Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/wnlD2DqoakEWk2pxStKoLZgPgRc.roa
File: wnlD2DqoakEWk2pxStKoLZgPgRc.roa (raw, json)
Hash identifier: 6VRF8m+Pa1BqW29DHl0S4kRMv/VbeyCJF/HVsEtkRUQ=
Subject key identifier: C2:79:43:D8:3A:A8:6A:41:16:93:6A:71:4A:D2:A8:2D:98:0F:81:17
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 50ECAB1B
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/wnlD2DqoakEWk2pxStKoLZgPgRc.roa
Signing time: Sat 01 Jan 2022 16:02:01 +0000
ROA not before: Sat 01 Jan 2022 16:02:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208980
IP address blocks: 212.243.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1357687579 (0x50ecab1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 16:02:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c27943d83aa86a4116936a714ad2a82d980f8117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ac:6e:b9:98:65:35:ad:20:82:1b:3a:13:e6:
42:be:f5:34:17:06:f5:b8:93:d3:06:df:a0:fe:83:
51:5c:29:10:46:cf:93:43:d5:65:8a:8e:87:24:b3:
0e:28:b3:24:59:53:f0:2b:38:db:38:57:66:a0:c8:
28:ce:c5:16:6a:00:13:5e:92:51:60:d1:fa:fb:3f:
e1:cc:89:c9:b3:20:d6:33:5b:aa:07:22:26:57:c3:
17:43:d3:6e:8f:86:c1:0d:9a:c4:4d:0c:98:24:e8:
3b:5a:9e:67:41:ab:1e:c3:db:49:96:12:59:b6:9a:
14:21:4a:66:73:82:09:b1:5d:63:7d:7e:29:9a:e4:
78:03:d1:1e:38:4f:13:a7:ca:d2:9b:af:af:fc:b7:
c6:8b:63:16:f8:cb:6f:f8:90:76:26:81:7d:d8:f2:
c4:10:6f:42:84:b9:d3:f7:4e:1d:9e:e2:56:12:89:
8c:93:4e:99:6f:13:9c:4c:1c:4c:4c:05:2f:96:b5:
65:0f:09:2b:d6:89:5c:35:55:55:3a:84:46:dc:cb:
7b:d3:bc:97:93:01:db:02:38:bb:91:50:3f:26:b8:
bd:45:9c:fc:e1:26:6e:ec:2b:87:20:2f:6b:9a:0d:
c6:81:78:b5:23:38:e2:1c:7f:c2:e2:7e:6a:df:6a:
13:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:79:43:D8:3A:A8:6A:41:16:93:6A:71:4A:D2:A8:2D:98:0F:81:17
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/wnlD2DqoakEWk2pxStKoLZgPgRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.243.126.0/24
Signature Algorithm: sha256WithRSAEncryption
92:0e:98:34:71:8f:6c:45:bb:dd:8d:80:99:b2:68:86:04:f7:
e5:71:b2:9c:bd:5a:6b:6b:2b:f9:ef:7f:6a:42:93:5f:a2:52:
e8:0c:99:33:b5:92:8e:dd:11:e5:70:4f:70:63:52:0b:39:0a:
37:e0:49:3f:aa:6a:94:c6:2a:27:73:24:0b:33:db:d0:34:3f:
11:44:19:e5:be:b5:02:ad:39:87:5e:b7:30:b5:cb:be:9d:7e:
4c:5e:2b:73:31:de:dd:74:06:7b:4b:53:7d:4b:b0:fa:de:72:
53:7a:71:53:0e:55:67:48:ae:ab:56:a5:d5:27:6f:34:3c:4e:
57:37:6b:06:3a:aa:02:d0:4d:e6:4a:78:93:9b:03:68:f2:41:
8d:00:9b:ba:cc:0e:19:30:72:a3:95:56:da:ce:bc:e5:ad:3f:
19:40:59:a8:11:9a:84:7f:eb:d7:e9:60:1a:84:e5:51:8d:4c:
0e:a2:73:76:a7:fe:a2:1d:dc:23:f7:75:b4:1a:8b:de:03:ec:
cf:4a:6e:90:09:d1:23:fd:c2:2c:59:b1:2a:f4:c6:12:95:f8:
fd:8c:18:29:8c:61:1b:cb:be:bd:d8:76:9f:75:2a:42:5e:c9:
da:8e:e6:f3:9f:73:89:ac:b1:3e:f3:11:9c:39:7f:c1:e0:b3:
70:ac:93:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:41:27 2025 by rpki-client