Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/fcbcc6-739b-4f5c-ae3c-a4f08dbb85a5/1/VkjCgOLOpOMIo4t6bfPNaIQngug.roa
File: VkjCgOLOpOMIo4t6bfPNaIQngug.roa (raw, json)
Hash identifier: z1QeYgKJ43ZZuK623c2IoxduHP++yeIedagXLWWL8yw=
Subject key identifier: 56:48:C2:80:E2:CE:A4:E3:08:A3:8B:7A:6D:F3:CD:68:84:27:82:E8
Certificate issuer: /CN=9b200d0e7ad3cef72238b5164c4b2cdde23a6a1e
Certificate serial: 32C071B8
Authority key identifier: 9B:20:0D:0E:7A:D3:CE:F7:22:38:B5:16:4C:4B:2C:DD:E2:3A:6A:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/myANDnrTzvciOLUWTEss3eI6ah4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/fcbcc6-739b-4f5c-ae3c-a4f08dbb85a5/1/VkjCgOLOpOMIo4t6bfPNaIQngug.roa
Signing time: Sat 01 Jan 2022 11:56:55 +0000
ROA not before: Sat 01 Jan 2022 11:56:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205139
IP address blocks: 89.45.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 851472824 (0x32c071b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b200d0e7ad3cef72238b5164c4b2cdde23a6a1e
Validity
Not Before: Jan 1 11:56:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5648c280e2cea4e308a38b7a6df3cd68842782e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:17:f7:19:7d:bd:35:4d:e0:8a:bf:b1:04:2c:
23:48:99:3e:47:e2:c5:2e:27:a9:2c:38:28:d8:3b:
b4:16:8f:f9:57:d5:c4:84:03:c7:f8:a5:03:7f:58:
30:0f:49:2a:87:2e:94:1b:f4:76:bc:25:a3:44:f1:
07:19:4c:2d:db:f3:54:53:70:eb:9d:4b:33:c3:86:
8b:f7:ba:3a:0b:51:e9:01:ca:b2:2d:7a:c2:31:c3:
81:5c:37:6a:8a:2a:56:64:09:cf:2a:c4:ec:b7:01:
5d:25:9a:e6:c2:f8:48:53:70:76:e9:74:49:d7:f9:
85:cb:5b:59:2a:c1:49:03:9a:d6:22:38:c6:d3:85:
d3:f9:5d:ef:45:13:2d:06:02:72:3f:e7:fe:db:8a:
44:d9:3c:78:09:23:90:bc:1b:bc:90:54:29:a9:6b:
72:98:c0:f1:b2:79:57:09:ad:6f:6f:e0:0b:8e:4a:
f2:9d:97:89:cc:79:01:44:f8:c1:25:e4:48:af:6f:
66:ef:c1:28:e2:3b:22:c6:e7:2f:41:39:e9:3c:72:
af:73:01:2f:03:9c:5e:1c:1e:80:40:54:d6:ef:ac:
ea:f8:15:ea:63:65:a9:eb:c1:94:52:ad:29:f3:c9:
db:96:6b:4c:e4:8c:dc:9b:42:9f:fc:d1:71:62:dd:
e5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:48:C2:80:E2:CE:A4:E3:08:A3:8B:7A:6D:F3:CD:68:84:27:82:E8
X509v3 Authority Key Identifier:
keyid:9B:20:0D:0E:7A:D3:CE:F7:22:38:B5:16:4C:4B:2C:DD:E2:3A:6A:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/myANDnrTzvciOLUWTEss3eI6ah4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/fcbcc6-739b-4f5c-ae3c-a4f08dbb85a5/1/VkjCgOLOpOMIo4t6bfPNaIQngug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/fcbcc6-739b-4f5c-ae3c-a4f08dbb85a5/1/myANDnrTzvciOLUWTEss3eI6ah4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.45.216.0/22
Signature Algorithm: sha256WithRSAEncryption
67:93:71:a9:56:ae:c4:9e:ac:94:d0:53:ee:06:13:78:67:1b:
06:2a:6f:14:0a:92:47:42:b5:7e:22:35:36:86:cf:31:03:bc:
20:37:fb:d7:ea:4f:08:b8:40:7f:45:f5:f4:98:ce:3e:22:e4:
c6:ad:97:d2:22:e9:f0:6b:48:ca:4f:8b:c7:70:5d:16:f6:18:
5f:70:18:ff:3c:f5:93:83:21:70:ee:a8:9b:ee:bc:a0:4b:7d:
4e:ad:46:28:74:46:77:10:50:93:39:27:02:fd:53:82:57:0b:
9b:02:b6:34:7b:c9:29:66:29:98:c1:18:e4:58:85:42:6a:0b:
ce:c6:e3:4d:9a:16:0d:7b:0f:3d:45:b5:57:89:07:45:2b:6c:
22:2e:8a:4d:8a:15:55:9c:b0:fb:e8:c0:64:d1:54:4b:33:06:
73:b9:be:71:d9:51:c5:3e:bf:85:90:80:b6:84:b7:ed:d2:59:
b8:2c:18:2c:6d:df:76:c8:fe:e5:65:83:8e:9b:bd:24:10:ce:
59:e9:9a:d5:f5:73:6f:05:97:24:a5:f9:92:6c:93:c3:09:fb:
4e:df:81:38:f7:38:bb:ec:08:8c:91:c3:9a:e8:aa:9c:da:6f:
66:de:81:c7:90:36:73:8a:4a:eb:a5:90:93:9e:f1:58:43:1f:
a5:c9:47:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:24 2025 by rpki-client