Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/ac689b-0e36-49fd-8f9c-ded720142744/1/WxD9NXzyIDpAWaEm8tsXyjyyjcY.roa
File: WxD9NXzyIDpAWaEm8tsXyjyyjcY.roa (raw, json)
Hash identifier: K0JyIdVR3nrEU6gnxe5UFgcUm7UyaGgOV0DZZz0Ok4g=
Subject key identifier: 5B:10:FD:35:7C:F2:20:3A:40:59:A1:26:F2:DB:17:CA:3C:B2:8D:C6
Certificate issuer: /CN=826be1fb71af48d6b318510aa8bdf9a815f33db8
Certificate serial: 38064D
Authority key identifier: 82:6B:E1:FB:71:AF:48:D6:B3:18:51:0A:A8:BD:F9:A8:15:F3:3D:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmvh-3GvSNazGFEKqL35qBXzPbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/ac689b-0e36-49fd-8f9c-ded720142744/1/WxD9NXzyIDpAWaEm8tsXyjyyjcY.roa
Signing time: Thu 26 May 2022 00:35:15 +0000
ROA not before: Thu 26 May 2022 00:35:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 192.166.225.0/24 maxlen: 24
192.166.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3671629 (0x38064d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826be1fb71af48d6b318510aa8bdf9a815f33db8
Validity
Not Before: May 26 00:35:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b10fd357cf2203a4059a126f2db17ca3cb28dc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7a:16:06:67:0a:1a:ad:93:67:90:5b:f6:7f:
0c:fe:66:5c:7b:61:44:24:c1:2f:0d:e4:ac:d0:37:
ea:54:c1:ce:e1:12:bc:4e:66:ca:9b:fd:96:01:10:
7d:52:b9:4e:7f:9f:99:01:96:d1:cf:ce:27:9f:9b:
72:8f:14:7d:18:5e:51:eb:2d:53:cd:3c:0c:df:01:
70:9e:61:a2:09:13:53:62:c0:c3:e9:80:cd:49:85:
a5:d7:43:b8:e4:a1:3d:23:ba:77:a6:81:4d:44:15:
f9:a5:a6:e0:49:75:66:46:a3:95:68:c6:b8:a5:b2:
96:7f:8e:dd:a8:94:87:4d:88:3a:06:8e:9d:2f:ac:
da:d0:2e:da:33:63:57:ea:34:49:07:33:13:24:82:
cd:ea:b1:bf:46:70:45:7c:55:59:57:e4:8d:51:3d:
2a:56:79:fa:40:ba:36:f4:e4:c5:43:10:03:80:d4:
cd:91:c9:a8:d2:b0:69:4c:8a:06:46:aa:72:08:aa:
f9:af:22:44:a4:f8:21:be:2d:78:b2:f9:9a:83:01:
04:03:40:a0:15:36:ff:f6:54:c4:48:1f:b8:f8:b6:
19:c4:f3:17:a9:61:9f:3d:63:5e:cd:ad:e5:af:25:
c2:72:4d:96:f4:b7:d5:cf:af:45:c8:4a:b5:4e:ed:
a2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:10:FD:35:7C:F2:20:3A:40:59:A1:26:F2:DB:17:CA:3C:B2:8D:C6
X509v3 Authority Key Identifier:
keyid:82:6B:E1:FB:71:AF:48:D6:B3:18:51:0A:A8:BD:F9:A8:15:F3:3D:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmvh-3GvSNazGFEKqL35qBXzPbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/ac689b-0e36-49fd-8f9c-ded720142744/1/WxD9NXzyIDpAWaEm8tsXyjyyjcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/ac689b-0e36-49fd-8f9c-ded720142744/1/gmvh-3GvSNazGFEKqL35qBXzPbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.166.224.0/23
Signature Algorithm: sha256WithRSAEncryption
41:b8:86:bd:5b:5a:4e:81:f0:f5:0d:01:f0:0f:80:d3:ee:12:
79:db:38:c0:d0:1c:0f:6e:4c:f8:d7:a8:3a:98:d6:45:37:bd:
ee:cf:76:5e:a5:fd:87:fd:5c:95:c3:d1:fa:52:eb:94:e3:40:
34:18:a0:04:46:33:ad:f1:74:14:ef:ef:94:ca:b3:b0:37:5a:
7f:55:cd:26:44:12:9f:38:1e:55:9c:97:e5:15:d2:bb:27:f5:
14:2b:e8:66:cb:fb:cc:3d:40:c8:b7:c2:8f:6b:c0:a9:37:0d:
48:4b:ea:0c:47:bb:6e:1f:4b:43:ee:97:a7:a6:48:48:d5:01:
a1:4b:63:93:34:09:4d:13:98:14:1a:04:32:f8:6a:a0:2b:44:
e0:8f:8e:6f:5f:5d:6e:89:f8:05:51:bc:04:90:4c:57:df:3a:
da:34:1f:85:d8:f5:c3:c1:8b:26:6d:89:23:13:97:26:b1:2a:
b0:e2:51:10:26:74:50:06:95:4e:58:a6:52:fb:82:ca:02:83:
2b:7f:3a:ac:0a:49:b9:99:47:1a:3c:48:90:e6:4f:3b:6b:e3:
1c:78:a7:d1:31:1f:6d:1a:c0:d8:cc:13:1a:a5:7c:4a:0c:4f:
f8:4d:e2:4b:7f:3b:94:1e:a2:84:e8:f2:84:0c:63:cb:55:9e:
18:0e:11:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 07:33:49 2025 by rpki-client