Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/9c73ff-6642-4b33-b564-a2381c36c054/1/wFztv3u4owKfwk6h5CONY-1X7UQ.roa
File: wFztv3u4owKfwk6h5CONY-1X7UQ.roa (raw, json)
Hash identifier: sGT4oYb59Pn1cZZl81Iatgl3dRX78dr958zUXxS682c=
Subject key identifier: C0:5C:ED:BF:7B:B8:A3:02:9F:C2:4E:A1:E4:23:8D:63:ED:57:ED:44
Certificate issuer: /CN=00cc4d5088db71e218777d976d0aadc498c46cfd
Certificate serial: 03984E82
Authority key identifier: 00:CC:4D:50:88:DB:71:E2:18:77:7D:97:6D:0A:AD:C4:98:C4:6C:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AMxNUIjbceIYd32XbQqtxJjEbP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/9c73ff-6642-4b33-b564-a2381c36c054/1/wFztv3u4owKfwk6h5CONY-1X7UQ.roa
Signing time: Sat 01 Jan 2022 12:57:55 +0000
ROA not before: Sat 01 Jan 2022 12:57:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197610
IP address blocks: 91.223.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60313218 (0x3984e82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00cc4d5088db71e218777d976d0aadc498c46cfd
Validity
Not Before: Jan 1 12:57:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c05cedbf7bb8a3029fc24ea1e4238d63ed57ed44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d5:bb:6e:2a:fe:b2:a8:d8:a9:1b:d4:b0:22:
a0:82:f4:78:67:43:9e:ef:8d:6f:36:1a:36:5c:9e:
75:d3:a6:b2:b2:35:12:e5:14:0a:80:b7:c3:90:0a:
a0:57:be:1e:14:e6:cc:01:6e:b6:98:8e:ce:cd:5f:
3b:11:18:7f:ef:24:bc:cd:50:e9:ee:cb:c4:ef:dd:
55:09:63:ac:e1:98:fc:04:a0:c5:88:bd:75:6c:99:
d0:6a:61:9e:30:ef:48:16:c3:51:4b:a8:16:89:d3:
4a:df:be:b3:d4:b1:e4:85:cc:89:d4:07:36:0f:ac:
c2:ba:5d:8a:b2:01:9d:6b:09:c7:5c:03:5b:41:b9:
6e:fb:4b:bf:56:81:c4:00:67:2b:e5:a2:ce:48:cf:
95:a0:f0:c8:5e:52:3e:2a:21:e8:13:86:d8:eb:8e:
40:e5:57:0b:74:fc:fa:d6:05:1d:7f:7b:a4:8e:98:
7c:8b:12:12:5c:56:7f:18:c2:44:58:9e:c6:f3:ac:
6a:b3:a0:31:79:0a:5e:24:3c:3e:90:1e:c3:61:85:
ef:9a:30:42:c1:69:0f:50:72:4c:18:97:e5:47:67:
f6:23:56:30:69:63:72:2c:19:54:c2:af:16:0a:95:
de:85:94:97:c0:e0:21:a6:cc:f5:df:49:4a:3d:b6:
47:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:5C:ED:BF:7B:B8:A3:02:9F:C2:4E:A1:E4:23:8D:63:ED:57:ED:44
X509v3 Authority Key Identifier:
keyid:00:CC:4D:50:88:DB:71:E2:18:77:7D:97:6D:0A:AD:C4:98:C4:6C:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AMxNUIjbceIYd32XbQqtxJjEbP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/9c73ff-6642-4b33-b564-a2381c36c054/1/wFztv3u4owKfwk6h5CONY-1X7UQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/9c73ff-6642-4b33-b564-a2381c36c054/1/AMxNUIjbceIYd32XbQqtxJjEbP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.149.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:3c:95:8e:ac:53:87:40:14:44:b6:59:40:ee:a4:25:11:09:
15:03:cc:83:12:91:18:8d:76:8e:fa:9c:56:44:aa:cb:eb:7e:
b5:57:55:6b:4d:5e:7b:18:bc:91:c8:db:04:9d:be:90:85:ff:
c9:81:c7:42:ac:62:56:97:de:9c:38:36:64:8d:44:81:0c:72:
ff:81:05:3f:60:1e:af:1b:2d:0c:fc:7f:9f:0c:f1:a8:bb:9f:
f8:a4:98:f9:85:31:ba:6e:69:83:f9:4c:c3:23:3d:6e:e8:50:
5f:6f:5d:a9:ca:5f:95:3e:d0:09:13:1d:da:2c:8c:06:d5:d6:
8e:15:01:f4:28:8e:5b:31:5c:a0:30:7c:1b:e8:09:1f:28:c1:
6d:d9:e1:48:8b:5a:1d:c1:f4:22:8d:67:55:5e:a3:1f:7f:53:
a3:55:7e:ae:ab:e7:7b:df:36:1b:3e:79:d6:8b:db:d3:1b:52:
60:bc:b2:3c:8d:cc:4f:b0:b9:d9:b4:91:35:e9:a3:ac:5c:26:
4b:55:91:75:ef:a8:43:6e:3c:08:a4:53:ba:62:c3:24:17:21:
51:af:4a:25:4a:91:e3:68:27:84:51:d9:41:76:bb:36:58:35:
6f:34:ca:7f:04:79:f7:2b:00:b1:05:28:8b:19:b4:2d:a2:2b:
95:69:06:a0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA5hOgjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MGNjNGQ1MDg4ZGI3MWUyMTg3NzdkOTc2ZDBhYWRjNDk4YzQ2Y2ZkMB4XDTIyMDEw
MTEyNTc1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzA1Y2VkYmY3YmI4
YTMwMjlmYzI0ZWExZTQyMzhkNjNlZDU3ZWQ0NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALbVu24q/rKo2Kkb1LAioIL0eGdDnu+NbzYaNlyeddOmsrI1
EuUUCoC3w5AKoFe+HhTmzAFutpiOzs1fOxEYf+8kvM1Q6e7LxO/dVQljrOGY/ASg
xYi9dWyZ0GphnjDvSBbDUUuoFonTSt++s9Sx5IXMidQHNg+swrpdirIBnWsJx1wD
W0G5bvtLv1aBxABnK+WizkjPlaDwyF5SPioh6BOG2OuOQOVXC3T8+tYFHX97pI6Y
fIsSElxWfxjCRFiexvOsarOgMXkKXiQ8PpAew2GF75owQsFpD1ByTBiX5Udn9iNW
MGljciwZVMKvFgqV3oWUl8DgIabM9d9JSj22Ry0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTAXO2/e7ijAp/CTqHkI41j7VftRDAfBgNVHSMEGDAWgBQAzE1QiNtx4hh3
fZdtCq3EmMRs/TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FNeE5VSWpiY2VJWWQzMlhiUXF0eEpqRWJQMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTIvOWM3M2ZmLTY2NDItNGIzMy1iNTY0LWEyMzgxYzM2YzA1NC8x
L3dGenR2M3U0b3dLZndrNmg1Q09OWS0xWDdVUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTIv
OWM3M2ZmLTY2NDItNGIzMy1iNTY0LWEyMzgxYzM2YzA1NC8xL0FNeE5VSWpiY2VJ
WWQzMlhiUXF0eEpqRWJQMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvflTANBgkqhkiG9w0BAQsFAAOC
AQEAnTyVjqxTh0AURLZZQO6kJREJFQPMgxKRGI12jvqcVkSqy+t+tVdVa01eexi8
kcjbBJ2+kIX/yYHHQqxiVpfenDg2ZI1EgQxy/4EFP2AerxstDPx/nwzxqLuf+KSY
+YUxum5pg/lMwyM9buhQX29dqcpflT7QCRMd2iyMBtXWjhUB9CiOWzFcoDB8G+gJ
HyjBbdnhSItaHcH0Io1nVV6jH39To1V+rqvne982Gz551ovb0xtSYLyyPI3MT7C5
2bSRNemjrFwmS1WRde+oQ248CKRTumLDJBchUa9KJUqR42gnhFHZQXa7Nlg1bzTK
fwR59ysAsQUoixm0LaIrlWkGoA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:46 2025 by rpki-client