Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/191219-47c9-4b1b-8e46-dd8a68dbd3b6/1/WCNuEcxPvDuf-Es4QwTHUl7W9A4.roa
File: WCNuEcxPvDuf-Es4QwTHUl7W9A4.roa (raw, json)
Hash identifier: ozeFLizVuUaJpD7iU+DYcl1BFxMglJYrJ7+yvNVnwcc=
Subject key identifier: 58:23:6E:11:CC:4F:BC:3B:9F:F8:4B:38:43:04:C7:52:5E:D6:F4:0E
Certificate issuer: /CN=ffabc23595fd80447d98f5ec3513161bd2473fc6
Certificate serial: 071DBF08
Authority key identifier: FF:AB:C2:35:95:FD:80:44:7D:98:F5:EC:35:13:16:1B:D2:47:3F:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_6vCNZX9gER9mPXsNRMWG9JHP8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/191219-47c9-4b1b-8e46-dd8a68dbd3b6/1/WCNuEcxPvDuf-Es4QwTHUl7W9A4.roa
Signing time: Sat 01 Jan 2022 04:57:29 +0000
ROA not before: Sat 01 Jan 2022 04:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203568
IP address blocks: 193.222.252.0/23 maxlen: 23
193.223.70.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119389960 (0x71dbf08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffabc23595fd80447d98f5ec3513161bd2473fc6
Validity
Not Before: Jan 1 04:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58236e11cc4fbc3b9ff84b384304c7525ed6f40e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1f:e6:40:3f:97:78:ed:7b:c0:3e:36:5d:2a:
79:7f:78:d9:1a:2b:41:66:42:d6:dd:75:98:1f:9b:
83:ca:d6:33:44:20:0c:73:c4:d2:98:3e:c5:cf:3e:
45:c8:a4:31:96:e7:97:84:0d:e4:30:1c:41:85:18:
e6:08:0e:e4:52:72:2d:32:4e:dd:f7:6e:98:be:66:
5c:b7:5a:7a:06:96:d3:fa:f8:cb:89:3f:38:de:a4:
67:4a:78:f3:fa:c2:59:61:29:92:80:ac:c3:5c:43:
d7:a8:d9:58:e8:9f:64:c1:5d:c3:51:00:75:e4:72:
3d:5d:61:fc:29:5b:31:7d:49:73:4c:26:36:86:c9:
60:52:d6:c2:29:e2:74:3d:12:1b:8c:69:cc:7f:98:
54:f2:96:e6:68:bc:e7:f9:a6:3e:c3:c7:f3:8d:7f:
cd:fa:e2:f3:cb:40:44:f4:72:c9:e6:26:23:38:57:
44:91:30:7e:5a:89:ce:a5:b2:a9:94:65:87:93:14:
30:3c:30:24:0a:71:6f:ab:8a:14:62:10:03:1f:bf:
a8:48:e6:bd:ed:6e:a1:b1:5d:83:30:81:1a:f5:9c:
60:47:56:e7:a4:d2:e1:c6:ff:1e:cd:86:b4:c6:1a:
62:17:bc:3c:59:45:3f:6d:4b:39:c2:e4:40:e4:b2:
4a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:23:6E:11:CC:4F:BC:3B:9F:F8:4B:38:43:04:C7:52:5E:D6:F4:0E
X509v3 Authority Key Identifier:
keyid:FF:AB:C2:35:95:FD:80:44:7D:98:F5:EC:35:13:16:1B:D2:47:3F:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_6vCNZX9gER9mPXsNRMWG9JHP8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/191219-47c9-4b1b-8e46-dd8a68dbd3b6/1/WCNuEcxPvDuf-Es4QwTHUl7W9A4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/191219-47c9-4b1b-8e46-dd8a68dbd3b6/1/_6vCNZX9gER9mPXsNRMWG9JHP8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.222.252.0/23
193.223.70.0/23
Signature Algorithm: sha256WithRSAEncryption
21:bc:c7:fd:3b:73:d7:b0:d9:b2:75:7f:75:61:60:7a:b2:c7:
88:a1:17:5e:9f:50:7d:5d:ff:9f:76:72:82:0a:71:c0:40:d5:
69:78:6f:c1:3e:c9:3d:d0:a4:68:dd:79:25:76:86:cb:70:54:
cb:97:c6:c2:9b:b8:89:0a:0b:fb:ab:8b:36:bc:e1:f8:14:71:
6f:57:62:03:35:24:78:7b:04:e3:b6:09:bc:ba:33:f7:69:7b:
7d:0f:75:58:c1:fc:bb:b4:f3:14:a9:3a:f6:45:01:8c:b8:47:
84:06:f8:4f:df:31:0f:f8:86:88:2c:93:6a:5e:4c:8a:e1:6c:
8f:4a:b3:23:b8:91:1c:cf:7f:75:8f:f7:b0:ce:f0:f6:e0:bd:
53:34:e9:15:9e:f8:3f:cf:c1:29:79:e7:08:ec:32:b5:0f:a3:
cc:ec:b4:9f:80:7c:96:43:9b:4a:0d:ff:49:01:ab:4c:a1:f8:
40:ca:01:04:d0:36:0e:f4:26:f3:73:06:cf:77:ed:63:21:0d:
75:b8:4a:a8:69:a9:81:a7:9a:1b:18:ac:3c:1f:00:84:7f:35:
63:68:e1:4d:a4:18:bd:22:fb:ef:c6:a2:ee:ae:fe:cb:6f:ee:
71:5b:37:73:d8:a3:19:09:a8:47:90:ae:ec:e7:5b:ce:99:6e:
10:48:b3:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:10:40 2025 by rpki-client