Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/VwryjLp7hiX6Pzq0nyvkiGQHul0.roa
File: VwryjLp7hiX6Pzq0nyvkiGQHul0.roa (raw, json)
Hash identifier: ofahzzyWrbHcIDDkCOsVPg/7u4bynAPArj05J5bml64=
Subject key identifier: 57:0A:F2:8C:BA:7B:86:25:FA:3F:3A:B4:9F:2B:E4:88:64:07:BA:5D
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 3508EDED
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/VwryjLp7hiX6Pzq0nyvkiGQHul0.roa
Signing time: Sat 01 Jan 2022 01:53:28 +0000
ROA not before: Sat 01 Jan 2022 01:53:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29256
IP address blocks: 188.247.0.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 889777645 (0x3508eded)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: Jan 1 01:53:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=570af28cba7b8625fa3f3ab49f2be4886407ba5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fe:65:80:ac:46:6a:33:b6:95:e3:d3:5c:1c:
63:c4:38:4f:89:19:36:86:a2:02:2d:74:e8:7f:39:
dd:4d:fc:63:d1:07:65:a0:8b:44:77:c1:c2:26:91:
2d:55:e4:b8:d0:8d:d7:29:97:c1:b0:7a:b9:f3:33:
2a:13:92:71:b5:51:5e:d1:75:b3:dd:c9:e6:8c:5d:
30:00:e3:fe:6b:b0:82:8b:92:c0:63:7e:f0:26:69:
f4:21:e7:10:f6:a3:5c:96:88:a8:cf:e4:e9:56:9c:
01:ad:0c:36:f8:e1:71:9a:8a:4a:40:c6:51:c3:0d:
15:1f:d1:1e:85:b1:24:73:f4:4f:4f:4f:ef:66:57:
cc:3d:1a:0f:ad:54:3c:20:7b:6a:6a:a1:ae:c6:df:
4b:6e:22:da:4f:8c:60:4e:51:76:63:9a:56:e7:76:
67:f8:05:61:24:8c:b7:d1:8e:c2:d5:8b:c3:ed:cd:
1d:b1:d7:90:65:a0:24:48:d4:2c:51:29:14:11:6a:
21:88:50:86:43:6c:88:26:7b:c5:a6:5b:04:ba:6f:
3b:4a:9a:69:c0:a8:80:3a:ba:29:1c:c6:87:09:98:
63:c5:60:81:5a:fd:70:51:42:26:9f:c0:cd:22:ed:
b8:80:0c:f4:0d:d6:d7:1d:29:cd:86:c6:0f:4f:61:
c9:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:0A:F2:8C:BA:7B:86:25:FA:3F:3A:B4:9F:2B:E4:88:64:07:BA:5D
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/VwryjLp7hiX6Pzq0nyvkiGQHul0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.247.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a7:52:00:9f:65:63:0f:5b:9c:c0:7c:b0:c5:32:f2:4d:34:df:
0e:7f:76:77:52:c1:3c:91:3c:d4:e8:26:76:59:5f:92:6b:0d:
f4:d5:c1:03:25:d3:f9:b3:f6:a2:64:01:93:f9:a4:24:56:66:
45:00:5a:07:f3:73:b0:46:f4:14:b9:24:d9:cb:d9:f6:8f:d4:
7a:b4:a2:45:a4:28:27:00:b7:91:1d:b4:0d:b2:85:67:69:02:
cd:fe:ed:45:98:ab:f2:89:91:0c:73:39:09:a7:c1:45:a2:68:
26:49:ea:ef:61:d6:1b:4b:f7:15:ef:4f:e1:f5:a4:be:98:65:
26:7d:51:82:3c:f7:27:fb:9c:5a:72:54:53:b1:77:87:74:de:
94:a7:08:4e:15:94:ef:c7:de:93:cc:45:0a:b2:93:36:48:d7:
b3:20:2a:e3:57:78:2c:ec:ff:34:6c:ce:c6:a2:c3:e4:84:e2:
a2:ca:56:48:63:6b:73:e5:b7:53:4b:e7:12:73:3f:e5:3f:7e:
4a:e2:e3:4c:1d:b2:93:5d:e0:e6:ee:35:6b:f9:8c:4b:e8:46:
a2:e6:dd:e8:ee:7e:94:2b:af:0b:d4:1c:01:a6:7a:39:61:f5:
27:04:ea:4f:17:3e:74:8c:ea:5a:d7:53:00:6d:90:73:44:3d:
ec:f8:b7:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:32 2025 by rpki-client