Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/c94855-5b1a-4f96-b7a1-6fe1f294e627/1/WHBz9ZHfRkRJJf6GReKVSC6Hxfc.roa
File: WHBz9ZHfRkRJJf6GReKVSC6Hxfc.roa (raw, json)
Hash identifier: 4fN+3X2WqCgYuaswkDKSQ1GnINB6DqFs5FBEFR/Mg5M=
Subject key identifier: 58:70:73:F5:91:DF:46:44:49:25:FE:86:45:E2:95:48:2E:87:C5:F7
Certificate issuer: /CN=673b3a71cf772755a3df8ced5d73516f871c0a11
Certificate serial: 05F4A3C0
Authority key identifier: 67:3B:3A:71:CF:77:27:55:A3:DF:8C:ED:5D:73:51:6F:87:1C:0A:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zzs6cc93J1Wj34ztXXNRb4ccChE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/c94855-5b1a-4f96-b7a1-6fe1f294e627/1/WHBz9ZHfRkRJJf6GReKVSC6Hxfc.roa
Signing time: Sat 01 Jan 2022 15:59:01 +0000
ROA not before: Sat 01 Jan 2022 15:59:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25252
IP address blocks: 170.102.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99918784 (0x5f4a3c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=673b3a71cf772755a3df8ced5d73516f871c0a11
Validity
Not Before: Jan 1 15:59:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=587073f591df46444925fe8645e295482e87c5f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:1b:03:5c:2e:0b:c6:75:1f:47:8c:3b:eb:b3:
fe:be:c2:67:cb:b4:86:fd:62:8b:87:f9:b6:bd:72:
9c:e7:1c:3b:6c:20:6d:25:4e:d8:e3:77:db:81:d5:
15:50:6c:74:b1:c7:e3:76:c3:ad:95:54:f6:9e:de:
01:75:ce:95:55:58:1d:da:50:d0:f9:10:e9:59:9a:
30:c4:b1:78:38:bb:c3:3a:43:29:41:cc:3d:d8:58:
fa:a2:37:a8:6c:1d:73:22:56:92:17:d2:65:88:da:
a7:5a:60:c4:d6:32:66:b4:92:6d:d1:8c:a9:07:72:
19:d7:4a:8e:c1:06:3f:22:9a:06:ba:ec:c9:cb:de:
82:69:6a:0b:18:cf:db:c1:71:b1:28:a4:2a:34:0b:
db:45:81:b3:1e:b2:f9:49:94:ab:28:3b:04:76:33:
a4:f7:9f:31:ff:1a:74:b0:3c:6a:c4:85:db:44:a9:
71:d3:47:93:63:b5:6a:d8:c1:d4:c7:e9:9e:8e:88:
f4:8e:42:ae:c5:5a:b0:94:0f:cf:ad:e8:f3:8a:99:
79:1c:5e:18:d6:b5:97:57:65:6a:5f:07:77:40:f2:
51:95:92:43:8a:31:67:8a:71:ff:96:8f:c2:28:af:
a3:9e:84:c5:2d:2d:f4:df:11:9c:44:6a:b1:d0:9d:
69:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:70:73:F5:91:DF:46:44:49:25:FE:86:45:E2:95:48:2E:87:C5:F7
X509v3 Authority Key Identifier:
keyid:67:3B:3A:71:CF:77:27:55:A3:DF:8C:ED:5D:73:51:6F:87:1C:0A:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zzs6cc93J1Wj34ztXXNRb4ccChE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/c94855-5b1a-4f96-b7a1-6fe1f294e627/1/WHBz9ZHfRkRJJf6GReKVSC6Hxfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/c94855-5b1a-4f96-b7a1-6fe1f294e627/1/Zzs6cc93J1Wj34ztXXNRb4ccChE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.102.196.0/24
Signature Algorithm: sha256WithRSAEncryption
96:7b:f8:8c:c1:c7:6f:29:9a:68:2e:e0:09:42:71:c3:6c:dc:
3a:06:5d:e9:92:e3:4b:d8:c6:91:97:e3:cd:ad:0c:48:e3:27:
bc:fa:12:3a:ea:36:80:b0:1e:39:34:b3:87:09:65:5c:77:91:
86:ef:38:fa:44:bf:b3:de:b8:d3:7b:39:f9:eb:6f:18:17:64:
bf:e3:79:f1:ae:dd:b3:37:8d:21:4c:52:a5:6b:c1:77:1f:54:
bc:fd:1a:b1:d4:99:0d:49:d1:a6:84:70:b1:20:45:a1:2a:aa:
f9:c7:77:59:3c:28:36:6c:39:03:96:3c:42:cd:e7:93:1d:97:
94:04:33:da:17:d9:ec:1b:85:53:ff:73:aa:d7:69:09:43:3f:
6f:86:87:45:67:90:34:62:ab:07:e1:85:ba:1e:b8:c5:a9:e7:
f1:59:56:0f:77:55:05:dc:12:2c:40:5c:cf:0e:3f:6b:ce:75:
e9:d3:f6:a2:75:81:62:14:4b:92:da:b0:7c:2d:7a:e8:e8:87:
a1:dc:94:89:74:26:94:85:df:39:6a:81:dd:89:02:ba:9a:5e:
c8:7c:36:0a:6a:29:ca:de:ce:02:ea:f6:fd:88:67:4b:cc:9b:
6b:9d:a3:c5:68:1a:3a:4d:61:fa:fa:df:6d:83:3c:18:a4:ff:
84:ba:0b:fa
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBfSjwDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NzNiM2E3MWNmNzcyNzU1YTNkZjhjZWQ1ZDczNTE2Zjg3MWMwYTExMB4XDTIyMDEw
MTE1NTkwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTg3MDczZjU5MWRm
NDY0NDQ5MjVmZTg2NDVlMjk1NDgyZTg3YzVmNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI4bA1wuC8Z1H0eMO+uz/r7CZ8u0hv1ii4f5tr1ynOccO2wg
bSVO2ON324HVFVBsdLHH43bDrZVU9p7eAXXOlVVYHdpQ0PkQ6VmaMMSxeDi7wzpD
KUHMPdhY+qI3qGwdcyJWkhfSZYjap1pgxNYyZrSSbdGMqQdyGddKjsEGPyKaBrrs
ycvegmlqCxjP28FxsSikKjQL20WBsx6y+UmUqyg7BHYzpPefMf8adLA8asSF20Sp
cdNHk2O1atjB1Mfpno6I9I5CrsVasJQPz63o84qZeRxeGNa1l1dlal8Hd0DyUZWS
Q4oxZ4px/5aPwiivo56ExS0t9N8RnERqsdCdabUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRYcHP1kd9GREkl/oZF4pVILofF9zAfBgNVHSMEGDAWgBRnOzpxz3cnVaPf
jO1dc1FvhxwKETAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1p6czZjYzkzSjFXajM0enRYWE5SYjRjY0NoRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzkvYzk0ODU1LTViMWEtNGY5Ni1iN2ExLTZmZTFmMjk0ZTYyNy8x
L1dIQno5WkhmUmtSSkpmNkdSZUtWU0M2SHhmYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzkv
Yzk0ODU1LTViMWEtNGY5Ni1iN2ExLTZmZTFmMjk0ZTYyNy8xL1p6czZjYzkzSjFX
ajM0enRYWE5SYjRjY0NoRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKpmxDANBgkqhkiG9w0BAQsFAAOC
AQEAlnv4jMHHbymaaC7gCUJxw2zcOgZd6ZLjS9jGkZfjza0MSOMnvPoSOuo2gLAe
OTSzhwllXHeRhu84+kS/s96403s5+etvGBdkv+N58a7dszeNIUxSpWvBdx9UvP0a
sdSZDUnRpoRwsSBFoSqq+cd3WTwoNmw5A5Y8Qs3nkx2XlAQz2hfZ7BuFU/9zqtdp
CUM/b4aHRWeQNGKrB+GFuh64xann8VlWD3dVBdwSLEBczw4/a8516dP2onWBYhRL
ktqwfC166OiHodyUiXQmlIXfOWqB3YkCuppeyHw2Cmopyt7OAur2/YhnS8yba52j
xWgaOk1h+vrfbYM8GKT/hLoL+g==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:47 2023 by rpki-client on console.sobornost.net