Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/080af6-8dc4-48e6-9c63-a6b95991cd2c/1/25xU1_0OdQeBGW0Ljpie74rBkYk.roa
File: 25xU1_0OdQeBGW0Ljpie74rBkYk.roa (raw, json)
Hash identifier: 4lgiIx3PRGYKtaq54T91Ke8cFbXYIMvnNBfT+9dEYcE=
Subject key identifier: DB:9C:54:D7:FD:0E:75:07:81:19:6D:0B:8E:98:9E:EF:8A:C1:91:89
Certificate issuer: /CN=ebbc0d60bd3a90bd5e31509deadf447076b078d8
Certificate serial: 1B823D6C
Authority key identifier: EB:BC:0D:60:BD:3A:90:BD:5E:31:50:9D:EA:DF:44:70:76:B0:78:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/67wNYL06kL1eMVCd6t9EcHaweNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/080af6-8dc4-48e6-9c63-a6b95991cd2c/1/25xU1_0OdQeBGW0Ljpie74rBkYk.roa
Signing time: Sat 01 Jan 2022 15:02:27 +0000
ROA not before: Sat 01 Jan 2022 15:02:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25076
IP address blocks: 212.45.74.0/24 maxlen: 24
212.45.75.0/24 maxlen: 24
212.45.76.0/22 maxlen: 22
212.45.72.0/23 maxlen: 23
79.134.48.0/21 maxlen: 24
79.134.58.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 461520236 (0x1b823d6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebbc0d60bd3a90bd5e31509deadf447076b078d8
Validity
Not Before: Jan 1 15:02:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db9c54d7fd0e750781196d0b8e989eef8ac19189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:50:f0:19:b3:86:9a:da:a6:21:c2:47:4f:fe:
30:0e:3e:92:dc:51:7b:11:9e:55:ae:9d:79:7d:07:
a7:d0:64:db:e8:bf:a5:c9:b0:70:2e:a6:d9:ef:e7:
69:d1:c1:49:69:51:38:9c:79:9f:d5:4e:c4:3f:ec:
79:8f:41:2c:8c:95:cc:95:5f:b6:c7:19:f6:71:4d:
c8:fd:86:af:95:35:fb:b0:1b:8a:20:39:29:06:27:
75:c2:86:16:e3:0f:ea:e3:16:d3:8d:d9:58:5e:fd:
6e:d6:31:3a:0b:6e:9b:08:91:33:67:45:fd:60:ef:
cd:7f:f5:6d:af:cf:40:f4:6a:e3:d2:1b:d2:54:43:
64:de:b1:1e:b7:39:55:e0:50:2c:c3:31:07:64:54:
11:4b:2e:c1:54:88:fc:73:26:f7:45:28:eb:c6:13:
91:77:ec:58:a2:18:85:fe:72:c6:9c:ac:b4:67:a2:
cb:85:f8:e5:53:38:24:57:dc:88:c5:79:7b:37:a6:
72:b7:15:83:50:e0:43:ad:78:46:f8:85:e7:45:99:
c7:f8:64:01:3a:fd:44:cb:4f:0f:25:00:5f:36:24:
14:09:8c:80:2f:34:d3:c6:60:f5:40:55:b9:8b:94:
56:3c:31:ea:5a:be:64:8e:7c:38:80:b0:62:86:1e:
d4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:9C:54:D7:FD:0E:75:07:81:19:6D:0B:8E:98:9E:EF:8A:C1:91:89
X509v3 Authority Key Identifier:
keyid:EB:BC:0D:60:BD:3A:90:BD:5E:31:50:9D:EA:DF:44:70:76:B0:78:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/67wNYL06kL1eMVCd6t9EcHaweNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/080af6-8dc4-48e6-9c63-a6b95991cd2c/1/25xU1_0OdQeBGW0Ljpie74rBkYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/080af6-8dc4-48e6-9c63-a6b95991cd2c/1/67wNYL06kL1eMVCd6t9EcHaweNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.134.48.0/21
79.134.58.0/23
212.45.72.0/21
Signature Algorithm: sha256WithRSAEncryption
39:c3:84:fd:bd:0a:bb:f1:84:e6:d3:6f:87:e9:92:e1:7e:02:
8f:d5:94:a8:51:80:46:aa:31:85:1a:07:4c:b6:03:5f:4d:48:
9e:6c:bc:4d:18:39:dd:ec:d0:e0:71:87:a7:1b:2e:b3:1e:52:
ee:0f:e4:08:ae:c3:19:0e:fa:19:14:4e:48:16:ab:17:b9:51:
20:15:17:33:f8:f2:8d:59:88:41:b4:26:b5:3b:a7:31:bf:70:
82:fd:ec:7d:32:96:75:6d:58:2b:fa:7c:f9:e0:4c:8b:21:83:
1f:17:04:25:5b:19:e3:7f:0b:d7:e0:d6:5e:3e:83:14:08:26:
b0:3c:72:75:06:44:57:18:cd:31:d7:b2:ba:3d:e1:c0:08:5e:
9a:32:11:84:ab:b4:14:b0:45:43:00:3d:c7:cb:f9:63:8d:40:
9e:47:10:82:4f:fc:49:84:01:a9:d4:58:0e:8f:bb:f0:ee:bf:
96:f9:43:9f:bc:db:44:ee:c1:cb:b0:da:86:4a:55:d2:bd:91:
f1:39:02:52:d3:52:cd:67:81:95:9d:f4:ca:2c:1f:f4:95:91:
34:33:6d:4a:5f:f8:6e:7a:03:57:c3:1d:7f:cf:4b:43:e5:23:
68:a6:8c:94:5f:c7:18:6c:bd:79:40:09:9b:b5:8c:b2:72:0a:
a9:61:cd:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:11 2025 by rpki-client