Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/wzsmO-LhdHXG_PxgStZ7mSoAazE.roa
File: wzsmO-LhdHXG_PxgStZ7mSoAazE.roa (raw, json)
Hash identifier: RjQI+Lb4Gr+Onz2h0oTbzuUkaa6h31eVDZhi2ZhzIPg=
Subject key identifier: C3:3B:26:3B:E2:E1:74:75:C6:FC:FC:60:4A:D6:7B:99:2A:00:6B:31
Certificate issuer: /CN=af48f67f53fce9891d41593ac84cae304abfcbcf
Certificate serial: 06BACDEC
Authority key identifier: AF:48:F6:7F:53:FC:E9:89:1D:41:59:3A:C8:4C:AE:30:4A:BF:CB:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r0j2f1P86YkdQVk6yEyuMEq_y88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/wzsmO-LhdHXG_PxgStZ7mSoAazE.roa
Signing time: Sat 01 Jan 2022 01:00:44 +0000
ROA not before: Sat 01 Jan 2022 01:00:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202796
IP address blocks: 193.169.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112905708 (0x6bacdec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af48f67f53fce9891d41593ac84cae304abfcbcf
Validity
Not Before: Jan 1 01:00:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c33b263be2e17475c6fcfc604ad67b992a006b31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5e:a8:d8:2a:55:de:5a:c0:22:31:3f:d7:ad:
56:3f:cc:85:47:29:b2:79:df:31:9a:78:b2:5b:2b:
42:ed:f5:7a:6d:f6:16:7a:63:86:ab:43:19:83:86:
15:c6:8a:fa:ef:41:26:18:68:bd:4d:07:40:7b:d1:
7b:08:4c:f7:bd:e6:e3:7b:e0:af:21:2d:35:df:f1:
01:2f:3f:b2:91:c0:a0:5f:44:c2:16:34:9c:33:b1:
37:6f:dd:25:37:0f:be:46:89:b8:56:21:49:da:9d:
30:a7:d2:4c:c8:2a:8b:6c:6d:6a:35:7b:b0:3f:e7:
04:03:17:20:58:9a:3e:76:dd:16:9f:4b:6e:67:b9:
ea:53:67:b3:52:e7:9f:de:b4:75:7a:97:2b:df:4c:
47:4d:a3:60:9f:2f:70:0f:af:d0:3b:80:f6:8f:8d:
8f:9d:c2:ce:68:ad:2a:c7:ff:cf:57:1b:a8:3d:bd:
bb:6b:db:ae:52:7c:78:54:03:5f:89:fe:d7:2f:eb:
b8:a4:66:21:b2:59:ab:52:35:71:c3:1e:90:53:bd:
78:6c:66:d3:96:d6:6c:9b:28:0f:57:99:b8:0c:e1:
6d:40:b0:8c:80:2a:6d:b5:c4:ec:11:1c:70:58:f2:
94:41:94:ff:40:c2:95:9c:81:ab:46:4b:d0:45:c2:
de:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:3B:26:3B:E2:E1:74:75:C6:FC:FC:60:4A:D6:7B:99:2A:00:6B:31
X509v3 Authority Key Identifier:
keyid:AF:48:F6:7F:53:FC:E9:89:1D:41:59:3A:C8:4C:AE:30:4A:BF:CB:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r0j2f1P86YkdQVk6yEyuMEq_y88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/wzsmO-LhdHXG_PxgStZ7mSoAazE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/r0j2f1P86YkdQVk6yEyuMEq_y88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.171.0/24
Signature Algorithm: sha256WithRSAEncryption
84:53:32:c1:9f:28:7b:83:91:58:dc:74:7b:67:b7:9e:d1:8b:
55:77:2b:db:57:e2:90:45:cd:ef:2a:bd:2a:5d:54:37:01:04:
fa:7b:eb:6e:a8:ea:25:45:f6:3e:57:ce:5e:bf:36:fc:61:43:
4b:71:f0:ea:6f:14:9d:65:05:4a:90:99:82:cf:97:ba:38:47:
3b:44:6b:4a:c4:79:f3:7c:f8:1f:26:dd:7e:58:22:f3:da:76:
cd:22:8c:95:d8:a8:98:8b:a8:9d:b0:4d:e9:ba:17:0b:af:23:
c5:00:59:00:30:fb:b6:a1:0b:e8:60:fb:09:99:c1:14:b7:5f:
f3:59:20:16:9d:1f:47:7e:9d:f9:d4:89:27:af:49:41:a4:3f:
17:9f:33:ed:de:cd:ef:23:38:7a:f0:16:dc:c9:2a:c6:60:43:
86:d9:f8:77:95:4d:49:17:8d:8c:92:a5:69:58:de:34:70:af:
f3:8e:8b:db:6e:16:f6:20:24:c9:54:4d:ea:64:fe:19:15:f3:
fc:2d:9b:82:a7:e7:6e:a6:af:4a:e8:47:8d:02:5f:21:03:97:
e3:c4:e0:d6:4a:3e:fe:1a:e1:37:98:76:b1:01:81:b0:ca:80:
62:0c:c1:58:fd:f5:8a:6e:ce:5e:47:4d:5a:02:8d:1f:9a:db:
03:37:74:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:29 2025 by rpki-client