Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/rygxvK4AeTz1gZ_tZMNt2v31xOA.roa
File: rygxvK4AeTz1gZ_tZMNt2v31xOA.roa (raw, json)
Hash identifier: DMLheZnQ3Nu15kI116wpf+MGyRHiBvcBUXBjZ46yR+U=
Subject key identifier: AF:28:31:BC:AE:00:79:3C:F5:81:9F:ED:64:C3:6D:DA:FD:F5:C4:E0
Certificate issuer: /CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Certificate serial: 08647209
Authority key identifier: C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/rygxvK4AeTz1gZ_tZMNt2v31xOA.roa
Signing time: Mon 27 Jun 2022 16:03:32 +0000
ROA not before: Mon 27 Jun 2022 16:03:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49468
IP address blocks: 193.32.161.0/24 maxlen: 24
45.129.12.0/24 maxlen: 24
193.29.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140800521 (0x8647209)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Validity
Not Before: Jun 27 16:03:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af2831bcae00793cf5819fed64c36ddafdf5c4e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d8:f5:64:64:c0:89:5e:5d:f4:c3:bb:91:a3:
5e:b7:a6:c9:cf:12:30:db:11:79:69:83:69:09:d5:
32:2a:d4:45:fd:26:88:0d:59:4a:09:11:d7:fb:1d:
d5:7b:fc:04:6f:2e:c5:3b:d6:fd:63:eb:12:32:c6:
54:64:58:49:b9:b1:fc:29:f4:cb:73:3d:38:bc:1d:
7d:82:a0:ef:fe:47:47:1d:e3:90:51:bb:45:64:f6:
ec:c4:dc:1a:7c:db:fc:19:55:09:02:39:13:c1:11:
fb:6c:7a:52:fc:0f:fd:6a:53:ca:07:53:4c:75:bb:
f6:20:24:3f:67:2d:37:d3:8e:b1:85:a8:19:ce:a0:
be:ad:0e:e8:af:a3:35:2a:81:12:41:bb:5e:f5:4e:
07:07:db:96:99:c5:b6:f2:76:5b:79:ea:6a:80:34:
fe:1a:0d:21:f3:13:1a:e2:f3:f3:7f:2f:d5:b6:5c:
97:52:29:ad:98:5e:95:2e:20:a5:fb:a3:bc:41:97:
7c:ff:c2:3b:f8:b6:47:3f:a9:df:d2:a6:73:88:7d:
97:15:35:ca:3a:db:de:c3:b6:5f:d1:09:99:ee:b4:
79:76:75:78:01:de:95:ae:34:16:df:70:a7:52:28:
62:63:9e:20:52:a8:f2:6c:94:9b:6c:a4:9b:49:af:
07:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:28:31:BC:AE:00:79:3C:F5:81:9F:ED:64:C3:6D:DA:FD:F5:C4:E0
X509v3 Authority Key Identifier:
keyid:C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/rygxvK4AeTz1gZ_tZMNt2v31xOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.12.0/24
193.29.12.0/24
193.32.161.0/24
Signature Algorithm: sha256WithRSAEncryption
70:cd:7d:d0:f2:ea:b5:ff:f2:9d:e7:e9:56:e4:33:7e:a9:ce:
55:1d:b9:cd:de:3a:04:c1:05:23:19:dc:ba:96:2d:6d:50:e5:
1e:ac:ae:c8:8c:79:ff:1b:61:ba:7f:2f:2b:1c:89:d1:94:bd:
f2:f9:26:10:10:40:fa:0f:6d:a4:f2:4c:d8:d5:f0:f5:e6:09:
15:80:c9:d4:61:02:58:4e:9e:d7:7d:80:ff:84:51:46:87:8c:
21:57:d6:35:f2:08:fd:c9:6e:86:0f:2f:e2:2b:15:67:37:28:
6d:f8:f5:c7:23:6b:6a:9c:19:4a:90:bd:61:4a:23:53:fa:6d:
4e:4a:92:3d:8f:b6:c0:9c:00:71:57:c8:d9:a0:da:e8:ae:e9:
d6:63:78:4c:39:b5:01:02:dc:bd:fc:27:9a:0f:3a:c4:34:76:
5f:18:32:69:9d:71:83:ff:df:39:93:bd:b9:da:1c:b2:f6:5a:
0b:ce:bb:94:5e:b0:e7:e1:71:56:86:d4:c2:a0:83:5d:54:a5:
d6:8b:51:5b:c2:bb:a5:fc:94:ad:9d:a3:9d:7b:e0:ae:45:e0:
c9:9b:49:6b:53:00:5b:8f:cf:b7:46:1d:28:30:b6:a6:1f:46:
fd:64:f9:49:38:c5:41:91:73:d0:e0:25:07:77:30:ae:b3:03:
39:9e:81:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:45:42 2025 by rpki-client