Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Wl0lPCxgtbav-hzdJLcWp2sLAM0.roa
File: Wl0lPCxgtbav-hzdJLcWp2sLAM0.roa (raw, json)
Hash identifier: nwZsdIsk+obogd/idVG8VEJvasmUAWezNKm8Cuta1KU=
Subject key identifier: 5A:5D:25:3C:2C:60:B5:B6:AF:FA:1C:DD:24:B7:16:A7:6B:0B:00:CD
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 3A006F56
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Wl0lPCxgtbav-hzdJLcWp2sLAM0.roa
Signing time: Sat 01 Jan 2022 14:00:36 +0000
ROA not before: Sat 01 Jan 2022 14:00:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197600
IP address blocks: 157.25.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 973107030 (0x3a006f56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 1 14:00:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a5d253c2c60b5b6affa1cdd24b716a76b0b00cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f4:71:93:fe:a2:59:bd:b5:50:c2:d9:fe:e8:
11:97:cd:18:1c:d3:da:d8:e0:0f:ed:93:6c:90:8e:
cd:29:e0:a5:58:d4:c1:02:91:4f:43:ab:7d:54:ea:
cc:77:d1:01:43:db:49:f9:5d:17:54:7f:d8:9b:a7:
d2:49:ca:d6:b8:58:68:ff:12:f0:db:46:d3:93:31:
96:b5:c9:0f:f1:eb:68:51:f2:61:75:63:8e:18:c0:
ba:2d:6d:aa:d8:50:5e:11:e4:17:0b:da:fb:6d:7d:
b7:25:1d:f8:16:74:01:36:f3:db:ef:4f:61:2e:48:
9d:c7:02:21:64:12:8a:42:9b:09:d3:c4:1f:e6:d0:
f1:e4:f6:87:6e:83:36:bd:16:66:f5:83:cf:23:e1:
29:4b:e1:8c:99:9d:76:d9:93:1a:00:99:c5:d3:f6:
7b:32:6f:69:60:d5:37:6c:ed:07:f2:34:d6:4c:44:
65:b3:08:42:d5:18:4c:a3:b0:4a:59:ba:eb:e3:ae:
64:9d:0c:80:a9:25:38:a8:59:f2:20:a6:48:6d:f0:
f6:11:25:38:b5:5f:33:67:27:a1:d3:c0:87:cf:25:
ec:43:97:0a:92:57:c7:c8:37:95:4b:14:36:14:24:
79:27:e0:89:68:63:d4:ff:dc:60:03:df:a0:aa:15:
87:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:5D:25:3C:2C:60:B5:B6:AF:FA:1C:DD:24:B7:16:A7:6B:0B:00:CD
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Wl0lPCxgtbav-hzdJLcWp2sLAM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.25.123.0/24
Signature Algorithm: sha256WithRSAEncryption
52:ac:94:a7:b0:27:de:b3:60:ec:20:b7:dd:51:fb:27:76:b4:
45:55:e0:62:95:6f:7a:16:74:f6:3b:b4:fd:d8:b1:05:2c:f3:
92:fd:be:be:eb:13:a7:2c:e7:2a:46:de:94:0f:85:ea:32:53:
e2:20:53:fb:bc:2a:6a:44:83:23:6c:a2:98:be:37:70:44:45:
e4:c6:53:b4:c1:5c:b4:5d:8b:93:01:1d:bc:2a:d9:30:06:67:
46:ce:ab:8e:8b:97:31:7a:5a:32:da:40:1c:d1:d2:f0:09:45:
1d:56:75:d5:b7:9f:f5:5d:f2:c8:22:3b:d7:7c:4f:11:42:df:
67:27:35:01:1b:b0:07:ef:e7:01:99:7b:fb:f9:cd:74:a6:d4:
0b:32:d2:42:6f:a7:a9:b7:f1:3f:3c:0c:87:03:63:6e:76:62:
d7:93:2f:97:79:a9:c6:4a:ed:b8:ad:7e:77:9e:80:06:af:72:
16:c6:cd:37:03:f1:01:f1:c5:67:6b:fc:66:26:0a:36:1c:33:
95:63:8e:7b:ab:41:b2:ab:07:c6:89:f1:17:8c:0b:b1:ac:9d:
2a:59:7c:6e:6d:fe:43:be:e1:50:55:74:72:08:ed:53:34:6d:
1f:b0:c2:39:2f:4b:f8:5c:36:1a:25:6a:a0:a5:b3:bb:86:9d:
7f:6c:24:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:27 2025 by rpki-client