Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/EXPDfPJEhHCdrSpdRXZEjFdsca4.roa
File: EXPDfPJEhHCdrSpdRXZEjFdsca4.roa (raw, json)
Hash identifier: h5866bGyj/tSHoKA96Cgj78gHrdprzQo++g/3kiyx3Y=
Subject key identifier: 11:73:C3:7C:F2:44:84:70:9D:AD:2A:5D:45:76:44:8C:57:6C:71:AE
Certificate issuer: /CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Certificate serial: 0862AFD4
Authority key identifier: C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/EXPDfPJEhHCdrSpdRXZEjFdsca4.roa
Signing time: Mon 27 Jun 2022 16:03:31 +0000
ROA not before: Mon 27 Jun 2022 16:03:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42397
IP address blocks: 193.32.160.0/24 maxlen: 24
185.232.65.0/24 maxlen: 24
193.29.13.0/24 maxlen: 24
193.29.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140685268 (0x862afd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Validity
Not Before: Jun 27 16:03:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1173c37cf24484709dad2a5d4576448c576c71ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c6:14:c7:1f:86:24:57:78:04:7d:ec:88:9b:
e5:65:43:12:4f:e3:42:90:1f:21:22:74:49:d3:dd:
7f:80:d5:33:3d:2c:c1:39:af:fb:98:c1:d6:77:75:
0d:bf:d4:6c:ab:65:23:3a:11:52:b7:24:e0:f6:00:
20:34:b3:87:51:32:15:08:4e:48:a9:5d:ef:27:70:
ef:5a:f8:aa:d0:58:24:dd:f1:f6:07:e1:da:bd:18:
77:e9:08:dd:bc:be:4a:4a:7b:ec:6f:ea:ad:1d:5a:
c8:5a:10:71:49:6c:00:2f:27:0d:58:ea:b3:77:4b:
94:86:ab:ad:4e:bb:0f:65:bc:58:66:a4:a5:df:4a:
3c:ec:fa:e9:04:98:c5:5c:0c:52:5d:e8:1e:99:51:
92:3b:e6:67:c2:5c:7f:92:5c:a3:dd:5f:3b:30:93:
8f:1b:20:97:62:fa:5b:b4:b7:b1:ad:18:92:bd:ba:
9c:50:62:1e:8d:e7:3a:bb:ff:ea:02:7c:7f:5b:a5:
89:bb:d8:a3:a4:bd:7c:7b:14:38:0b:9e:66:de:90:
98:9d:a8:2f:5d:34:6b:ad:ab:f0:fc:b3:be:6d:1b:
bd:64:6e:8c:70:58:af:be:f6:6f:31:24:7b:ee:4d:
a8:72:79:af:e8:3f:68:23:b1:c1:27:64:22:a2:da:
16:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:73:C3:7C:F2:44:84:70:9D:AD:2A:5D:45:76:44:8C:57:6C:71:AE
X509v3 Authority Key Identifier:
keyid:C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/EXPDfPJEhHCdrSpdRXZEjFdsca4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.65.0/24
193.29.13.0/24
193.29.15.0/24
193.32.160.0/24
Signature Algorithm: sha256WithRSAEncryption
15:78:45:df:27:7a:2f:51:b3:8a:f2:5a:89:18:d8:69:fb:68:
f8:ad:67:60:c7:ad:7d:5b:18:5a:aa:19:67:a8:08:d7:5d:e6:
50:d7:cc:56:ba:b4:b8:d8:94:f1:5c:1f:57:e2:d2:ea:36:d8:
2c:55:9c:cd:f1:ed:1e:28:6b:9d:73:9e:61:66:00:c2:bb:bc:
a3:f0:08:1c:1f:62:70:dc:2f:88:00:fa:68:d8:77:af:b3:eb:
a7:c0:9b:8e:eb:da:80:63:e6:5a:83:95:eb:0a:60:26:3d:18:
43:8a:73:6c:0e:79:75:b8:a5:bb:9d:fd:c4:ed:47:52:c8:1f:
57:ce:8a:df:ad:7f:96:85:fa:6d:fd:28:31:19:b3:4f:cb:d2:
d0:07:0d:c7:87:b0:cb:43:77:76:ae:99:58:09:ee:df:58:a5:
d3:07:c3:6a:92:62:f5:34:20:97:cf:ab:38:12:b8:f0:c8:ef:
a5:34:4f:6b:3d:ce:77:73:74:2e:a9:a4:4b:dc:53:2e:b2:6b:
ed:3c:c7:60:29:e1:c1:0d:ab:7a:d6:90:71:e9:ec:ad:03:cd:
34:08:d9:9f:54:d2:05:8d:84:d0:35:59:1d:42:41:93:aa:7e:
5e:8e:b7:e1:71:8f:bb:92:f5:76:7f:2b:43:7f:74:bf:91:82:
00:cb:bc:07
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIECGKv1DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MmMxMmI1MjdhNWQxZjhiOGJjZjIzMGViNjExZjUyZjExZDUyYmJmMB4XDTIyMDYy
NzE2MDMzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTE3M2MzN2NmMjQ0
ODQ3MDlkYWQyYTVkNDU3NjQ0OGM1NzZjNzFhZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALjGFMcfhiRXeAR97Iib5WVDEk/jQpAfISJ0SdPdf4DVMz0s
wTmv+5jB1nd1Db/UbKtlIzoRUrck4PYAIDSzh1EyFQhOSKld7ydw71r4qtBYJN3x
9gfh2r0Yd+kI3by+Skp77G/qrR1ayFoQcUlsAC8nDVjqs3dLlIarrU67D2W8WGak
pd9KPOz66QSYxVwMUl3oHplRkjvmZ8Jcf5Jco91fOzCTjxsgl2L6W7S3sa0Ykr26
nFBiHo3nOrv/6gJ8f1ulibvYo6S9fHsUOAueZt6QmJ2oL100a62r8Pyzvm0bvWRu
jHBYr772bzEke+5NqHJ5r+g/aCOxwSdkIqLaFokCAwEAAaOCAhswggIXMB0GA1Ud
DgQWBBQRc8N88kSEcJ2tKl1FdkSMV2xxrjAfBgNVHSMEGDAWgBTCwStSel0fi4vP
Iw62EfUvEdUrvzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3dzRXJVbnBkSDR1THp5TU90aEgxTHhIVks3OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjUvM2ViYjQ2LWI5ZGQtNDY5NS04MTVjLTQ2ZWU1NzhhMGJmZS8x
L0VYUERmUEpFaEhDZHJTcGRSWFpFakZkc2NhNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUv
M2ViYjQ2LWI5ZGQtNDY5NS04MTVjLTQ2ZWU1NzhhMGJmZS8xL3dzRXJVbnBkSDR1
THp5TU90aEgxTHhIVks3OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAx
BggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEALnoQQMEAMEdDQMEAMEdDwMEAMEg
oDANBgkqhkiG9w0BAQsFAAOCAQEAFXhF3yd6L1GzivJaiRjYafto+K1nYMetfVsY
WqoZZ6gI113mUNfMVrq0uNiU8VwfV+LS6jbYLFWczfHtHihrnXOeYWYAwru8o/AI
HB9icNwviAD6aNh3r7Prp8CbjuvagGPmWoOV6wpgJj0YQ4pzbA55dbilu539xO1H
UsgfV86K361/loX6bf0oMRmzT8vS0AcNx4ewy0N3dq6ZWAnu31il0wfDapJi9TQg
l8+rOBK48MjvpTRPaz3Od3N0LqmkS9xTLrJr7TzHYCnhwQ2retaQcensrQPNNAjZ
n1TSBY2E0DVZHUJBk6p+Xo634XGPu5L1dn8rQ390v5GCAMu8Bw==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:16 2025 by rpki-client