Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02cccd-0433-4330-981c-c672d673686f/1/wr5MXHr9LQybvsITAXh4KflxP6c.roa
File: wr5MXHr9LQybvsITAXh4KflxP6c.roa (raw, json)
Hash identifier: nsmhcbD/QBpkh+NkBUcAlR8f/dQszUbRuF6TLJII1Dw=
Subject key identifier: C2:BE:4C:5C:7A:FD:2D:0C:9B:BE:C2:13:01:78:78:29:F9:71:3F:A7
Certificate issuer: /CN=579353cb42e0c4fba5cae253a5768bc1f2465b99
Certificate serial: 01BEC13B
Authority key identifier: 57:93:53:CB:42:E0:C4:FB:A5:CA:E2:53:A5:76:8B:C1:F2:46:5B:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5NTy0LgxPulyuJTpXaLwfJGW5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02cccd-0433-4330-981c-c672d673686f/1/wr5MXHr9LQybvsITAXh4KflxP6c.roa
Signing time: Sat 01 Jan 2022 07:54:18 +0000
ROA not before: Sat 01 Jan 2022 07:54:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211559
IP address blocks: 185.25.14.0/23 maxlen: 23
185.25.12.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29278523 (0x1bec13b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=579353cb42e0c4fba5cae253a5768bc1f2465b99
Validity
Not Before: Jan 1 07:54:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2be4c5c7afd2d0c9bbec21301787829f9713fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7f:39:e7:9d:cb:74:4f:fb:ba:b9:da:63:11:
80:f6:af:3e:e1:5d:cd:1d:9e:44:08:7c:3b:c1:18:
e5:05:09:6e:a7:ea:2e:f0:96:da:3f:7b:52:12:9d:
04:10:b0:29:30:37:4f:0b:62:51:00:83:c5:d8:9f:
bc:44:d2:8b:fe:75:d1:f6:c9:1f:0a:62:e0:e3:0b:
a1:b5:64:2a:a4:3b:47:fd:f1:4f:01:52:ee:bc:7b:
bc:99:95:fa:e3:3d:41:88:63:06:82:d1:30:d4:74:
ad:5f:21:8a:7c:88:77:d5:a8:e8:16:71:ef:48:02:
a4:ea:d2:65:eb:9a:e7:36:f6:8a:3a:59:6b:4e:ae:
73:24:56:8f:aa:7a:56:26:7b:ff:a4:39:26:c7:45:
0b:21:cc:c9:35:38:13:26:90:a6:48:d7:7a:a9:c8:
95:36:70:8e:30:66:d9:51:5a:87:f9:76:af:ba:27:
b9:22:c0:d6:27:ee:7f:62:4b:79:0a:50:f8:85:97:
12:0f:88:c9:28:53:2f:c3:02:9e:9f:63:e9:f7:8a:
01:d7:74:34:a3:77:63:31:79:84:be:20:91:bf:c3:
34:06:b2:08:b5:fa:4c:f4:4c:ad:31:21:6e:77:a5:
a9:56:90:93:0b:15:2c:59:4d:2b:08:66:97:8a:91:
10:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:BE:4C:5C:7A:FD:2D:0C:9B:BE:C2:13:01:78:78:29:F9:71:3F:A7
X509v3 Authority Key Identifier:
keyid:57:93:53:CB:42:E0:C4:FB:A5:CA:E2:53:A5:76:8B:C1:F2:46:5B:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5NTy0LgxPulyuJTpXaLwfJGW5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02cccd-0433-4330-981c-c672d673686f/1/wr5MXHr9LQybvsITAXh4KflxP6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02cccd-0433-4330-981c-c672d673686f/1/V5NTy0LgxPulyuJTpXaLwfJGW5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.25.12.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:5d:7c:68:cd:f6:71:af:a6:ed:04:ca:b5:42:7c:74:f8:f0:
5d:46:40:de:35:f0:21:52:da:ea:cb:67:e6:20:59:af:a1:86:
bb:08:ec:26:10:3a:57:0d:98:af:2a:29:93:21:ff:c5:0d:d4:
0c:5b:53:fd:2b:ca:7f:aa:bc:90:48:46:8d:8a:2b:49:1c:0b:
64:94:9c:b3:f4:e2:48:3d:af:34:cd:c1:47:f9:af:80:61:2f:
45:93:0d:11:55:0b:64:54:35:e3:22:27:71:fe:04:ea:e7:6a:
17:07:bc:c5:f7:d4:d1:bc:83:4b:a5:78:2e:c2:19:59:32:d9:
e2:53:45:cf:1b:6b:3d:bd:15:50:a7:a1:ee:2c:bf:d9:4e:a5:
46:6b:40:60:bd:bb:5b:2a:66:3e:46:e5:df:96:07:b8:6a:20:
13:dd:48:a9:8f:36:e7:8f:a2:df:e1:ee:2a:bc:81:d9:53:b7:
3a:fd:2f:a0:33:c7:a1:ae:bf:b4:f7:f5:51:78:37:84:87:80:
23:bd:b4:20:bf:60:f4:cb:11:87:1c:91:ab:2f:06:58:95:61:
4e:22:62:04:e8:56:02:33:55:65:ae:c7:cf:1a:8c:fc:87:90:
f4:a7:26:f2:4d:33:a2:62:d4:70:66:49:7e:e1:54:ee:0f:a5:
80:e9:73:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:50 2025 by rpki-client