Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/Vc2w0hUZsePOuuuk8H9jvKS1o_4.roa
File: Vc2w0hUZsePOuuuk8H9jvKS1o_4.roa (raw, json)
Hash identifier: hYfmHEgTFY8P+frVVVIatRZSbdKH6avF6jaxT6hQD8s=
Subject key identifier: 55:CD:B0:D2:15:19:B1:E3:CE:BA:EB:A4:F0:7F:63:BC:A4:B5:A3:FE
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 0945BA55
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/Vc2w0hUZsePOuuuk8H9jvKS1o_4.roa
Signing time: Sat 01 Jan 2022 12:58:58 +0000
ROA not before: Sat 01 Jan 2022 12:58:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56377
IP address blocks: 2a02:2698:4000::/38 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155564629 (0x945ba55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Jan 1 12:58:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55cdb0d21519b1e3cebaeba4f07f63bca4b5a3fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:96:7f:ec:3b:cf:b0:2b:5a:b3:bc:2b:d3:fa:
99:8d:3f:34:14:33:30:40:55:1d:c4:0e:47:e3:fe:
8e:65:b4:58:05:42:ab:5b:43:93:82:27:61:87:f7:
10:81:7e:c3:10:c8:59:55:f2:84:da:90:2a:d4:f2:
1a:cf:30:10:a6:5e:31:da:bc:d7:f5:12:25:9f:4d:
0f:fb:89:ce:2b:5f:8b:db:46:a7:4c:6c:25:71:7f:
b8:bc:7b:1c:8c:98:13:ff:8b:ca:65:f1:db:1b:26:
02:1e:11:ba:90:a7:76:95:b5:76:12:21:70:81:5b:
af:53:f0:cd:76:bf:e5:21:2b:61:4d:6c:9c:dd:f8:
13:f2:90:b8:41:fe:12:fd:88:2b:47:3f:ee:92:d6:
af:09:8a:1e:79:6a:be:a2:aa:2c:11:28:7c:be:b6:
ea:bc:23:6b:a4:b9:38:eb:8d:af:13:8d:a1:66:89:
63:b4:19:7a:96:bb:c9:6f:26:4e:4d:4e:46:0c:57:
a3:cc:50:93:d4:96:77:6f:8c:01:47:45:c9:94:32:
87:0a:b8:cb:77:98:2c:c2:d8:89:03:0c:01:c9:7d:
ab:89:3a:41:fe:5d:f9:c8:10:09:eb:82:f3:b3:77:
0d:c8:10:90:62:70:ca:c6:19:31:40:25:8f:b6:77:
82:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:CD:B0:D2:15:19:B1:E3:CE:BA:EB:A4:F0:7F:63:BC:A4:B5:A3:FE
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/Vc2w0hUZsePOuuuk8H9jvKS1o_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:2698:4000::/38
Signature Algorithm: sha256WithRSAEncryption
6e:83:90:91:95:0c:d7:52:56:e0:ee:78:79:93:ce:b9:fe:48:
de:76:3d:58:16:e8:50:5d:80:9e:1d:aa:96:a4:e7:dd:7a:fc:
89:94:d1:fa:bb:3f:ab:7e:05:fa:ed:2b:1a:72:de:c3:e4:d3:
e6:c6:33:47:74:f9:95:e8:03:49:5c:76:26:ba:3d:47:0e:7c:
62:6f:0c:cb:3b:8e:34:65:18:d9:9a:9e:3b:2c:c1:d4:b8:e2:
8a:e1:48:90:6a:b4:4f:f6:95:48:50:74:12:06:8c:12:58:f7:
39:3e:c7:89:25:bf:88:fa:63:2f:a3:35:28:b6:08:c4:3e:05:
db:13:88:fe:0b:cf:80:96:0b:d9:bb:9e:d5:ae:54:7b:85:3d:
f3:fe:e5:9b:68:7c:85:91:fb:9e:f7:ac:e8:75:8a:dd:1b:8d:
c6:96:3d:c2:93:3d:f8:2e:01:68:72:44:3d:34:42:01:fe:d0:
da:fd:49:4d:ca:af:f5:45:f6:fa:eb:7c:21:a4:03:bd:21:2a:
34:99:37:ca:ce:7d:91:25:ea:26:95:72:97:0f:7d:3e:cb:7a:
eb:78:63:0a:55:0e:b2:25:41:68:57:67:2e:b5:81:f4:52:6c:
84:92:c0:70:ce:52:d4:9d:c3:f5:1c:10:43:76:03:6e:67:5b:
3b:76:0e:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:46:13 2025 by rpki-client