Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/w79ZaqQaiF0tSOnY0SqtnD00AKI.roa
File: w79ZaqQaiF0tSOnY0SqtnD00AKI.roa (raw, json)
Hash identifier: JvgxY6MLhEwHmhAFD4MrZws1+ujSxvVaxbYcH402uHA=
Subject key identifier: C3:BF:59:6A:A4:1A:88:5D:2D:48:E9:D8:D1:2A:AD:9C:3D:34:00:A2
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01FC4CD5
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/w79ZaqQaiF0tSOnY0SqtnD00AKI.roa
Signing time: Fri 04 Mar 2022 10:52:07 +0000
ROA not before: Fri 04 Mar 2022 10:52:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49519
IP address blocks: 45.13.117.0/24 maxlen: 24
2a0c:b642:5000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33311957 (0x1fc4cd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Mar 4 10:52:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3bf596aa41a885d2d48e9d8d12aad9c3d3400a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ee:cd:88:99:09:29:16:0d:62:98:50:34:0a:
cb:0d:32:15:35:c7:9e:99:ed:f7:a4:a6:df:2a:9f:
b5:f6:3f:fb:b7:5a:0d:e0:1c:19:74:40:7a:f5:e5:
90:8b:d6:ee:52:70:a2:9e:f3:d8:6f:99:a1:6f:d6:
87:96:f1:64:d5:25:82:64:df:0d:3a:dc:71:5d:0f:
f7:80:b8:83:38:dd:8e:92:10:9e:23:bc:7c:7f:da:
82:7e:92:83:1b:35:e2:45:d5:fd:a4:e5:36:ff:ec:
2e:92:eb:2a:07:b3:1b:93:bb:80:a9:66:84:b9:98:
9d:b0:11:bd:39:a9:84:1a:16:9f:a3:25:a3:d5:cc:
77:c1:f3:5a:ef:35:97:10:5e:92:7b:74:52:ef:4e:
91:66:d7:f7:f1:c9:1b:7c:2f:2e:0f:4d:f3:47:f7:
1e:8d:4b:db:01:41:4a:0c:27:5d:61:2d:94:d5:82:
30:f9:6f:18:79:71:c8:fe:15:73:f3:45:f7:dc:53:
72:db:5b:e1:b2:8b:31:9d:d5:84:89:d2:42:98:95:
3a:0e:c5:f1:0c:ed:3f:18:71:73:40:32:46:fb:64:
c4:27:a3:c7:e7:5f:d1:b6:57:e8:27:36:a6:95:13:
a5:ea:0c:f9:cb:54:56:98:67:73:84:33:5f:3a:10:
f2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:BF:59:6A:A4:1A:88:5D:2D:48:E9:D8:D1:2A:AD:9C:3D:34:00:A2
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/w79ZaqQaiF0tSOnY0SqtnD00AKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.117.0/24
IPv6:
2a0c:b642:5000::/36
Signature Algorithm: sha256WithRSAEncryption
9f:85:be:a1:61:1f:78:b9:cc:de:c2:51:54:53:81:00:e8:3e:
cd:09:58:a1:85:15:b5:b1:c2:be:6f:b6:ec:94:50:c5:19:de:
7a:f1:40:6c:c8:8e:48:cb:61:bf:e3:db:ca:d5:61:df:c4:1d:
a7:c7:78:ac:bc:cb:55:3a:e6:d0:f0:fa:ce:31:c7:57:a0:2a:
1e:98:df:d5:d9:0d:22:44:e8:86:6a:f7:c0:54:1b:a2:a3:d3:
3e:f5:1b:17:2f:32:82:35:5e:fb:15:3a:a3:c0:79:84:d0:f9:
c3:b4:56:dd:de:6d:50:71:18:98:a7:40:9f:1f:e7:c5:90:0e:
df:2b:c3:09:62:23:28:8d:84:92:80:d8:9e:a5:c2:06:c5:2c:
e5:1c:01:15:d2:2f:95:2a:7f:a2:0f:25:f8:1e:52:64:cc:c1:
e9:6f:81:29:f9:86:d5:54:fb:14:14:c6:03:cb:d5:66:73:8f:
34:b7:20:c4:97:09:90:6d:bb:da:6c:3d:44:95:cd:49:8f:26:
2f:42:05:6b:53:ef:12:98:59:27:00:4b:d2:f4:d2:e2:4a:0e:
fc:28:72:83:3c:8e:34:01:fa:fe:7c:bd:0c:37:a6:66:1c:7c:
53:8f:57:3d:e6:03:cd:51:75:32:15:1d:17:d5:65:b9:4d:8d:
cc:d4:0d:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:59 2025 by rpki-client