Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/2ea594-a2ca-4ffa-89ee-8921b0559e90/1/VJPYevyatquasThyMD5CGednHNU.roa
File: VJPYevyatquasThyMD5CGednHNU.roa (raw, json)
Hash identifier: f6/p2J3TrvmxC+hYs/48Hpv2C0/O1zvgbuZkdp2lCxc=
Subject key identifier: 54:93:D8:7A:FC:9A:B6:AB:9A:B1:38:72:30:3E:42:19:E7:67:1C:D5
Certificate issuer: /CN=744dd3afd7cce7ce00a9eac67e0bca99beb729aa
Certificate serial: 01856D0ADCBC4A7F3F958DC3735199AFE8FC
Authority key identifier: 74:4D:D3:AF:D7:CC:E7:CE:00:A9:EA:C6:7E:0B:CA:99:BE:B7:29:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dE3Tr9fM584AqerGfgvKmb63Kao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/2ea594-a2ca-4ffa-89ee-8921b0559e90/1/VJPYevyatquasThyMD5CGednHNU.roa
Signing time: Sun 01 Jan 2023 11:15:06 +0000
ROA not before: Sun 01 Jan 2023 11:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197922
IP address blocks: 45.81.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:dc:bc:4a:7f:3f:95:8d:c3:73:51:99:af:e8:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=744dd3afd7cce7ce00a9eac67e0bca99beb729aa
Validity
Not Before: Jan 1 11:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5493d87afc9ab6ab9ab13872303e4219e7671cd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:eb:c6:2c:8f:d2:28:01:c3:d1:67:f3:cd:d8:
8e:72:e4:e2:6a:05:f6:55:c5:c9:8e:b4:52:8d:22:
05:75:38:87:d4:7a:4d:fc:29:bf:fd:3b:48:a5:7f:
53:cd:76:d1:43:9d:8c:f2:7d:30:52:10:41:06:0c:
b5:8c:b7:d7:d0:45:90:a5:71:dd:6f:a7:ea:21:3c:
86:10:b5:fb:d2:87:7f:ce:f1:3b:9b:04:04:e4:04:
86:4c:8b:23:88:73:eb:0c:db:ee:24:25:9c:86:ce:
31:cc:75:2d:1b:a5:22:9c:2e:98:48:ad:ae:2c:a3:
60:5a:8d:78:e3:d2:34:68:b4:ac:34:6b:3e:12:56:
f4:cf:85:64:37:bb:9b:ed:0c:f3:67:55:5b:e8:d2:
be:a3:95:5e:62:c3:71:eb:e3:d5:e7:af:e7:88:b6:
7a:a6:28:39:f4:ef:e1:97:d6:2f:a2:f8:98:e6:27:
7f:34:51:9c:3b:02:50:ba:e8:d9:c4:b8:2b:a5:9a:
3f:50:41:6d:4b:55:ed:c9:9f:54:e3:09:a1:69:86:
1d:1d:d1:3f:af:60:06:17:79:a4:8a:b6:01:b3:da:
5b:6e:61:be:2f:96:ed:d8:6c:d0:65:ef:3d:30:e0:
99:c7:df:3c:c4:fc:e2:b5:02:7f:e3:a2:f3:61:4d:
3e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:93:D8:7A:FC:9A:B6:AB:9A:B1:38:72:30:3E:42:19:E7:67:1C:D5
X509v3 Authority Key Identifier:
keyid:74:4D:D3:AF:D7:CC:E7:CE:00:A9:EA:C6:7E:0B:CA:99:BE:B7:29:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dE3Tr9fM584AqerGfgvKmb63Kao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/2ea594-a2ca-4ffa-89ee-8921b0559e90/1/VJPYevyatquasThyMD5CGednHNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/2ea594-a2ca-4ffa-89ee-8921b0559e90/1/dE3Tr9fM584AqerGfgvKmb63Kao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.84.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:40:d3:cb:54:ff:9c:a0:4c:0d:13:15:d0:46:51:00:44:db:
2c:64:e5:bc:f7:f4:55:27:f3:c1:16:5d:0e:32:cc:d4:42:d1:
4d:9c:e8:a1:e4:91:c0:96:9c:09:97:b2:f7:b8:33:4e:f6:90:
89:46:62:43:39:58:8b:7d:00:03:3a:d3:75:57:40:d4:21:12:
55:10:55:75:3c:94:49:0a:43:fb:25:a7:ae:66:23:97:2f:69:
11:15:24:da:96:37:e3:1a:62:b8:c6:5e:b2:e2:35:95:ba:be:
91:16:12:a8:85:f5:ee:d7:07:bc:42:f7:3d:f8:29:e3:ad:b9:
83:28:ae:f1:6b:40:98:cc:e0:14:56:f8:17:79:52:59:ad:cf:
46:df:cc:c4:e7:23:db:2a:cc:dc:10:35:1c:33:2f:d9:5c:eb:
85:06:8a:20:d1:1f:ba:c0:cf:ee:bb:82:f8:dd:97:6a:b0:8a:
7c:82:16:c0:fe:2f:a8:56:cc:51:86:8b:57:2d:b5:93:1b:94:
bd:c0:8e:0c:25:0d:18:b5:b9:77:00:2e:33:b5:c2:e7:7f:48:
fa:a7:7f:05:35:6c:cb:22:79:60:25:84:10:f4:20:fd:a6:b2:
76:ac:6e:1a:9c:94:42:d8:9c:45:19:08:01:36:3a:1a:f8:42:
33:87:29:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:32 2025 by rpki-client