Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/WeA032YgJMhIWweii6IBj7YCHfA.roa
File: WeA032YgJMhIWweii6IBj7YCHfA.roa (raw, json)
Hash identifier: mIbXJ8Zzc5BeX9tf7LDomAoZWNivTk+W3LUpfPnjyKk=
Subject key identifier: 59:E0:34:DF:66:20:24:C8:48:5B:07:A2:8B:A2:01:8F:B6:02:1D:F0
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 032EBA6C
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/WeA032YgJMhIWweii6IBj7YCHfA.roa
Signing time: Tue 10 May 2022 13:31:03 +0000
ROA not before: Tue 10 May 2022 13:31:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 87.254.2.0/24 maxlen: 24
185.210.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53394028 (0x32eba6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: May 10 13:31:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59e034df662024c8485b07a28ba2018fb6021df0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ec:c3:fe:8c:42:3d:e5:82:28:85:2c:09:fd:
f2:c5:10:b6:e7:ff:3d:ee:93:28:d2:9b:00:a5:b8:
57:78:50:80:90:7b:c2:f0:34:cf:8e:f7:0a:81:3e:
47:db:1c:b7:82:da:1c:1e:ec:e7:07:ca:64:f1:e6:
d2:72:ac:c2:49:d0:4b:fa:78:34:7d:f2:46:40:d5:
36:1e:87:39:e8:5c:6f:ac:cf:66:a0:e4:4f:cd:11:
7b:fd:3f:c4:6d:0b:13:9f:3c:a1:98:44:58:56:4e:
c9:54:fe:84:40:11:3e:a5:66:71:57:34:2f:7c:18:
f9:7e:8c:b8:dd:72:1b:ad:b9:a0:3e:83:79:6c:2d:
52:57:10:bf:4c:f1:6d:18:a5:48:c7:f2:07:9c:ea:
2c:16:2c:d6:e9:0d:e0:16:9f:7e:9d:eb:53:a0:1a:
7e:e4:56:a1:b5:11:46:8f:73:e7:7a:2d:55:a0:70:
34:8a:ac:9d:c6:64:e5:83:d3:1b:2f:37:1c:ca:c7:
05:f3:3f:c7:3b:a4:31:f0:9a:f7:81:29:59:0e:a6:
0b:e6:93:93:97:98:a2:4b:12:39:0b:88:73:27:26:
25:a2:38:39:ff:2e:2f:a9:e6:c9:5e:cf:2c:f9:77:
32:a4:00:6a:d1:1f:40:23:7e:d3:0f:72:c3:23:40:
63:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E0:34:DF:66:20:24:C8:48:5B:07:A2:8B:A2:01:8F:B6:02:1D:F0
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/WeA032YgJMhIWweii6IBj7YCHfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.2.0/24
185.210.168.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:b0:d9:fe:27:ab:83:ba:b3:25:2b:da:bb:e4:e4:7b:aa:cf:
b0:bf:96:37:35:f8:21:62:bb:d2:8f:cf:cf:38:ea:80:a0:43:
48:7f:f6:9e:08:f7:5f:fe:dc:89:70:37:a0:eb:64:ff:d0:08:
e2:cb:5e:86:ee:6a:d7:4c:0f:39:2f:99:33:63:8a:af:26:ff:
f3:29:ee:d0:e1:d8:5e:89:bf:45:43:81:db:35:ac:ad:d3:3b:
18:c6:31:70:7c:af:73:9b:b4:2b:42:97:7f:80:76:e4:57:a0:
09:77:fa:ac:2b:03:b6:28:56:44:22:73:cc:ab:ca:af:57:4b:
2f:46:99:09:48:95:03:56:ff:b7:8f:63:2e:72:18:e3:02:5a:
02:98:e2:01:08:78:a2:6f:bc:23:9b:ff:07:68:8f:db:7d:c5:
d4:12:6c:af:14:ca:39:ce:06:07:79:4f:81:b9:32:3c:5d:c8:
30:a2:f6:21:cb:e5:a9:b2:c4:10:69:a4:9e:e4:00:4a:f6:2a:
49:2b:0a:95:8c:a1:70:fe:cb:80:b9:d4:fc:77:97:2f:e3:c5:
db:29:d2:f5:35:2f:01:03:f9:19:f7:16:c9:5a:28:bf:a2:de:
0e:56:b7:0f:6c:2f:4b:35:7c:62:ea:d0:02:40:ca:7f:99:60:
aa:1b:ed:f6
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAy66bDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZmY4MGNiZGZlMTgzNTRhM2NmZGJhMmZlMDc5YWEyZWJjNThkY2Q0MB4XDTIyMDUx
MDEzMzEwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTllMDM0ZGY2NjIw
MjRjODQ4NWIwN2EyOGJhMjAxOGZiNjAyMWRmMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMHsw/6MQj3lgiiFLAn98sUQtuf/Pe6TKNKbAKW4V3hQgJB7
wvA0z473CoE+R9sct4LaHB7s5wfKZPHm0nKswknQS/p4NH3yRkDVNh6HOehcb6zP
ZqDkT80Re/0/xG0LE588oZhEWFZOyVT+hEARPqVmcVc0L3wY+X6MuN1yG625oD6D
eWwtUlcQv0zxbRilSMfyB5zqLBYs1ukN4Baffp3rU6AafuRWobURRo9z53otVaBw
NIqsncZk5YPTGy83HMrHBfM/xzukMfCa94EpWQ6mC+aTk5eYoksSOQuIcycmJaI4
Of8uL6nmyV7PLPl3MqQAatEfQCN+0w9ywyNAY4cCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRZ4DTfZiAkyEhbB6KLogGPtgId8DAfBgNVHSMEGDAWgBQP+Ay9/hg1Sjz9
ui/geaouvFjc1DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RfZ012ZjRZTlVvOF9ib3Y0SG1xTHJ4WTNOUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTkvMTI5NTY0LWYxZGItNGRjNS04OTA2LTZmY2RjZDVhYjY2MC8x
L1dlQTAzMllnSk1oSVd3ZWlpNklCajdZQ0hmQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTkv
MTI5NTY0LWYxZGItNGRjNS04OTA2LTZmY2RjZDVhYjY2MC8xL0RfZ012ZjRZTlVv
OF9ib3Y0SG1xTHJ4WTNOUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFf+AgMEArnSqDANBgkqhkiG9w0B
AQsFAAOCAQEAPLDZ/ierg7qzJSvau+Tke6rPsL+WNzX4IWK70o/PzzjqgKBDSH/2
ngj3X/7ciXA3oOtk/9AI4stehu5q10wPOS+ZM2OKryb/8ynu0OHYXom/RUOB2zWs
rdM7GMYxcHyvc5u0K0KXf4B25FegCXf6rCsDtihWRCJzzKvKr1dLL0aZCUiVA1b/
t49jLnIY4wJaApjiAQh4om+8I5v/B2iP233F1BJsrxTKOc4GB3lPgbkyPF3IMKL2
IcvlqbLEEGmknuQASvYqSSsKlYyhcP7LgLnU/HeXL+PF2ynS9TUvAQP5GfcWyVoo
v6LeDla3D2wvSzV8YurQAkDKf5lgqhvt9g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:38 2023 by rpki-client on console-ams.rpki-client.org