Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/b2f5f9-d34a-47a3-bb54-0871fdb6a4fa/1/Vz0B3WFV-hFBu07KkGkd-zqTmV4.roa
File: Vz0B3WFV-hFBu07KkGkd-zqTmV4.roa (raw, json)
Hash identifier: 1nT1Dr00ccYmULcm/kNUBJaPCaIs6h5ed762TEmj9Lo=
Subject key identifier: 57:3D:01:DD:61:55:FA:11:41:BB:4E:CA:90:69:1D:FB:3A:93:99:5E
Certificate issuer: /CN=1d61cb4bbee5cdd7eceda7560aa249c6d11f23a9
Certificate serial: 01856D78A24F3357141AD1ACDD792E04630B
Authority key identifier: 1D:61:CB:4B:BE:E5:CD:D7:EC:ED:A7:56:0A:A2:49:C6:D1:1F:23:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HWHLS77lzdfs7adWCqJJxtEfI6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/b2f5f9-d34a-47a3-bb54-0871fdb6a4fa/1/Vz0B3WFV-hFBu07KkGkd-zqTmV4.roa
Signing time: Sun 01 Jan 2023 13:15:00 +0000
ROA not before: Sun 01 Jan 2023 13:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198142
IP address blocks: 193.150.27.0/24 maxlen: 24
193.150.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:a2:4f:33:57:14:1a:d1:ac:dd:79:2e:04:63:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d61cb4bbee5cdd7eceda7560aa249c6d11f23a9
Validity
Not Before: Jan 1 13:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=573d01dd6155fa1141bb4eca90691dfb3a93995e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c7:6b:3b:14:f0:65:55:32:40:22:4f:6a:d4:
a7:bf:78:37:ca:4d:37:9a:e6:23:c1:96:41:8e:9f:
8f:47:20:10:67:69:3f:7c:69:fc:eb:d0:b2:fd:d7:
71:39:00:b1:fe:5e:c2:cd:88:12:c8:af:94:07:38:
6e:ab:1f:40:a1:88:61:40:c9:9d:ad:23:2e:ba:c0:
35:e2:60:e4:37:87:ad:c3:cb:7d:83:7d:69:f0:8c:
95:b0:1c:75:21:de:79:7e:8a:bc:87:ee:92:0d:1b:
b5:0a:70:4c:4b:29:c6:bf:b7:1f:e1:9b:9d:c4:41:
55:aa:1a:c8:51:37:3f:cb:64:b0:28:c6:e6:5e:e6:
42:7f:b0:87:19:63:d4:6e:69:5d:18:f0:72:fb:04:
d4:f2:7f:25:3e:78:6b:89:1b:ad:84:59:85:c7:15:
cb:aa:dd:e9:6b:99:84:e7:78:69:c0:90:6e:3e:ff:
cb:62:94:b7:24:f9:43:da:84:e2:9e:8f:c4:e4:d6:
22:48:71:73:8d:30:ef:00:18:d1:11:18:4a:39:22:
7a:a0:88:aa:11:d2:0b:48:0e:6e:c8:8d:63:08:bb:
f8:1d:6b:3e:f0:24:5a:2f:2a:d5:e7:81:af:ec:66:
a4:41:15:80:42:12:98:6e:70:10:89:95:f9:e1:53:
3c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:3D:01:DD:61:55:FA:11:41:BB:4E:CA:90:69:1D:FB:3A:93:99:5E
X509v3 Authority Key Identifier:
keyid:1D:61:CB:4B:BE:E5:CD:D7:EC:ED:A7:56:0A:A2:49:C6:D1:1F:23:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HWHLS77lzdfs7adWCqJJxtEfI6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/b2f5f9-d34a-47a3-bb54-0871fdb6a4fa/1/Vz0B3WFV-hFBu07KkGkd-zqTmV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/b2f5f9-d34a-47a3-bb54-0871fdb6a4fa/1/HWHLS77lzdfs7adWCqJJxtEfI6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.26.0/23
Signature Algorithm: sha256WithRSAEncryption
96:44:9f:39:90:03:4c:ae:df:d5:80:74:27:6c:6b:99:34:72:
e8:00:d3:f0:e5:74:83:e5:87:7d:ba:e7:d0:1c:7c:25:f1:4d:
05:2c:e3:25:67:b8:6f:f5:60:3b:d0:2a:c4:2c:65:c1:e1:e1:
33:bd:15:fa:3d:68:37:ae:f6:77:df:c9:92:43:ee:86:a2:59:
90:63:fb:9b:56:d7:32:7a:5d:67:b7:d5:ef:f7:2c:2c:68:d3:
04:56:60:f1:64:7e:16:48:13:0c:5a:2f:75:2b:b5:cd:42:3f:
f5:2f:f3:b9:06:7a:92:d4:e1:00:64:70:8f:1c:69:65:dc:66:
61:6a:81:43:c7:11:72:32:b3:09:66:7d:da:4f:3a:68:4e:6e:
26:90:22:e7:2e:3a:82:3f:9e:df:71:85:f3:84:d8:37:e4:5f:
81:96:52:ab:c3:a0:85:41:7f:02:b8:d9:ad:57:c9:19:1a:d7:
e5:e4:73:6b:d8:d0:e1:e0:1a:7a:24:e9:d8:84:a6:7b:0a:cb:
65:6b:db:e3:ba:c7:63:60:70:94:0d:d3:ce:49:80:ef:df:47:
f9:27:f3:5a:b7:ad:68:3b:f1:fc:d5:07:f6:cb:e4:18:32:42:
c2:06:61:93:ce:05:b4:50:ea:1a:6b:b4:22:6e:d8:dc:db:d4:
2f:ac:9f:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:24:45 2025 by rpki-client