Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/VNwaHJys88b8i-oagmnPFDEWTMA.roa
File: VNwaHJys88b8i-oagmnPFDEWTMA.roa (raw, json)
Hash identifier: +ipU0EA7N1wYv+mhQb+xk6Y5ckhZF124GbKLS4SCupU=
Subject key identifier: 54:DC:1A:1C:9C:AC:F3:C6:FC:8B:EA:1A:82:69:CF:14:31:16:4C:C0
Certificate issuer: /CN=ae93cc8cca81fa00dc53e7b8078e91b5c11ba2ef
Certificate serial: 01856D419CB6AA326ED576F22511D2B209C7
Authority key identifier: AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/VNwaHJys88b8i-oagmnPFDEWTMA.roa
Signing time: Sun 01 Jan 2023 12:14:54 +0000
ROA not before: Sun 01 Jan 2023 12:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212426
IP address blocks: 80.249.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:9c:b6:aa:32:6e:d5:76:f2:25:11:d2:b2:09:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae93cc8cca81fa00dc53e7b8078e91b5c11ba2ef
Validity
Not Before: Jan 1 12:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54dc1a1c9cacf3c6fc8bea1a8269cf1431164cc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:06:e0:34:b7:b0:12:78:12:a3:93:43:6d:7e:
f3:e7:77:76:a6:e1:e6:ac:66:82:5d:a5:9e:2a:5a:
c7:6d:27:5c:cb:41:0e:d8:4e:cc:1c:07:54:bc:4c:
b8:8e:e6:e0:8a:7a:d1:31:c0:be:2f:fc:68:13:13:
9b:3e:88:7d:51:df:e2:c5:2d:be:6d:a1:6a:a9:83:
2c:d9:5d:49:a0:9e:4d:60:72:88:ae:e3:b9:06:81:
e3:ef:c6:a5:f0:16:fe:1c:96:ae:77:b7:e0:2c:86:
8e:ea:fc:6e:3b:2b:19:49:98:72:f0:64:67:ad:67:
1f:d9:e6:77:c5:56:13:2f:f9:e7:0d:8f:47:d8:4d:
71:9c:21:3b:74:05:7e:21:f5:61:31:ad:45:62:ab:
0f:af:dc:d6:4e:7b:ee:d1:4b:61:40:23:c9:d5:c1:
1c:03:18:f2:23:39:81:0e:1b:d1:b7:77:b5:11:7d:
6d:fe:9b:20:00:a0:5b:8a:71:49:34:2c:1b:f8:e0:
56:c4:22:58:f4:c1:ea:8f:9e:bf:65:fe:cb:27:cd:
94:93:fb:2f:42:9d:51:8d:e7:3b:92:d3:43:f5:80:
e4:a3:7a:1c:73:33:a7:27:37:32:cd:b5:5c:e1:74:
05:f0:f7:32:c3:87:21:6f:1f:5d:5e:98:ff:dc:4c:
89:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:DC:1A:1C:9C:AC:F3:C6:FC:8B:EA:1A:82:69:CF:14:31:16:4C:C0
X509v3 Authority Key Identifier:
keyid:AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/VNwaHJys88b8i-oagmnPFDEWTMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.249.128.0/24
Signature Algorithm: sha256WithRSAEncryption
52:2e:74:1a:7d:60:60:42:09:96:7c:fd:ca:bd:fa:3b:9c:ff:
be:8c:07:c3:f9:db:ff:f4:4d:32:fd:af:6c:ac:90:f0:00:58:
f3:9e:eb:79:a0:10:b4:9f:0d:9f:69:0f:68:0a:0f:5b:f2:68:
3d:6c:0e:85:93:e7:ec:9e:ae:71:f5:ac:6c:f0:8c:53:df:41:
b7:89:c5:20:14:77:ca:98:dd:b9:1e:7b:e7:68:9d:b5:63:30:
ee:47:db:fb:a7:f5:ce:1d:a1:41:8f:95:fb:46:07:46:89:e0:
ad:f8:91:a4:43:92:92:15:95:f8:1c:93:6b:38:a5:7d:4f:8c:
a8:bb:20:e5:93:e0:e0:b0:08:fa:d0:e4:7a:0b:cd:7f:37:ec:
8e:5f:dc:c5:30:da:f8:ce:aa:77:51:f0:04:9a:ee:2c:88:93:
31:54:bb:3b:52:92:0b:0d:eb:ec:22:c5:e7:03:f3:62:c8:91:
4b:0b:c1:84:dc:5b:37:71:16:03:5a:f8:a8:9d:09:c1:18:f7:
4a:28:74:55:1d:89:9c:86:53:a5:c5:ec:b8:90:73:2d:a6:1f:
72:4d:c1:f3:b2:37:9f:30:fa:cb:46:3e:c4:47:f0:8d:ac:b6:
65:96:4c:ff:85:39:2a:44:f5:1c:ad:3e:3f:1c:8f:5d:41:95:
90:7d:2c:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:12 2025 by rpki-client