:24:c0:23:30:fb:32:
db:88:2e:e1:bb:03:f3:32:d2:6e:8a:dc:3f:19:3d:f0:71:98:
5b:e0:e4:7a:ce:cc:c7:7d:b7:a0:32:46:7e:52:e2:b0:45:c6:
c7:b5:63:b3:fe:d9:7c:9f:51:26:dd:c6:0c:96:3e:56:4d:a4:
ca:e1:7e:b9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBqEEGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NWNjZTc5MTZjN2FmYTY0OTUzMmE3YjgyOWE0NTlkNmVlNWUzNmJjMB4XDTIyMDEw
MTEwMDM1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzJjM2IxNzkwODZm
NGQ5ZGM0ZDljMGE2YTFlNDg3YmM3MDQ4NmMzZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJkjV8cD0lZTfB9UrkVRg4I3Wp4McxSJMdUGX3Yq/CPAFq2z
BNqL5OVEnM+NN/z1C3wXb2GHrxmy+lTMj8343l+BGvk1O5Q+irE1WF8N/ER3MCsp
K5Ee61mL8/5CYP4gMrNhv25IbbGtXcvpOxPb7C3/CXEPzsiwwKFL9gESWrucLayy
kR4EYTyKAp0XbJ62H9z1IyvhPSdRrFRJrSZGSUk1OudCGCpvlO6Dt3hea+F5870h
pLeRAw8M1JtXN2pxkj1VNMDkXe+ZImMuTIdONOtjgtk5tgWCuh95Nzhn7Mj8RcVT
tYZ9KQRs2zGNyWsen/nKR9CExkvAp/gmy++yJj8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTCw7F5CG9NncTZwKah5Ie8cEhsPTAfBgNVHSMEGDAWgBSlzOeRbHr6ZJUy
p7gppFnW7l42vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Bjem5rV3g2LW1TVk1xZTRLYVJaMXU1ZU5ydy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDEvY2YwMDcyLTEwZDctNDc1OS04MGY2LTQyOTY5MzdjOWQ5NC8x
L3dzT3hlUWh2VFozRTJjQ21vZVNIdkhCSWJEMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDEv
Y2YwMDcyLTEwZDctNDc1OS04MGY2LTQyOTY5MzdjOWQ5NC8xL3Bjem5rV3g2LW1T
Vk1xZTRLYVJaMXU1ZU5ydy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvY+jANBgkqhkiG9w0BAQsFAAOC
AQEAnZwCoSe/crSeMJmg/U0ZX/oYL8oyNa2fKhtLb3LwqpthknZof/EaJmMna/P0
I+YUsnjonag6JLsIT9THMigjEBk1Hi7UITVRh7CFda4HZFrYC4bbxcKGImcoHrCo
w5TXzCL5eb87q+zpx0PZ5U0YC2p/LaGwKRmlOrNcFPDv7dXhmFk8h4mjBbJwW5YD
ccVEJzRiWs9sCL7kKfZDenu438GDmhFxHeT0AHAoIULaaYz0DKRV+HIReL8J4BVK
kkQaJMAjMPsy24gu4bsD8zLSborcPxk98HGYW+Dkes7Mx323oDJGflLisEXGx7Vj
s/7ZfJ9RJt3GDJY+Vk2kyuF+uQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:49 2024 by rpki-client on console-ams.rpki-client.org