Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/VWni88qRtuyPZxlJ2mA_iAXLZsQ.roa
File: VWni88qRtuyPZxlJ2mA_iAXLZsQ.roa (raw, json)
Hash identifier: /dpRKXSZRxKEgiIoICnmF8lufxpwegfyWxR3HIH28rs=
Subject key identifier: 55:69:E2:F3:CA:91:B6:EC:8F:67:19:49:DA:60:3F:88:05:CB:66:C4
Certificate issuer: /CN=4074a7895875cf2c678544f6ce6f4b239f4929fb
Certificate serial: 088980B3
Authority key identifier: 40:74:A7:89:58:75:CF:2C:67:85:44:F6:CE:6F:4B:23:9F:49:29:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/VWni88qRtuyPZxlJ2mA_iAXLZsQ.roa
Signing time: Fri 06 May 2022 10:15:31 +0000
ROA not before: Fri 06 May 2022 10:15:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5564
IP address blocks: 213.128.224.0/19 maxlen: 24
194.247.64.0/19 maxlen: 24
2a00:5580::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143229107 (0x88980b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4074a7895875cf2c678544f6ce6f4b239f4929fb
Validity
Not Before: May 6 10:15:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5569e2f3ca91b6ec8f671949da603f8805cb66c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:3e:3e:ef:1a:b4:36:63:6d:18:e9:a1:19:2e:
6d:3b:11:01:27:ea:32:32:f5:2c:56:0e:f3:1f:a6:
ab:5a:e2:a4:e3:76:3f:ce:10:c3:1d:97:02:f7:59:
6c:13:d9:fd:5f:a9:4a:12:46:21:8d:a9:85:4d:77:
7a:44:3d:2c:5f:e9:1b:e2:de:72:74:8f:c5:d8:42:
e4:47:2e:a7:cd:cc:c3:46:d7:41:e7:bf:65:47:e8:
c4:83:3f:a3:65:49:de:78:86:8b:a2:31:30:38:3c:
b0:aa:d7:e4:c5:e0:76:c2:59:8e:b3:09:30:a4:93:
8c:a8:bf:0a:2c:08:f6:cc:ed:62:46:5f:35:9d:f6:
fb:03:a8:01:66:98:c9:52:6e:49:e7:d2:88:c7:50:
0b:26:cf:65:10:88:9a:87:51:89:58:3d:c9:9e:2f:
d9:28:e9:9c:13:9a:36:98:1f:7a:5e:1a:ef:67:5e:
9e:38:4d:8f:7f:ea:04:e7:36:11:25:97:0d:32:9b:
87:09:c9:67:9f:f0:08:ca:c4:63:fc:a0:6f:55:4d:
28:61:a1:03:3f:71:88:a0:59:43:92:1a:f3:57:36:
90:69:2d:51:f7:30:40:5c:d9:94:ca:5d:3a:6a:26:
40:2c:46:88:40:5f:17:4f:78:0b:13:00:c5:d6:e4:
a0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:69:E2:F3:CA:91:B6:EC:8F:67:19:49:DA:60:3F:88:05:CB:66:C4
X509v3 Authority Key Identifier:
keyid:40:74:A7:89:58:75:CF:2C:67:85:44:F6:CE:6F:4B:23:9F:49:29:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/VWni88qRtuyPZxlJ2mA_iAXLZsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.247.64.0/19
213.128.224.0/19
IPv6:
2a00:5580::/29
Signature Algorithm: sha256WithRSAEncryption
6a:1a:21:cc:14:58:33:dc:c4:f2:af:c6:d2:f5:b2:e1:22:86:
a7:4d:8a:b5:1d:1b:25:c5:8c:15:98:38:3e:ca:02:52:23:a6:
f6:52:69:8f:ca:7f:e4:35:cf:db:64:97:99:68:33:1a:69:13:
f5:6a:5e:36:d1:1b:58:63:eb:86:95:03:3e:44:ff:49:5f:c7:
57:79:ca:cc:8b:22:1a:d2:99:90:2c:75:a2:99:8a:2b:2c:5d:
f8:15:ab:cb:c2:d9:fe:66:98:01:40:45:eb:fe:c3:06:a9:d3:
10:36:41:cc:b0:36:33:42:f0:3c:4d:a9:79:c1:41:fc:29:83:
91:59:ad:2f:b1:ab:8e:27:ce:3a:fe:92:9e:1c:60:56:ef:b0:
1d:80:30:9e:92:b3:29:12:31:17:e1:0b:2f:e0:c3:a1:f9:86:
54:ae:12:3f:e8:60:f9:0d:59:4a:79:05:6a:98:09:27:c5:d4:
b0:fc:f0:2c:93:70:cc:d7:e5:7a:fb:00:8c:ab:30:9a:84:0a:
5b:49:8d:38:d3:e5:0a:aa:45:e0:9d:76:1c:5f:6f:28:db:0a:
c9:c4:90:1e:30:ef:e2:49:10:55:fe:d6:b7:96:d0:83:f3:2a:
07:9d:a4:dc:6c:29:84:03:ed:a2:11:9c:02:47:59:5d:f3:b8:
30:54:78:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:10:39 2025 by rpki-client