Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/Whfy85UUh2jlNEIVBlwv67fqHCI.roa
File: Whfy85UUh2jlNEIVBlwv67fqHCI.roa (raw, json)
Hash identifier: 7v8G/Kbj7N0IkYb2UwzjE0j0jvCiITTQ3LRNwyzC8R4=
Subject key identifier: 5A:17:F2:F3:95:14:87:68:E5:34:42:15:06:5C:2F:EB:B7:EA:1C:22
Certificate issuer: /CN=12ef9e49fecf2509eb6769eee2cdd4a5253b71c5
Certificate serial: 01845D0C87121E7ED1C745C9A5DA31C78429
Authority key identifier: 12:EF:9E:49:FE:CF:25:09:EB:67:69:EE:E2:CD:D4:A5:25:3B:71:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eu-eSf7PJQnrZ2nu4s3UpSU7ccU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/Whfy85UUh2jlNEIVBlwv67fqHCI.roa
Signing time: Wed 09 Nov 2022 15:40:12 +0000
ROA not before: Wed 09 Nov 2022 15:40:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8628
IP address blocks: 109.121.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5d:0c:87:12:1e:7e:d1:c7:45:c9:a5:da:31:c7:84:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12ef9e49fecf2509eb6769eee2cdd4a5253b71c5
Validity
Not Before: Nov 9 15:40:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a17f2f395148768e5344215065c2febb7ea1c22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:54:a8:51:95:f9:be:9c:7d:ee:38:f7:9e:c3:
06:a2:a0:b0:2e:ef:bb:ad:be:6f:89:44:6f:d5:42:
86:d7:00:65:21:c8:d2:3f:53:35:db:01:2d:ce:91:
66:96:ba:85:85:4a:04:69:3a:40:72:33:a0:cd:df:
92:6c:a4:2e:c1:20:17:dd:51:06:8e:7a:54:fc:2f:
e3:f0:47:42:2f:44:7f:e6:7a:3e:35:e7:ef:78:ac:
2a:e7:4a:4f:5a:c0:53:7a:69:29:d6:50:c0:03:3e:
24:c3:b7:dc:5e:71:61:3d:98:dd:23:af:98:7d:fb:
c3:9a:05:97:74:7d:75:92:0a:a7:84:c8:13:97:86:
91:df:fd:28:58:37:2f:14:e6:4f:1e:7b:cf:6e:82:
d2:71:8b:c2:39:81:1c:c7:54:5f:b1:5c:6b:41:6f:
77:ae:fc:4c:71:90:32:2f:be:df:fc:ec:4f:2c:47:
6b:1f:c4:c4:ba:9c:fd:c2:e5:da:c7:77:39:cb:d2:
45:8d:57:4c:d9:a6:dd:7c:87:08:26:be:2c:d7:67:
2e:53:ff:cf:27:9d:0a:9e:f9:0f:e7:8c:37:66:88:
9d:34:71:c8:67:18:aa:21:07:91:82:b6:1b:1e:26:
19:ad:59:53:f1:f4:ff:a5:2d:3f:e6:4a:fc:42:0b:
dd:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:17:F2:F3:95:14:87:68:E5:34:42:15:06:5C:2F:EB:B7:EA:1C:22
X509v3 Authority Key Identifier:
keyid:12:EF:9E:49:FE:CF:25:09:EB:67:69:EE:E2:CD:D4:A5:25:3B:71:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eu-eSf7PJQnrZ2nu4s3UpSU7ccU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/Whfy85UUh2jlNEIVBlwv67fqHCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/Eu-eSf7PJQnrZ2nu4s3UpSU7ccU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.121.133.0/24
Signature Algorithm: sha256WithRSAEncryption
68:60:c5:d8:d8:f5:4e:93:39:0a:39:89:78:fe:96:a3:e6:d9:
50:51:95:17:db:d8:99:5e:a8:b0:8e:c0:08:44:22:ed:2f:6f:
66:82:ba:a9:07:79:b1:c2:f3:5b:db:b1:e5:f9:bd:cd:89:03:
56:04:1c:bb:ec:0c:bd:d7:ad:96:b6:d4:1d:8e:ea:66:22:69:
04:c5:b0:e9:8b:60:69:7e:a7:90:7e:6a:b4:6f:db:cc:ac:9d:
72:10:68:a1:67:98:e8:cc:bd:e3:a5:ac:01:00:22:37:c7:00:
7e:0a:65:5d:91:20:cc:8d:d4:d8:c0:21:cf:c8:e3:d2:61:37:
7c:0f:04:3a:83:e2:af:d5:1a:21:4f:19:4b:b6:01:54:66:66:
84:12:6b:92:48:f7:4c:2e:d3:fa:6a:a3:4b:98:1e:b8:03:14:
12:b0:78:de:03:f6:d6:f3:a6:78:db:68:6e:1f:2c:00:7d:cc:
ae:f0:9d:4e:5d:e0:ba:d4:46:6d:6a:70:76:75:b6:5f:01:4e:
11:a1:17:57:bd:3f:38:ce:ed:0d:6c:89:fc:f1:d5:4e:ca:76:
58:bf:bd:97:b3:30:23:5c:e2:ab:eb:35:24:89:0b:9d:d3:19:
01:fb:24:af:4f:a7:e0:3c:a4:74:25:b3:09:61:40:0e:f4:1c:
8d:8f:54:bb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRdDIcSHn7Rx0XJpdoxx4QpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyZWY5ZTQ5ZmVjZjI1MDllYjY3NjllZWUyY2RkNGE1MjUz
YjcxYzUwHhcNMjIxMTA5MTU0MDEyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTE3ZjJmMzk1MTQ4NzY4ZTUzNDQyMTUwNjVjMmZlYmI3ZWExYzIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwVSoUZX5vpx97jj3nsMGoqCwLu+7
rb5viURv1UKG1wBlIcjSP1M12wEtzpFmlrqFhUoEaTpAcjOgzd+SbKQuwSAX3VEG
jnpU/C/j8EdCL0R/5no+NefveKwq50pPWsBTemkp1lDAAz4kw7fcXnFhPZjdI6+Y
ffvDmgWXdH11kgqnhMgTl4aR3/0oWDcvFOZPHnvPboLScYvCOYEcx1RfsVxrQW93
rvxMcZAyL77f/OxPLEdrH8TEupz9wuXax3c5y9JFjVdM2abdfIcIJr4s12cuU//P
J50KnvkP54w3ZoidNHHIZxiqIQeRgrYbHiYZrVlT8fT/pS0/5kr8QgvdwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFoX8vOVFIdo5TRCFQZcL+u36hwiMB8GA1UdIwQY
MBaAFBLvnkn+zyUJ62dp7uLN1KUlO3HFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXUtZVNmN1BKUW5yWjJudTRzM1VwU1U3Y2NVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS85YzI3YzItZmRiZS00ZTM5LWJhOTIt
MWQ1ZDk0NWEwNWEzLzEvV2hmeTg1VVVoMmpsTkVJVkJsd3Y2N2ZxSENJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS85YzI3YzItZmRiZS00ZTM5LWJhOTItMWQ1ZDk0NWEwNWEz
LzEvRXUtZVNmN1BKUW5yWjJudTRzM1VwU1U3Y2NVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbXmFMA0G
CSqGSIb3DQEBCwUAA4IBAQBoYMXY2PVOkzkKOYl4/paj5tlQUZUX29iZXqiwjsAI
RCLtL29mgrqpB3mxwvNb27Hl+b3NiQNWBBy77Ay9162WttQdjupmImkExbDpi2Bp
fqeQfmq0b9vMrJ1yEGihZ5jozL3jpawBACI3xwB+CmVdkSDMjdTYwCHPyOPSYTd8
DwQ6g+Kv1RohTxlLtgFUZmaEEmuSSPdMLtP6aqNLmB64AxQSsHjeA/bW86Z422hu
HywAfcyu8J1OXeC61EZtanB2dbZfAU4RoRdXvT84zu0NbIn88dVOynZYv72XszAj
XOKr6zUkiQud0xkB+ySvT6fgPKR0JbMJYUAO9ByNj1S7
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:35 2023 by rpki-client on console-ams.rpki-client.org