Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/848c8b-0e9c-4d6e-873e-8cf7d4493358/1/WzUAJLRqtOI_b4P7w5ss0Z7wJwU.roa
File: WzUAJLRqtOI_b4P7w5ss0Z7wJwU.roa (raw, json)
Hash identifier: 3clHXHfawiHUJ31+M9qdiHrL9DqAiS3mJK0Wi7j9I28=
Subject key identifier: 5B:35:00:24:B4:6A:B4:E2:3F:6F:83:FB:C3:9B:2C:D1:9E:F0:27:05
Certificate issuer: /CN=cbbe3c6d99811819cedddcd27e4be25bc0cf506f
Certificate serial: 02435990
Authority key identifier: CB:BE:3C:6D:99:81:18:19:CE:DD:DC:D2:7E:4B:E2:5B:C0:CF:50:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y748bZmBGBnO3dzSfkviW8DPUG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/848c8b-0e9c-4d6e-873e-8cf7d4493358/1/WzUAJLRqtOI_b4P7w5ss0Z7wJwU.roa
Signing time: Sat 01 Jan 2022 10:58:11 +0000
ROA not before: Sat 01 Jan 2022 10:58:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202220
IP address blocks: 188.123.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37968272 (0x2435990)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbbe3c6d99811819cedddcd27e4be25bc0cf506f
Validity
Not Before: Jan 1 10:58:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b350024b46ab4e23f6f83fbc39b2cd19ef02705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bc:99:db:50:66:c8:02:79:4b:15:e7:4f:f6:
f0:0b:02:6c:cb:1b:d2:40:90:18:00:ad:05:07:9b:
bf:33:20:21:98:7b:bc:f4:ea:21:70:88:02:55:68:
9e:ef:a0:4c:3e:2e:ae:68:27:d3:26:7a:46:b6:2c:
24:37:57:12:59:9e:62:0c:fb:f6:31:3f:7e:4e:3b:
8b:f3:3d:79:26:30:7a:24:e8:6d:36:43:6f:85:de:
6e:bf:8f:37:39:46:dd:16:b9:35:bf:26:1e:17:04:
b3:4f:f9:05:2a:21:2e:7a:a4:f5:00:51:88:f3:c6:
64:e2:7f:b2:9a:01:17:a1:f2:0c:66:43:fd:f3:6d:
6a:36:7c:91:2c:10:bd:0b:b9:ad:35:5f:3f:33:1c:
6b:7f:65:cf:7a:0f:c6:d8:57:d6:30:7e:e1:ef:fe:
7b:a7:0b:5f:bd:7f:d4:14:60:41:11:b9:dc:45:77:
7e:36:be:de:87:53:22:9f:4c:0f:42:3c:a0:67:29:
7f:7c:9b:c1:f9:06:42:48:97:4c:f9:e1:b3:e1:c3:
f9:6a:8b:aa:c5:6b:b4:32:ae:66:ad:ec:18:2e:69:
35:10:7a:fb:e9:42:b5:8c:d4:ad:b7:9d:3c:5e:d6:
52:c3:14:15:85:06:77:24:c4:90:e3:28:aa:51:a9:
e7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:35:00:24:B4:6A:B4:E2:3F:6F:83:FB:C3:9B:2C:D1:9E:F0:27:05
X509v3 Authority Key Identifier:
keyid:CB:BE:3C:6D:99:81:18:19:CE:DD:DC:D2:7E:4B:E2:5B:C0:CF:50:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y748bZmBGBnO3dzSfkviW8DPUG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/848c8b-0e9c-4d6e-873e-8cf7d4493358/1/WzUAJLRqtOI_b4P7w5ss0Z7wJwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/848c8b-0e9c-4d6e-873e-8cf7d4493358/1/y748bZmBGBnO3dzSfkviW8DPUG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.123.215.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:82:19:93:cf:61:92:80:f6:b1:28:25:26:74:43:32:a3:f4:
c0:15:8b:4f:e4:32:8e:13:b5:d2:30:c8:72:c6:45:61:d0:5c:
50:46:9c:4d:15:ab:67:6b:51:88:9f:2a:79:be:a2:44:d1:e5:
9b:35:3d:f4:a3:b6:f0:7b:a0:bc:28:72:5b:d9:a7:d6:81:63:
b6:02:82:48:8e:f4:ee:7b:ea:98:34:bd:70:87:9d:3c:b8:b5:
3a:8b:23:aa:5a:92:b2:ee:d5:06:a8:3d:75:82:63:20:2f:d3:
71:d1:54:bb:33:97:de:52:d0:e7:9b:ff:53:75:0c:23:29:1b:
97:14:ca:78:8c:49:a3:bd:69:a3:d4:72:16:13:ce:62:2d:2b:
8c:20:39:76:dc:d3:70:2e:10:1d:2b:14:b4:d8:1f:2d:be:0e:
bc:ed:e6:99:78:10:03:0a:74:08:44:57:90:82:f0:b9:47:87:
a4:0a:e9:be:b9:82:34:00:a2:16:57:a6:79:d5:23:b9:10:2b:
39:be:a5:b7:16:df:98:75:80:87:b2:08:11:f7:23:a4:7e:e7:
5b:44:d5:b4:cb:ff:b0:70:3a:ca:1b:0c:86:33:dc:bc:2b:ed:
a2:00:31:cb:25:1d:42:a6:71:7e:8c:84:48:51:21:f7:54:e2:
39:30:fe:8a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAkNZkDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
YmJlM2M2ZDk5ODExODE5Y2VkZGRjZDI3ZTRiZTI1YmMwY2Y1MDZmMB4XDTIyMDEw
MTEwNTgxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWIzNTAwMjRiNDZh
YjRlMjNmNmY4M2ZiYzM5YjJjZDE5ZWYwMjcwNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKK8mdtQZsgCeUsV50/28AsCbMsb0kCQGACtBQebvzMgIZh7
vPTqIXCIAlVonu+gTD4urmgn0yZ6RrYsJDdXElmeYgz79jE/fk47i/M9eSYweiTo
bTZDb4Xebr+PNzlG3Ra5Nb8mHhcEs0/5BSohLnqk9QBRiPPGZOJ/spoBF6HyDGZD
/fNtajZ8kSwQvQu5rTVfPzMca39lz3oPxthX1jB+4e/+e6cLX71/1BRgQRG53EV3
fja+3odTIp9MD0I8oGcpf3ybwfkGQkiXTPnhs+HD+WqLqsVrtDKuZq3sGC5pNRB6
++lCtYzUrbedPF7WUsMUFYUGdyTEkOMoqlGp590CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRbNQAktGq04j9vg/vDmyzRnvAnBTAfBgNVHSMEGDAWgBTLvjxtmYEYGc7d
3NJ+S+JbwM9QbzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3k3NDhiWm1CR0JuTzNkelNma3ZpVzhEUFVHOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmEvODQ4YzhiLTBlOWMtNGQ2ZS04NzNlLThjZjdkNDQ5MzM1OC8x
L1d6VUFKTFJxdE9JX2I0UDd3NXNzMFo3d0p3VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmEv
ODQ4YzhiLTBlOWMtNGQ2ZS04NzNlLThjZjdkNDQ5MzM1OC8xL3k3NDhiWm1CR0Ju
TzNkelNma3ZpVzhEUFVHOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALx71zANBgkqhkiG9w0BAQsFAAOC
AQEAXYIZk89hkoD2sSglJnRDMqP0wBWLT+QyjhO10jDIcsZFYdBcUEacTRWrZ2tR
iJ8qeb6iRNHlmzU99KO28HugvChyW9mn1oFjtgKCSI707nvqmDS9cIedPLi1Oosj
qlqSsu7VBqg9dYJjIC/TcdFUuzOX3lLQ55v/U3UMIykblxTKeIxJo71po9RyFhPO
Yi0rjCA5dtzTcC4QHSsUtNgfLb4OvO3mmXgQAwp0CERXkILwuUeHpArpvrmCNACi
FlemedUjuRArOb6ltxbfmHWAh7IIEfcjpH7nW0TVtMv/sHA6yhsMhjPcvCvtogAx
yyUdQqZxfoyESFEh91TiOTD+ig==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:51 2024 by rpki-client on console-ams.rpki-client.org