Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/VI0ur2A9zJrCwUj0yNEgXS7tU18.roa
File: VI0ur2A9zJrCwUj0yNEgXS7tU18.roa (raw, json)
Hash identifier: sG6CnMTv2ghaL6PIOXob42kG3Fe5HMA9JUnYf+8PTHc=
Subject key identifier: 54:8D:2E:AF:60:3D:CC:9A:C2:C1:48:F4:C8:D1:20:5D:2E:ED:53:5F
Certificate issuer: /CN=301a648725ee26a460cb9b1cbcd9c9c832c449af
Certificate serial: 01885C1BC9BC0CFA34F5CFD81922F2CC756F
Authority key identifier: 30:1A:64:87:25:EE:26:A4:60:CB:9B:1C:BC:D9:C9:C8:32:C4:49:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MBpkhyXuJqRgy5scvNnJyDLESa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/VI0ur2A9zJrCwUj0yNEgXS7tU18.roa
Signing time: Sat 27 May 2023 07:28:24 +0000
ROA not before: Sat 27 May 2023 07:28:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57395
IP address blocks: 176.98.165.0/24 maxlen: 24
176.98.166.0/24 maxlen: 24
176.98.160.0/24 maxlen: 24
176.98.161.0/24 maxlen: 24
176.98.162.0/24 maxlen: 24
176.98.163.0/24 maxlen: 24
176.98.164.0/24 maxlen: 24
176.98.167.0/24 maxlen: 24
5.183.48.0/22 maxlen: 22
185.254.0.0/24 maxlen: 24
185.254.1.0/24 maxlen: 24
185.181.170.0/24 maxlen: 24
185.181.171.0/24 maxlen: 24
185.181.168.0/24 maxlen: 24
193.150.64.0/24 maxlen: 24
2a0b:33c0:114::/48 maxlen: 48
2a0e:d200::/29 maxlen: 29
2a0b:33c0:118::/48 maxlen: 48
2a0b:33c0:113::/48 maxlen: 48
2a0b:33c0:51::/48 maxlen: 48
2a0b:33c0:107::/48 maxlen: 48
2a0b:33c0:2::/48 maxlen: 48
2a0b:33c0:10::/48 maxlen: 48
2a0b:33c0:50::/48 maxlen: 48
2a0b:33c0:6::/48 maxlen: 48
2a0b:33c0:3::/48 maxlen: 48
2a0b:33c0:1::/48 maxlen: 48
2a0b:33c0:117::/48 maxlen: 48
2a0b:33c0:112::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:5c:1b:c9:bc:0c:fa:34:f5:cf:d8:19:22:f2:cc:75:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=301a648725ee26a460cb9b1cbcd9c9c832c449af
Validity
Not Before: May 27 07:28:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=548d2eaf603dcc9ac2c148f4c8d1205d2eed535f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:51:f9:5c:7e:6e:83:e5:02:d6:34:fc:ac:52:
ae:43:76:1b:23:2b:69:12:e7:1b:d4:9f:02:66:cd:
e6:72:72:03:68:46:78:4d:6c:c4:f0:42:b0:bd:27:
15:5c:e4:3d:d9:b8:06:89:50:05:b4:1a:21:6c:08:
60:16:45:15:64:a4:fc:a8:1a:2e:20:c1:8b:de:df:
ea:b6:0e:93:13:07:33:cc:7e:69:48:d0:be:7a:e7:
78:38:c1:b0:1f:44:52:1e:71:af:77:db:51:d8:e7:
00:07:21:a9:1d:e7:c7:14:ad:0a:83:d6:12:39:e3:
8e:06:a2:95:2a:ff:1d:bb:c9:c7:34:cf:e8:f2:36:
71:bc:84:73:e7:56:20:13:9c:2b:15:19:76:af:74:
56:0c:80:32:80:b1:00:da:88:d2:b5:9e:98:c9:2e:
5a:5d:20:a6:7a:d6:ee:40:b5:55:f1:f8:6d:61:73:
e2:33:df:a9:e9:25:48:d8:d6:27:c7:67:cc:d4:b2:
d9:62:82:6b:ab:43:fc:2d:57:7a:6b:03:9e:1f:79:
96:3d:70:ce:80:55:43:99:76:0c:fd:ba:12:e5:a0:
53:77:10:ee:43:35:f8:75:a9:50:06:0d:ed:01:0d:
76:b8:52:00:7f:9b:26:ae:b0:69:32:04:89:c4:ab:
0b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:8D:2E:AF:60:3D:CC:9A:C2:C1:48:F4:C8:D1:20:5D:2E:ED:53:5F
X509v3 Authority Key Identifier:
keyid:30:1A:64:87:25:EE:26:A4:60:CB:9B:1C:BC:D9:C9:C8:32:C4:49:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MBpkhyXuJqRgy5scvNnJyDLESa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/VI0ur2A9zJrCwUj0yNEgXS7tU18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/024f0f-20c5-4828-b332-a5b2d09e05cf/1/MBpkhyXuJqRgy5scvNnJyDLESa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.48.0/22
176.98.160.0/21
185.181.168.0/24
185.181.170.0/23
185.254.0.0/23
193.150.64.0/24
IPv6:
2a0b:33c0:1::-2a0b:33c0:3:ffff:ffff:ffff:ffff:ffff
2a0b:33c0:6::/48
2a0b:33c0:10::/48
2a0b:33c0:50::/47
2a0b:33c0:107::/48
2a0b:33c0:112::-2a0b:33c0:114:ffff:ffff:ffff:ffff:ffff
2a0b:33c0:117::-2a0b:33c0:118:ffff:ffff:ffff:ffff:ffff
2a0e:d200::/29
Signature Algorithm: sha256WithRSAEncryption
7c:e4:e0:a9:dc:05:70:d8:b2:ce:9f:34:65:3f:dd:de:6b:ee:
b8:77:4f:f0:cf:bc:02:67:2a:27:db:da:43:2c:a9:24:bd:d8:
e4:7f:38:b1:3c:1a:09:ae:c4:25:1c:2d:bd:4b:5d:9c:7e:e2:
ff:8c:10:ea:d8:5d:e8:4b:41:b9:25:ca:c3:bd:fa:8a:bf:8c:
0e:05:ee:26:7f:c6:2f:07:81:7f:db:31:5d:19:56:51:c7:d9:
19:aa:e2:79:9a:2f:d4:f1:85:fc:29:f0:59:c8:e3:3d:d8:ab:
55:4c:d8:f7:d6:ca:f9:aa:a0:89:e0:c1:79:38:e2:0e:f1:34:
03:55:2d:85:41:9c:d0:97:e5:a8:6c:5f:19:20:b2:57:59:e2:
09:91:21:9b:93:88:05:10:7e:86:c2:f6:c9:08:ef:ef:f7:82:
16:25:ec:09:bc:6f:1b:44:2a:6e:8b:5c:22:72:58:65:65:c9:
fc:41:c4:cd:54:f2:c4:ed:6b:20:0f:b5:e0:ab:e3:23:09:0f:
f5:6a:c5:20:14:a1:ec:f9:94:02:ef:4a:60:28:78:61:34:35:
65:82:97:22:f6:b2:8e:11:53:b5:c6:cd:c5:57:55:13:8a:3b:
96:2f:e3:0b:de:a4:96:06:02:ad:22:01:3f:d9:38:92:ae:56:
fc:83:0d:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:32 2025 by rpki-client