Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/WGyS8khTSZfKm4hkgxG8dMwL2MI.roa
File: WGyS8khTSZfKm4hkgxG8dMwL2MI.roa (raw, json)
Hash identifier: dy33t3rxEQs8cir8MzdXa5XUhFQGGWolGGzH/vSzM5g=
Subject key identifier: 58:6C:92:F2:48:53:49:97:CA:9B:88:64:83:11:BC:74:CC:0B:D8:C2
Certificate issuer: /CN=3e424e245a64324a68731dd26f30c685baa8a678
Certificate serial: 0976659A
Authority key identifier: 3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/WGyS8khTSZfKm4hkgxG8dMwL2MI.roa
Signing time: Sat 01 Jan 2022 02:54:40 +0000
ROA not before: Sat 01 Jan 2022 02:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38970
IP address blocks: 91.213.178.0/24 maxlen: 24
2001:67c:50::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158754202 (0x976659a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e424e245a64324a68731dd26f30c685baa8a678
Validity
Not Before: Jan 1 02:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=586c92f248534997ca9b88648311bc74cc0bd8c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:dd:31:b2:ca:07:1b:23:70:61:62:ff:a7:30:
a1:7f:9f:8d:d2:d4:26:ad:28:58:4f:33:f8:b0:83:
43:24:c0:7f:ba:01:91:aa:37:99:85:09:46:aa:0f:
8c:7a:23:03:f8:32:a8:da:7a:d3:bc:89:e4:70:66:
d4:0f:b8:de:f1:53:98:85:4a:61:55:13:27:00:e7:
56:2d:ce:94:c1:af:e3:20:59:9d:c7:58:1e:a2:a9:
28:35:d9:f9:9d:8c:da:17:9c:80:87:16:56:84:5f:
41:fc:bf:ca:a4:35:4e:d8:42:2a:e7:7f:76:99:9a:
c1:14:0a:36:81:96:75:6c:af:91:1e:95:bf:9a:54:
9b:28:ec:64:11:c3:9c:68:79:bc:b4:d2:0a:87:59:
75:99:88:d3:8d:0b:b3:fc:81:24:76:04:f6:16:b8:
af:00:e9:f2:1b:84:3e:7c:0d:ec:24:48:e7:49:eb:
3b:13:67:83:27:c8:d4:61:95:90:f2:13:e5:7d:95:
86:98:53:d6:c2:52:cf:d8:5a:a3:d1:c7:ed:9c:df:
15:ff:94:81:cb:d1:a7:07:30:77:8c:4f:a3:0a:45:
9c:d1:79:65:54:e0:99:7c:8d:92:bc:7f:dc:59:d1:
8f:14:d5:d0:4c:c7:fb:de:22:05:71:bc:69:40:f1:
8a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:6C:92:F2:48:53:49:97:CA:9B:88:64:83:11:BC:74:CC:0B:D8:C2
X509v3 Authority Key Identifier:
keyid:3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/WGyS8khTSZfKm4hkgxG8dMwL2MI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.178.0/24
IPv6:
2001:67c:50::/48
Signature Algorithm: sha256WithRSAEncryption
a4:ab:8f:57:97:b9:46:a1:a1:6b:f9:5a:7a:7b:6a:4b:03:96:
1c:da:ed:5a:f1:42:ba:3c:1d:66:4d:18:85:67:52:81:64:7b:
5b:ec:7e:ff:06:4b:b8:0e:20:94:31:59:63:e9:48:3c:80:22:
17:ec:d9:7f:46:93:be:88:63:2f:b1:e5:29:b5:55:6c:d5:3b:
9d:2e:50:78:ae:b3:53:f3:22:6b:8b:4f:42:98:65:ad:87:60:
0b:bc:2d:d5:c1:cb:cf:55:ac:26:f1:b8:79:2d:e6:09:42:9d:
c1:85:29:db:16:13:85:25:43:55:4a:76:ec:d9:fc:08:88:08:
4e:ea:0c:ab:ce:68:3f:df:f1:0f:f3:b6:55:5f:75:bd:0d:e5:
ee:73:79:4c:3a:89:de:de:d4:a6:cf:41:3e:31:27:4f:03:2f:
75:85:ac:84:f0:4c:77:b2:2d:6e:d3:0f:c8:7b:25:8f:80:a5:
4d:d6:30:ee:ad:b5:37:ac:1d:0d:c5:93:20:be:d4:b7:b4:52:
cb:a9:2c:f8:9e:ca:ac:a9:ad:78:a2:d8:a7:7a:84:6a:03:5b:
7f:95:32:35:91:14:95:18:ce:ae:ac:13:ed:d8:06:d8:34:59:
9a:06:b1:dc:5c:12:bb:e4:61:a0:85:1a:8a:55:8d:6a:d0:8b:
8a:b5:3e:ca
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIECXZlmjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZTQyNGUyNDVhNjQzMjRhNjg3MzFkZDI2ZjMwYzY4NWJhYThhNjc4MB4XDTIyMDEw
MTAyNTQ0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTg2YzkyZjI0ODUz
NDk5N2NhOWI4ODY0ODMxMWJjNzRjYzBiZDhjMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKPdMbLKBxsjcGFi/6cwoX+fjdLUJq0oWE8z+LCDQyTAf7oB
kao3mYUJRqoPjHojA/gyqNp607yJ5HBm1A+43vFTmIVKYVUTJwDnVi3OlMGv4yBZ
ncdYHqKpKDXZ+Z2M2hecgIcWVoRfQfy/yqQ1TthCKud/dpmawRQKNoGWdWyvkR6V
v5pUmyjsZBHDnGh5vLTSCodZdZmI040Ls/yBJHYE9ha4rwDp8huEPnwN7CRI50nr
OxNngyfI1GGVkPIT5X2VhphT1sJSz9hao9HH7ZzfFf+UgcvRpwcwd4xPowpFnNF5
ZVTgmXyNkrx/3FnRjxTV0EzH+94iBXG8aUDxilcCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRYbJLySFNJl8qbiGSDEbx0zAvYwjAfBgNVHSMEGDAWgBQ+Qk4kWmQySmhz
HdJvMMaFuqimeDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BrSk9KRnBrTWtwb2N4M1NiekRHaGJxb3BuZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjAvMTAwMmMxLTAwYmMtNDMwOC1iNTVkLTU0ZGEwNDY4ZmRhZC8x
L1dHeVM4a2hUU1pmS200aGtneEc4ZE13TDJNSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAv
MTAwMmMxLTAwYmMtNDMwOC1iNTVkLTU0ZGEwNDY4ZmRhZC8xL1BrSk9KRnBrTWtw
b2N4M1NiekRHaGJxb3BuZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAFvVsjAPBAIAAjAJAwcAIAEGfABQ
MA0GCSqGSIb3DQEBCwUAA4IBAQCkq49Xl7lGoaFr+Vp6e2pLA5Yc2u1a8UK6PB1m
TRiFZ1KBZHtb7H7/Bku4DiCUMVlj6Ug8gCIX7Nl/RpO+iGMvseUptVVs1TudLlB4
rrNT8yJri09CmGWth2ALvC3VwcvPVawm8bh5LeYJQp3BhSnbFhOFJUNVSnbs2fwI
iAhO6gyrzmg/3/EP87ZVX3W9DeXuc3lMOone3tSmz0E+MSdPAy91hayE8Ex3si1u
0w/IeyWPgKVN1jDurbU3rB0NxZMgvtS3tFLLqSz4nsqsqa14otineoRqA1t/lTI1
kRSVGM6urBPt2AbYNFmaBrHcXBK75GGghRqKVY1q0IuKtT7K
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:12 2023 by rpki-client on console-fra.rpki-client.org