Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/3Jy7d3lLw2xbC1lxeqe8tpCh4Ck.roa
File: 3Jy7d3lLw2xbC1lxeqe8tpCh4Ck.roa (raw, json)
Hash identifier: G7yDpLagm6czfbfo+slv3h0HyiT33MbGxxLWF6UJxes=
Subject key identifier: DC:9C:BB:77:79:4B:C3:6C:5B:0B:59:71:7A:A7:BC:B6:90:A1:E0:29
Certificate issuer: /CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Certificate serial: 018C206E32BF451A77EDDFB129D1841D26C9
Authority key identifier: C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/3Jy7d3lLw2xbC1lxeqe8tpCh4Ck.roa
Signing time: Thu 30 Nov 2023 13:32:22 +0000
ROA not before: Thu 30 Nov 2023 13:32:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42397
IP address blocks: 185.232.65.0/24 maxlen: 24
193.29.13.0/24 maxlen: 24
193.29.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:20:6e:32:bf:45:1a:77:ed:df:b1:29:d1:84:1d:26:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Validity
Not Before: Nov 30 13:32:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc9cbb77794bc36c5b0b59717aa7bcb690a1e029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:dc:0e:6e:d7:d3:d5:20:4e:41:f5:dd:21:ed:
d4:de:5d:38:b0:88:0b:b9:70:03:c3:6a:da:e2:7f:
15:f8:f0:78:aa:74:89:fb:39:0b:97:ea:e0:dc:5f:
da:65:60:cc:7b:05:bf:1a:d2:c1:09:b0:b5:5b:05:
53:61:8d:d9:4e:e8:c1:6a:3c:8f:b5:cd:3d:b5:80:
ea:d0:b9:87:4d:57:bd:1c:1b:b9:1b:90:8a:a9:fc:
1f:d6:80:6d:4f:db:4e:7a:f3:a2:de:1c:e3:a4:d1:
92:00:69:db:10:67:82:ce:8a:e1:c0:31:de:3f:ba:
3f:b6:78:b0:6e:72:25:88:2c:fb:e2:28:c2:69:0c:
ff:4d:ef:12:7d:0c:4c:a2:24:a6:e2:a1:92:46:ca:
ce:a3:1f:4d:c9:f3:c9:8b:e9:09:da:6a:66:15:a8:
98:19:03:e5:3f:e0:96:df:55:c2:f6:e9:ed:41:64:
3d:d3:5c:7d:68:1c:9f:41:82:26:ec:69:ad:1d:94:
12:f7:4e:97:10:b0:81:ab:b5:fe:bf:a6:b3:bf:58:
cf:8e:c3:7d:05:27:55:c5:12:d0:12:82:72:0a:31:
f9:6e:35:99:e7:3b:92:1d:80:b0:78:1c:fb:5a:01:
f8:0e:8a:41:2b:6d:4f:0d:09:51:10:2a:ae:29:4b:
95:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:9C:BB:77:79:4B:C3:6C:5B:0B:59:71:7A:A7:BC:B6:90:A1:E0:29
X509v3 Authority Key Identifier:
keyid:C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/3Jy7d3lLw2xbC1lxeqe8tpCh4Ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.65.0/24
193.29.13.0/24
193.29.15.0/24
Signature Algorithm: sha256WithRSAEncryption
92:a0:bc:12:c8:30:96:1d:d9:82:7d:22:1d:f6:8d:77:bf:ce:
0a:56:20:ab:ba:54:f4:71:91:c8:37:4a:cd:ff:ef:44:5f:60:
03:4b:5d:75:1e:ac:b0:89:01:a2:69:f4:eb:4f:2c:6d:5a:a2:
a7:ef:13:7c:31:55:81:77:4a:81:01:d4:7e:07:5d:bd:aa:63:
b4:1c:65:b4:e6:ef:67:5d:b1:90:6f:d2:81:d1:72:7b:ec:cb:
74:24:26:5b:93:1d:d2:f9:2e:a9:ae:64:09:d7:98:72:82:e1:
b9:a5:57:cd:21:5e:cc:b7:a7:80:87:1d:e8:e6:5b:b3:61:42:
87:12:7b:79:d4:ba:58:fb:b9:2f:70:4e:4c:58:8e:22:ce:8c:
b6:61:c5:b3:db:d0:44:c6:27:b5:3b:6f:c5:49:bc:0a:49:9a:
cd:de:14:d5:61:54:fb:fc:a6:bd:31:ef:0a:e0:d7:d4:89:7c:
96:b0:ec:f8:50:ad:d4:13:c5:36:d2:e5:d4:c7:f9:ee:7f:61:
1e:e5:b3:32:52:21:6a:92:fa:8e:b4:c9:22:78:d3:87:f2:98:
c6:8f:49:9f:d8:a1:da:0e:47:27:06:31:1e:79:ec:ff:7e:b6:
0b:6e:d3:d4:b6:83:55:d5:d0:bd:8d:35:6f:39:92:e2:62:0f:
87:f0:09:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:51 2025 by rpki-client