Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/mWx_pJIKg7okMFbcE2qnlA5K0zc.roa
File: mWx_pJIKg7okMFbcE2qnlA5K0zc.roa (raw, json)
Hash identifier: di/2Hb2ktu3kpS87QDl00rFnHpH+IFg2EO4PQjHYxfA=
Subject key identifier: 99:6C:7F:A4:92:0A:83:BA:24:30:56:DC:13:6A:A7:94:0E:4A:D3:37
Certificate issuer: /CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Certificate serial: 0DE75ADA
Authority key identifier: 72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/mWx_pJIKg7okMFbcE2qnlA5K0zc.roa
Signing time: Sat 01 Jan 2022 08:00:50 +0000
ROA not before: Sat 01 Jan 2022 08:00:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12629
IP address blocks: 80.67.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 233265882 (0xde75ada)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Validity
Not Before: Jan 1 08:00:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=996c7fa4920a83ba243056dc136aa7940e4ad337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9d:00:32:86:fd:4f:6d:a2:fa:f6:91:47:2a:
25:da:f6:9f:22:29:8d:97:d1:ce:d4:69:74:17:d2:
a0:c2:e8:d1:a5:ce:0e:f2:f4:6c:0a:bc:1c:f0:17:
35:da:5c:f9:04:01:91:10:08:30:6e:56:ab:1d:af:
50:2e:1e:04:ae:8f:df:9e:76:de:4a:51:ab:02:f5:
0f:d7:92:f7:41:77:ec:48:81:6a:76:9b:80:c8:72:
57:74:39:b8:a0:8e:3f:d7:46:b4:21:fb:18:d3:66:
8c:f0:08:86:50:05:dc:27:6d:8a:28:b2:27:3d:71:
99:e3:63:e2:3f:c3:b6:52:2e:84:0c:00:bd:7b:be:
48:b1:a0:e2:27:2e:15:54:9e:c7:6b:78:98:c3:68:
0d:c2:3d:43:b1:b3:e8:27:a3:38:aa:46:73:dd:dd:
c6:00:e6:d5:1f:25:7a:63:f5:c3:95:43:27:6d:67:
63:3c:39:de:e5:1e:c1:89:50:49:7d:e1:30:a4:cc:
23:bb:85:5f:4f:76:8d:ff:46:fc:59:73:8a:96:e5:
a5:ed:d2:50:f1:78:53:3f:8b:8e:d5:20:08:98:2c:
55:78:a1:3e:08:44:c8:a1:4b:0c:93:d1:1a:83:14:
3d:88:ae:f6:8f:95:28:bb:23:56:36:36:fb:fb:8d:
af:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:6C:7F:A4:92:0A:83:BA:24:30:56:DC:13:6A:A7:94:0E:4A:D3:37
X509v3 Authority Key Identifier:
keyid:72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/mWx_pJIKg7okMFbcE2qnlA5K0zc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.67.182.0/24
Signature Algorithm: sha256WithRSAEncryption
44:55:da:e1:07:b5:05:82:c9:c8:bf:52:55:eb:ea:4c:34:4e:
a7:db:eb:38:0f:08:ab:47:b2:c3:e8:14:8a:19:d8:4e:4b:06:
c7:67:d5:c3:f4:5c:64:f8:fd:10:d4:43:36:bb:51:3d:c7:5c:
c8:8a:8e:25:30:d0:b5:d5:34:1e:24:06:02:4f:04:51:23:d4:
5c:66:b3:0f:fb:32:fe:be:7f:bd:1d:57:8d:b0:03:06:00:d2:
52:a0:74:02:d8:35:be:32:10:6a:7e:f5:50:6c:fd:2a:29:48:
f8:c7:f6:eb:57:62:de:3b:af:4f:d6:07:8c:3d:46:85:b8:5d:
4e:43:12:73:8a:8c:ac:5f:4c:05:23:6a:c0:25:3b:7a:4b:0c:
ac:ae:7c:b7:c5:41:51:cf:35:ba:fc:26:99:c2:d0:bc:e1:aa:
5c:b8:3f:26:f1:6e:ae:ec:e6:85:c4:64:a3:3b:11:a0:c8:86:
bd:db:e1:96:c7:47:51:b1:09:26:ac:60:ea:d3:d9:e0:ba:16:
c2:a3:b2:1d:6d:1f:08:09:cf:30:31:89:0e:23:86:ee:e7:22:
3c:a8:15:1c:4e:86:d7:bc:5c:6b:aa:80:48:ee:3f:a4:b4:c6:
c6:34:55:65:34:58:98:94:aa:eb:f8:2d:47:c5:cb:b9:9d:82:
c9:e3:59:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:33:48 2025 by rpki-client