Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/60b006-6b53-4f00-a488-485dd4ad54fb/1/WC38E8SLfmu9A18IUoW8TcfVxFc.roa
File: WC38E8SLfmu9A18IUoW8TcfVxFc.roa (raw, json)
Hash identifier: slBBwVkzo1apO4F1psOvJqqGZVHTyBM4Vd7WnRJpQ9U=
Subject key identifier: 58:2D:FC:13:C4:8B:7E:6B:BD:03:5F:08:52:85:BC:4D:C7:D5:C4:57
Certificate issuer: /CN=3c21fac5e895e5b7ce66fe089ffd0b2f61550d21
Certificate serial: 065AA62C
Authority key identifier: 3C:21:FA:C5:E8:95:E5:B7:CE:66:FE:08:9F:FD:0B:2F:61:55:0D:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PCH6xeiV5bfOZv4In_0LL2FVDSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/60b006-6b53-4f00-a488-485dd4ad54fb/1/WC38E8SLfmu9A18IUoW8TcfVxFc.roa
Signing time: Mon 10 Jan 2022 09:30:16 +0000
ROA not before: Mon 10 Jan 2022 09:30:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207597
IP address blocks: 92.119.4.0/24 maxlen: 24
92.119.5.0/24 maxlen: 24
92.119.7.0/24 maxlen: 24
92.119.6.0/24 maxlen: 24
2a09:afc0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106604076 (0x65aa62c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c21fac5e895e5b7ce66fe089ffd0b2f61550d21
Validity
Not Before: Jan 10 09:30:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=582dfc13c48b7e6bbd035f085285bc4dc7d5c457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d2:7b:5b:4e:25:f9:58:a2:c9:89:58:c7:71:
bd:30:74:8f:58:11:af:b2:7e:3c:4d:5f:da:6f:3c:
83:40:9f:43:27:c6:55:0a:aa:b2:b5:4d:46:35:0a:
bf:a8:e6:c4:7b:0a:6d:65:01:98:26:4f:0b:c3:0f:
f4:fc:fa:3a:1d:00:d9:5f:12:ee:b3:34:92:58:ef:
1e:96:00:dc:f3:1d:77:50:26:9e:42:d4:76:70:87:
96:b5:90:c2:26:95:a4:82:94:7b:23:22:7d:2e:81:
18:12:6c:44:86:0d:ac:88:bd:e5:da:69:17:d1:78:
e9:2d:ba:c6:26:e2:fa:98:8e:d2:95:f6:c3:b8:cf:
8b:71:38:c2:e9:ec:c4:ac:4d:da:43:af:b5:66:d7:
57:a1:a7:8d:3e:d5:9a:99:90:12:d7:d4:9d:35:20:
75:a8:eb:4c:ee:b1:f4:45:91:80:7b:16:74:a4:36:
50:ec:87:bc:73:30:4d:d2:8d:67:ab:d9:f9:4b:aa:
a5:a0:ae:3c:63:78:d2:6d:4f:59:7d:06:a4:f8:9d:
9a:bb:b8:f2:bd:a8:e4:43:a8:3f:b6:11:09:f8:b2:
58:2d:72:63:b9:f5:73:59:52:63:ff:94:8c:00:86:
e7:66:7c:88:95:ce:5d:c1:3c:54:10:93:c2:73:c5:
99:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:2D:FC:13:C4:8B:7E:6B:BD:03:5F:08:52:85:BC:4D:C7:D5:C4:57
X509v3 Authority Key Identifier:
keyid:3C:21:FA:C5:E8:95:E5:B7:CE:66:FE:08:9F:FD:0B:2F:61:55:0D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PCH6xeiV5bfOZv4In_0LL2FVDSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/60b006-6b53-4f00-a488-485dd4ad54fb/1/WC38E8SLfmu9A18IUoW8TcfVxFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/60b006-6b53-4f00-a488-485dd4ad54fb/1/PCH6xeiV5bfOZv4In_0LL2FVDSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.4.0/22
IPv6:
2a09:afc0::/48
Signature Algorithm: sha256WithRSAEncryption
0e:dd:c3:cf:3c:32:93:57:80:e5:98:c3:b6:b8:a7:8f:c4:ff:
f1:51:a6:9a:53:01:44:35:d5:46:bb:71:92:f2:f8:d1:01:3d:
38:8b:bd:8b:42:50:0a:4b:2e:23:0e:84:5d:c1:00:ab:84:bc:
87:4d:de:d4:ea:12:ec:39:07:25:58:a0:d1:c0:14:44:2a:8f:
2d:39:07:9b:1d:d0:c4:1a:31:4c:64:36:8e:d7:8b:36:f4:fd:
de:74:41:b6:bc:17:ea:84:cc:3b:06:5f:6b:cc:e9:d5:04:a8:
ca:24:f9:fb:18:b1:be:ce:db:9e:05:19:14:95:ee:13:0e:cb:
3a:4f:e5:91:86:56:c2:db:ce:70:ce:0d:a2:46:07:1d:88:a1:
fc:89:65:54:19:c7:da:95:04:23:b3:7b:ab:cf:0b:b3:7c:8a:
40:62:89:83:47:81:8d:b9:d5:0b:aa:69:df:93:41:37:59:08:
a0:54:e1:a8:aa:dc:27:86:d3:4e:6e:65:1d:3d:a5:81:e0:1e:
c5:74:5a:fd:0a:f0:cc:0b:9f:7c:27:86:99:a4:e5:1a:c8:2a:
0c:fb:db:75:a9:f0:6f:68:c8:55:ce:b3:b6:b7:57:06:a4:62:
c4:bd:c7:4c:39:ed:a1:4c:4a:e4:aa:19:98:84:f8:60:94:db:
de:60:eb:39
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEBlqmLDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YzIxZmFjNWU4OTVlNWI3Y2U2NmZlMDg5ZmZkMGIyZjYxNTUwZDIxMB4XDTIyMDEx
MDA5MzAxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTgyZGZjMTNjNDhi
N2U2YmJkMDM1ZjA4NTI4NWJjNGRjN2Q1YzQ1NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMTSe1tOJflYosmJWMdxvTB0j1gRr7J+PE1f2m88g0CfQyfG
VQqqsrVNRjUKv6jmxHsKbWUBmCZPC8MP9Pz6Oh0A2V8S7rM0kljvHpYA3PMdd1Am
nkLUdnCHlrWQwiaVpIKUeyMifS6BGBJsRIYNrIi95dppF9F46S26xibi+piO0pX2
w7jPi3E4wunsxKxN2kOvtWbXV6GnjT7VmpmQEtfUnTUgdajrTO6x9EWRgHsWdKQ2
UOyHvHMwTdKNZ6vZ+UuqpaCuPGN40m1PWX0GpPidmru48r2o5EOoP7YRCfiyWC1y
Y7n1c1lSY/+UjACG52Z8iJXOXcE8VBCTwnPFmUECAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRYLfwTxIt+a70DXwhShbxNx9XEVzAfBgNVHSMEGDAWgBQ8IfrF6JXlt85m
/gif/QsvYVUNITAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BDSDZ4ZWlWNWJmT1p2NEluXzBMTDJGVkRTRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvNjBiMDA2LTZiNTMtNGYwMC1hNDg4LTQ4NWRkNGFkNTRmYi8x
L1dDMzhFOFNMZm11OUExOElVb1c4VGNmVnhGYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
NjBiMDA2LTZiNTMtNGYwMC1hNDg4LTQ4NWRkNGFkNTRmYi8xL1BDSDZ4ZWlWNWJm
T1p2NEluXzBMTDJGVkRTRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAlx3BDAPBAIAAjAJAwcAKgmvwAAA
MA0GCSqGSIb3DQEBCwUAA4IBAQAO3cPPPDKTV4DlmMO2uKePxP/xUaaaUwFENdVG
u3GS8vjRAT04i72LQlAKSy4jDoRdwQCrhLyHTd7U6hLsOQclWKDRwBREKo8tOQeb
HdDEGjFMZDaO14s29P3edEG2vBfqhMw7Bl9rzOnVBKjKJPn7GLG+ztueBRkUle4T
Dss6T+WRhlbC285wzg2iRgcdiKH8iWVUGcfalQQjs3urzwuzfIpAYomDR4GNudUL
qmnfk0E3WQigVOGoqtwnhtNObmUdPaWB4B7FdFr9CvDMC598J4aZpOUayCoM+9t1
qfBvaMhVzrO2t1cGpGLEvcdMOe2hTErkqhmYhPhglNveYOs5
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:57 2023 by rpki-client on console-fra.rpki-client.org