Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Wp5cMCBMv7iDeCzK6mEN2pHxnRc.roa
File: Wp5cMCBMv7iDeCzK6mEN2pHxnRc.roa (raw, json)
Hash identifier: tbn09i4HzLmKeo0BgwNoOrp3WZMPN19UyaCcJZfCJbQ=
Subject key identifier: 5A:9E:5C:30:20:4C:BF:B8:83:78:2C:CA:EA:61:0D:DA:91:F1:9D:17
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 010C8E9F
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Wp5cMCBMv7iDeCzK6mEN2pHxnRc.roa
Signing time: Sat 01 Jan 2022 00:59:32 +0000
ROA not before: Sat 01 Jan 2022 00:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59598
IP address blocks: 45.13.119.0/24 maxlen: 24
2a0c:b641:260::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17600159 (0x10c8e9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a9e5c30204cbfb883782ccaea610dda91f19d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e4:27:7d:d9:53:1b:c5:1f:cb:ca:e3:d8:4c:
e6:d5:b4:ab:d7:8f:5b:d2:37:31:61:8d:d2:53:62:
db:40:17:0e:5b:00:64:2b:9a:bf:b5:fb:8f:66:c1:
0e:9b:fc:05:4a:d5:a0:de:1d:3c:a4:b5:e5:94:32:
b7:67:d4:e0:5c:8d:3f:f1:aa:8b:8b:d7:75:48:86:
66:c0:35:5d:8f:38:c4:80:b4:d6:bb:61:56:e4:7c:
2f:77:27:70:9d:16:ca:13:b6:66:88:2c:f8:15:9e:
c3:06:89:4f:3b:0f:ae:24:ee:b8:8e:d9:db:d1:d7:
ea:15:bb:c0:cb:b6:f3:b8:7b:69:70:09:b5:49:9a:
d2:45:33:3e:b6:bb:da:c7:b2:e4:ff:8a:a9:c6:e2:
be:88:85:3e:d3:e0:79:e3:dd:5b:70:32:e4:87:e5:
10:fb:d3:fc:3b:b9:0d:36:46:4e:9f:75:34:b2:ce:
3c:85:8d:be:f6:aa:65:06:d6:1a:be:b2:de:f3:d9:
b9:80:9f:82:d0:71:ce:0d:89:1b:14:16:7a:28:ae:
ad:aa:51:b0:6c:ea:25:0d:3e:a5:b4:8d:24:f3:0e:
48:91:e8:4c:7e:1c:6d:fe:9b:cb:bf:1c:13:39:17:
db:c4:75:47:86:d3:e6:ae:d2:cf:18:98:42:c2:52:
c1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:9E:5C:30:20:4C:BF:B8:83:78:2C:CA:EA:61:0D:DA:91:F1:9D:17
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/Wp5cMCBMv7iDeCzK6mEN2pHxnRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.119.0/24
IPv6:
2a0c:b641:260::/44
Signature Algorithm: sha256WithRSAEncryption
73:11:69:1b:52:3d:ba:25:3a:e8:90:9a:f3:8a:87:ee:59:26:
0c:5c:c1:d7:78:da:a4:b1:fb:8f:fc:3b:1d:7e:28:2b:58:6f:
4b:eb:0c:e9:94:17:6c:e2:30:98:05:03:10:be:09:67:e5:a9:
2a:52:4f:e1:e6:07:e6:e9:99:2e:6c:2f:59:88:88:20:f6:3a:
f6:f0:08:43:a4:c9:8b:ff:d5:a8:01:79:ee:52:e0:70:94:ee:
ad:b3:4a:18:b5:3c:91:3b:d4:9f:e7:3d:00:d2:24:a9:97:2d:
ee:08:01:9c:58:27:65:ca:c1:88:4d:9b:62:63:9e:e7:95:54:
d0:36:d2:e2:e1:a8:74:15:55:47:a7:35:c7:c8:95:82:78:8e:
96:dd:44:31:02:e1:98:bf:40:68:40:24:5e:19:1c:5c:26:ba:
4c:37:c1:32:f8:12:f8:b9:44:54:4e:98:33:de:2a:9a:49:f1:
e9:8d:b4:ed:36:84:7e:b1:51:2b:ff:9f:79:9c:d5:c7:53:ad:
67:0c:b8:bd:64:d9:e0:e6:79:d6:e9:a1:03:d0:8c:f8:e0:bf:
ec:9d:7e:69:6c:c8:9d:81:97:ef:69:fd:eb:1b:b3:07:1b:86:
73:7c:30:45:2e:97:10:45:21:ee:f9:18:b8:ca:af:f1:40:91:
a3:50:73:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:17:20 2025 by rpki-client