Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/wQxzIcM2R2y2boxdWTakiI0Ch8U.roa
File: wQxzIcM2R2y2boxdWTakiI0Ch8U.roa (raw, json)
Hash identifier: gxMIaxzUozPqV5DxwCs3mZQCAM4xt+taXQbQ/Xb+hIU=
Subject key identifier: C1:0C:73:21:C3:36:47:6C:B6:6E:8C:5D:59:36:A4:88:8D:02:87:C5
Certificate issuer: /CN=c2eafaa30b340ecf810a4cb9af3b51c702566598
Certificate serial: 018945765A33F0FA5FEFEA0A09746351C532
Authority key identifier: C2:EA:FA:A3:0B:34:0E:CF:81:0A:4C:B9:AF:3B:51:C7:02:56:65:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wur6ows0Ds-BCky5rztRxwJWZZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/wQxzIcM2R2y2boxdWTakiI0Ch8U.roa
Signing time: Tue 11 Jul 2023 14:58:51 +0000
ROA not before: Tue 11 Jul 2023 14:58:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199785
IP address blocks: 212.15.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:45:76:5a:33:f0:fa:5f:ef:ea:0a:09:74:63:51:c5:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2eafaa30b340ecf810a4cb9af3b51c702566598
Validity
Not Before: Jul 11 14:58:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c10c7321c336476cb66e8c5d5936a4888d0287c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9f:ed:9e:e7:b9:e6:a9:64:ac:16:a8:e2:c2:
7d:c0:8e:8f:36:0a:08:4e:c7:0a:e3:05:3b:a7:a6:
6b:91:31:27:77:50:32:46:da:3f:a5:55:b2:e7:7d:
f6:e5:f9:cc:f6:9d:a8:a2:29:56:3c:d6:01:ef:79:
53:a2:33:2e:bf:33:0f:5a:66:85:75:35:e6:11:6e:
81:26:34:36:c1:ae:4b:71:33:ce:aa:af:b7:8d:a4:
f5:b9:14:16:29:a2:f3:92:85:c8:34:75:aa:a1:ff:
ff:12:99:07:c6:3a:9a:78:4c:cb:2a:fb:41:ba:40:
75:e1:79:2f:eb:f8:67:eb:7f:6d:c9:84:28:05:37:
56:34:65:ac:df:71:2b:a7:31:cc:64:3e:ef:63:5d:
59:f9:5d:4b:b1:d1:79:03:8b:2a:54:00:45:c1:31:
03:e7:27:e2:0f:a7:35:db:08:4d:75:79:e4:46:cf:
f9:c8:91:0c:e5:9d:ed:13:9c:01:06:fc:f0:72:51:
46:87:11:10:33:58:73:9d:1e:1f:8f:08:dd:39:47:
24:11:0e:e9:6f:94:82:a0:f2:d1:da:5f:40:b1:1b:
29:08:3d:d5:35:85:f3:0b:f8:cf:82:09:3d:f7:5a:
bf:b2:96:3e:22:8d:65:3f:9a:af:9b:0d:57:ca:c7:
f0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:0C:73:21:C3:36:47:6C:B6:6E:8C:5D:59:36:A4:88:8D:02:87:C5
X509v3 Authority Key Identifier:
keyid:C2:EA:FA:A3:0B:34:0E:CF:81:0A:4C:B9:AF:3B:51:C7:02:56:65:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wur6ows0Ds-BCky5rztRxwJWZZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/wQxzIcM2R2y2boxdWTakiI0Ch8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/wur6ows0Ds-BCky5rztRxwJWZZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.15.55.0/24
Signature Algorithm: sha256WithRSAEncryption
43:f6:0e:ba:0a:9a:41:2c:99:95:04:15:51:36:dc:46:24:43:
bf:6b:17:4a:cc:b3:fd:53:e7:c4:96:0e:50:bc:19:1b:2b:7f:
33:7a:ef:91:f3:87:a6:eb:96:ce:ac:9b:de:96:e3:9d:16:5e:
8f:64:fe:7e:b7:d0:73:bb:ac:e7:b0:8c:c4:e2:7b:c0:4a:9f:
ad:9b:72:6d:b6:fc:96:92:08:68:31:a7:3d:3f:76:11:5d:9d:
48:0b:af:eb:8e:5e:3f:78:db:72:26:71:5f:85:32:e3:41:6a:
16:11:29:7a:a6:a6:f2:f4:21:4c:88:57:b4:ca:41:a5:26:c1:
21:e4:9d:10:8e:50:12:e6:c3:8d:c0:78:a8:c6:c5:ba:d4:7a:
d7:3c:29:f1:2b:d6:30:9f:f9:f0:f1:7d:db:58:f9:7e:8b:8a:
5e:13:e4:d0:7c:6b:5e:ff:8b:50:cb:e9:91:ca:94:cd:72:7b:
3c:16:55:ae:a9:79:bd:6f:dc:ce:26:14:ec:94:5f:3c:cc:fe:
db:67:68:f3:39:e2:1b:57:19:fe:9f:3d:e6:f2:4e:74:a8:90:
a7:ab:c1:f2:e8:aa:d9:98:3f:b1:8d:41:f2:33:7c:c6:6a:22:
87:97:de:64:31:d3:b6:15:e8:cc:2a:94:92:27:af:9c:31:5b:
5f:57:68:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 07:02:50 2025 by rpki-client