Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/2FZaiAPzMMgJIbXFFUXe4GSPTZ8.roa
File: 2FZaiAPzMMgJIbXFFUXe4GSPTZ8.roa (raw, json)
Hash identifier: Lil8ORXnqXijTnUQsEMHZgoKddib4A0o7ak3hs717TE=
Subject key identifier: D8:56:5A:88:03:F3:30:C8:09:21:B5:C5:15:45:DE:E0:64:8F:4D:9F
Certificate issuer: /CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Certificate serial: 0186E5467C241ECB2868803062832C4A1E28
Authority key identifier: C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/2FZaiAPzMMgJIbXFFUXe4GSPTZ8.roa
Signing time: Wed 15 Mar 2023 12:37:27 +0000
ROA not before: Wed 15 Mar 2023 12:37:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 193.47.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e5:46:7c:24:1e:cb:28:68:80:30:62:83:2c:4a:1e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Validity
Not Before: Mar 15 12:37:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8565a8803f330c80921b5c51545dee0648f4d9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:16:66:48:37:ec:50:17:e9:51:2d:30:26:b7:
07:c0:3c:1e:04:d7:fc:60:95:b7:50:67:94:a5:bb:
31:d8:a7:5a:63:bd:23:1c:df:12:3a:62:7a:f8:8d:
a6:6b:89:b0:69:b9:aa:7a:10:9d:84:a0:5b:01:ad:
13:09:3a:d6:c7:1a:7b:9c:3c:91:44:74:97:ab:18:
73:41:cd:87:b1:65:2f:6e:f9:27:36:be:8b:15:09:
9b:cb:3a:f8:ea:c3:4c:cb:bd:b8:1f:1a:95:90:b8:
a4:24:01:e6:8e:c0:21:17:23:de:27:a2:ac:92:6d:
3a:9e:83:29:ae:6a:45:e5:7e:d7:8e:d4:d8:43:dd:
f1:fc:d4:29:80:78:a1:bd:45:4c:b5:65:25:c1:0e:
99:14:ba:ec:78:03:ca:59:83:03:77:5e:45:7d:72:
32:f9:25:f3:6f:f7:4d:27:71:6b:bd:22:45:3b:ee:
3d:13:77:1a:0d:d6:2c:fb:3c:d0:b4:bd:36:7d:f3:
49:d0:43:9f:2d:1f:87:71:4b:65:82:27:9e:1e:f0:
bb:e1:1c:3a:a5:ba:4d:7d:e5:42:15:2c:22:ad:9c:
a2:03:84:85:9f:bb:2d:d4:93:76:f0:3c:f9:f3:36:
3b:fd:11:dc:10:4b:6a:17:f5:f9:fe:47:77:59:6f:
c1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:56:5A:88:03:F3:30:C8:09:21:B5:C5:15:45:DE:E0:64:8F:4D:9F
X509v3 Authority Key Identifier:
keyid:C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/2FZaiAPzMMgJIbXFFUXe4GSPTZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.69.0/24
Signature Algorithm: sha256WithRSAEncryption
14:f6:bb:b1:a9:66:9f:2f:3d:fc:bd:a7:ef:2f:46:cb:7a:bf:
73:5a:63:74:da:71:0b:fb:87:e9:25:98:7c:5f:29:e3:83:7f:
86:e0:e6:2e:85:19:85:eb:6e:e0:e5:a5:db:86:bd:ae:14:cd:
48:f9:73:62:fd:00:99:8f:f4:48:86:1d:83:0e:e2:62:b0:8e:
08:5a:8a:9d:87:2e:63:94:2d:74:a4:c1:ef:a5:67:f0:dd:de:
9c:3e:1e:06:1d:03:58:51:41:17:db:e7:ee:91:3a:69:d7:89:
49:0c:96:6e:98:08:44:eb:bc:ca:42:24:81:52:38:54:fb:ca:
c7:c7:ee:ec:80:dc:c7:d6:4d:0f:1b:2a:fd:05:fe:bb:fe:c6:
2e:cb:c0:c5:9d:12:15:04:67:01:29:20:56:20:8c:55:4d:ee:
5b:ff:7d:55:a5:81:0f:30:c7:8e:f8:14:30:a5:39:f5:eb:9a:
05:72:ce:8e:41:a8:0f:9a:07:e8:46:d5:2c:93:3d:c4:24:75:
fa:4b:25:f9:ee:99:41:d3:f6:31:c4:c1:59:69:0b:ed:bb:12:
92:a9:2f:eb:ab:22:e8:dd:77:7d:45:75:34:c5:57:ea:9c:d6:
40:e3:4b:08:c4:01:bc:b4:e9:99:7f:89:ec:86:36:16:dc:4e:
6d:f5:f6:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:37:09 2025 by rpki-client