Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/vbxsj2GSIFlZlvNJsg0Ij6EDlEw.roa
File: vbxsj2GSIFlZlvNJsg0Ij6EDlEw.roa (raw, json)
Hash identifier: GmjsKihNkJaqoUrMwxj8yXib8DWqgBkT5mNRggSVTXc=
Subject key identifier: BD:BC:6C:8F:61:92:20:59:59:96:F3:49:B2:0D:08:8F:A1:03:94:4C
Certificate issuer: /CN=821f1285d775a9f589243eac844adc5ab89d97c9
Certificate serial: 0188EE1E7FCA8188FB624B2884E625FB9E4F
Authority key identifier: 82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/vbxsj2GSIFlZlvNJsg0Ij6EDlEw.roa
Signing time: Sat 24 Jun 2023 15:55:56 +0000
ROA not before: Sat 24 Jun 2023 15:55:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202062
IP address blocks: 193.31.16.0/23 maxlen: 23
193.31.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ee:1e:7f:ca:81:88:fb:62:4b:28:84:e6:25:fb:9e:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821f1285d775a9f589243eac844adc5ab89d97c9
Validity
Not Before: Jun 24 15:55:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdbc6c8f619220595996f349b20d088fa103944c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:15:1c:6e:6e:2d:c7:9f:1b:57:b0:8a:bc:0c:
d2:fc:d6:47:99:60:9b:7a:dc:6d:2c:34:40:f6:07:
9b:88:6f:dc:c5:8b:c7:56:4d:c8:96:91:13:2d:7e:
89:b2:b3:12:14:39:50:f1:9f:8b:5e:a5:0c:2d:13:
e9:37:1c:9c:95:fc:34:68:81:99:32:44:ec:74:1c:
be:86:38:00:db:bc:e5:33:c0:11:e3:ce:4d:bf:7d:
41:b5:83:9d:e5:fb:7a:eb:a6:50:1f:af:86:69:a1:
42:95:07:88:b0:5c:6c:d8:74:e1:90:30:1b:b0:b7:
c1:e6:06:e2:ed:4e:45:09:05:94:ac:97:e1:af:7a:
c1:ea:84:33:c8:09:ab:36:54:e0:0d:fb:2f:ae:a3:
b5:e5:b0:0e:f1:ed:cd:71:22:cf:6a:8e:92:89:26:
bf:bb:c9:66:31:fc:da:bb:7f:08:81:fa:fb:f6:6c:
58:55:36:ec:b7:28:3e:d0:aa:d8:9e:4b:c2:0d:61:
f3:24:78:b7:ab:81:47:f9:e8:ed:0e:dd:aa:d8:f1:
cf:5d:96:76:50:63:2b:87:83:4e:f0:bd:be:e9:42:
f4:bc:2c:aa:9e:64:8e:41:69:d0:e2:f3:86:49:2d:
b7:fb:92:20:c6:f3:9c:cb:20:15:aa:ca:59:a5:e5:
be:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:BC:6C:8F:61:92:20:59:59:96:F3:49:B2:0D:08:8F:A1:03:94:4C
X509v3 Authority Key Identifier:
keyid:82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/vbxsj2GSIFlZlvNJsg0Ij6EDlEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.16.0/23
193.31.254.0/23
Signature Algorithm: sha256WithRSAEncryption
bf:65:9f:02:32:02:25:06:15:a0:38:1e:4e:c0:62:02:fb:da:
1b:66:25:48:cd:4e:ae:91:ee:9b:6b:40:2b:f6:df:3a:fa:76:
ad:62:e2:cf:a2:5b:ad:e3:2b:1f:c7:a1:a9:b2:08:0a:1a:35:
e7:24:f9:74:7d:16:5f:a1:4b:1c:95:eb:10:da:5a:80:07:74:
ea:c4:bf:1c:79:85:51:ab:37:61:4e:1e:e8:75:04:bb:1e:62:
d2:84:a9:60:fa:45:f6:48:2c:93:42:2d:d9:c1:64:0e:9f:60:
c6:db:bf:14:00:54:b0:3f:57:f0:a4:b2:e2:e1:dd:4b:6e:55:
73:6f:c2:dc:1a:94:e3:38:ee:2c:99:db:46:c1:d1:29:9c:70:
22:64:4f:f6:21:1f:66:2e:e6:71:22:7c:3e:44:52:66:12:a1:
68:e0:db:88:4c:5c:d8:cb:1d:ac:4a:21:0f:57:e5:ba:7d:69:
2a:05:43:9c:ba:57:4e:7d:f3:63:c4:87:6e:09:96:78:f5:45:
67:66:df:dc:18:58:a6:10:41:fa:49:bb:f3:2a:24:a0:87:e8:
b6:e4:85:70:4e:28:f3:36:18:b4:50:77:19:d1:05:a2:c4:6a:
08:28:00:89:ac:1d:ca:27:ab:9d:a2:f5:e8:c7:44:f4:eb:11:
3e:21:64:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:11:56 2025 by rpki-client