Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/VtiLFv_e_BF3FehKM_X41_Q3H1M.roa
File: VtiLFv_e_BF3FehKM_X41_Q3H1M.roa (raw, json)
Hash identifier: 6EzERATO7c/pcNJx0Crf3WM4SO/W1dPDXZ9JjvoCARE=
Subject key identifier: 56:D8:8B:16:FF:DE:FC:11:77:15:E8:4A:33:F5:F8:D7:F4:37:1F:53
Certificate issuer: /CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f
Certificate serial: 018AB7644857A7A7E3555AF6B275F0EC80D5
Authority key identifier: 62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/VtiLFv_e_BF3FehKM_X41_Q3H1M.roa
Signing time: Thu 21 Sep 2023 10:58:37 +0000
ROA not before: Thu 21 Sep 2023 10:58:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43519
IP address blocks: 213.248.254.0/24 maxlen: 24
2a01:618:402::/48 maxlen: 48
2a01:618:400::/48 maxlen: 48
2a01:618:403::/48 maxlen: 48
2a01:618:401::/48 maxlen: 48
2a01:618:404::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b7:64:48:57:a7:a7:e3:55:5a:f6:b2:75:f0:ec:80:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f
Validity
Not Before: Sep 21 10:58:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56d88b16ffdefc117715e84a33f5f8d7f4371f53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:bd:e9:82:27:56:ed:f2:e7:54:7b:d2:bc:90:
97:b4:d8:b1:e4:a5:f8:49:e1:e2:03:0a:24:dc:e4:
f6:cd:a8:3e:92:e3:02:49:94:2c:45:d2:c4:62:62:
2c:b7:79:55:a0:4c:cb:5c:ab:97:0d:f9:1a:1c:90:
5b:dc:64:a2:05:88:c9:36:e9:1f:a9:a7:25:30:12:
43:63:b0:0d:5f:fe:e4:e3:8f:f3:97:15:d7:36:b6:
e5:f1:39:98:a4:91:c7:22:ea:5f:49:04:87:a8:45:
5e:f3:a1:3a:42:b0:81:4a:ef:a3:8c:80:2a:7b:20:
e9:16:f7:eb:21:bb:cb:4e:1b:6e:c7:86:63:28:2a:
c4:d4:a1:4e:d5:a1:32:cd:2c:7e:5c:58:cd:e7:ee:
5a:85:11:db:b0:da:75:ab:3e:b0:0d:fb:9e:5b:93:
7e:37:b7:bd:50:e5:97:7b:73:25:49:40:f6:61:49:
70:25:dc:dc:19:de:f0:8f:2b:33:54:22:78:a9:43:
f6:30:0d:d4:8d:36:3a:a5:7b:de:b0:c5:54:44:1a:
b5:f3:14:0c:e7:fc:03:34:62:28:ce:7f:e4:1c:33:
3e:44:ba:5a:4b:7b:10:16:93:cc:ce:6e:3c:02:27:
6d:4c:ad:ab:ec:13:90:f5:10:e9:c0:65:0c:65:12:
67:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D8:8B:16:FF:DE:FC:11:77:15:E8:4A:33:F5:F8:D7:F4:37:1F:53
X509v3 Authority Key Identifier:
keyid:62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/VtiLFv_e_BF3FehKM_X41_Q3H1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.248.254.0/24
IPv6:
2a01:618:400::-2a01:618:404:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
01:75:67:dc:8b:68:1c:24:bd:e3:74:68:26:8f:dc:5f:43:03:
98:a4:dd:e9:be:7e:21:9e:45:29:3d:5f:22:df:cb:fd:32:97:
18:86:09:1c:5f:be:f7:62:57:c7:f3:93:23:fe:01:ff:1e:c4:
06:6e:6e:6f:be:b6:d3:87:64:78:34:ba:cb:b4:34:06:37:da:
d8:a7:29:84:ad:0f:dc:b1:37:6e:69:ac:95:ed:be:fb:05:e5:
34:f7:10:ae:f9:ca:88:28:1f:2d:8e:9b:3c:bb:71:f0:a0:16:
b2:8d:21:c5:fa:18:ed:97:6e:f1:41:73:9e:3a:24:94:03:43:
66:f2:e5:56:47:02:d2:71:f0:ff:a7:75:58:b8:24:1c:d9:58:
33:93:79:ff:7f:3e:e6:e2:f9:53:ce:3c:d4:dd:b2:f4:dc:5c:
f3:40:77:e1:35:f0:6e:67:b7:c3:b5:78:f0:33:f6:6f:f1:ae:
71:59:c4:8a:c4:90:f5:7d:aa:b9:63:16:e2:14:d1:0c:f6:3b:
34:4c:0b:9c:45:8e:00:ed:78:08:ee:82:99:ff:51:d2:cd:9a:
57:4e:c5:b6:bc:49:c1:ef:44:93:fa:6f:dd:25:99:34:ba:9a:
0d:a0:1b:bc:68:75:63:55:6f:11:16:36:c0:ba:85:7f:f2:c6:
3b:7e:ac:fd
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAYq3ZEhXp6fjVVr2snXw7IDVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMmVjYzZjYzU5MDNhZWEwZGI2MTIwMGY0Y2NkNGY4MjRj
ZGQ1NGYwHhcNMjMwOTIxMTA1ODM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NmQ4OGIxNmZmZGVmYzExNzcxNWU4NGEzM2Y1ZjhkN2Y0MzcxZjUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8r3pgidW7fLnVHvSvJCXtNix5KX4
SeHiAwok3OT2zag+kuMCSZQsRdLEYmIst3lVoEzLXKuXDfkaHJBb3GSiBYjJNukf
qaclMBJDY7ANX/7k44/zlxXXNrbl8TmYpJHHIupfSQSHqEVe86E6QrCBSu+jjIAq
eyDpFvfrIbvLThtux4ZjKCrE1KFO1aEyzSx+XFjN5+5ahRHbsNp1qz6wDfueW5N+
N7e9UOWXe3MlSUD2YUlwJdzcGd7wjyszVCJ4qUP2MA3UjTY6pXvesMVURBq18xQM
5/wDNGIozn/kHDM+RLpaS3sQFpPMzm48AidtTK2r7BOQ9RDpwGUMZRJnkwIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFFbYixb/3vwRdxXoSjP1+Nf0Nx9TMB8GA1UdIwQY
MBaAFGIuzGzFkDrqDbYSAPTM1PgkzdVPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWk3TWJNV1FPdW9OdGhJQTlNelUtQ1ROMVU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8yNjJhNGItYzcwMS00OGRjLTlhZTUt
MzQ2MzY4ODI3ZTY4LzEvVnRpTEZ2X2VfQkYzRmVoS01fWDQxX1EzSDFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy8yNjJhNGItYzcwMS00OGRjLTlhZTUtMzQ2MzY4ODI3ZTY4
LzEvWWk3TWJNV1FPdW9OdGhJQTlNelUtQ1ROMVU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAMBAIAATAGAwQA1fj+MBkE
AgACMBMwEQMGAioBBhgEAwcAKgEGGAQEMA0GCSqGSIb3DQEBCwUAA4IBAQABdWfc
i2gcJL3jdGgmj9xfQwOYpN3pvn4hnkUpPV8i38v9MpcYhgkcX773YlfH85Mj/gH/
HsQGbm5vvrbTh2R4NLrLtDQGN9rYpymErQ/csTduaayV7b77BeU09xCu+cqIKB8t
jps8u3HwoBayjSHF+hjtl27xQXOeOiSUA0Nm8uVWRwLScfD/p3VYuCQc2Vgzk3n/
fz7m4vlTzjzU3bL03FzzQHfhNfBuZ7fDtXjwM/Zv8a5xWcSKxJD1faq5YxbiFNEM
9js0TAucRY4A7XgI7oKZ/1HSzZpXTsW2vEnB70ST+m/dJZk0upoNoBu8aHVjVW8R
FjbAuoV/8sY7fqz9
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:06 2025 by rpki-client