Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/b55522-0b89-400b-92cc-7b3cc228271d/1/vsR_BQjGPo4GPCFXF6Js-rvZ2I0.roa
File: vsR_BQjGPo4GPCFXF6Js-rvZ2I0.roa (raw, json)
Hash identifier: BmdU1/qeCUesS6w4QlR8bKt52urkhFf0aykhWAsZlws=
Subject key identifier: BE:C4:7F:05:08:C6:3E:8E:06:3C:21:57:17:A2:6C:FA:BB:D9:D8:8D
Certificate issuer: /CN=15c4c8a9d2c1d0e0a6f5166e3ea74367863dcebf
Certificate serial: 053A4D94
Authority key identifier: 15:C4:C8:A9:D2:C1:D0:E0:A6:F5:16:6E:3E:A7:43:67:86:3D:CE:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FcTIqdLB0OCm9RZuPqdDZ4Y9zr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/b55522-0b89-400b-92cc-7b3cc228271d/1/vsR_BQjGPo4GPCFXF6Js-rvZ2I0.roa
Signing time: Sat 01 Jan 2022 00:52:59 +0000
ROA not before: Sat 01 Jan 2022 00:52:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8816
IP address blocks: 193.43.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87707028 (0x53a4d94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15c4c8a9d2c1d0e0a6f5166e3ea74367863dcebf
Validity
Not Before: Jan 1 00:52:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bec47f0508c63e8e063c215717a26cfabbd9d88d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:61:a2:ea:ce:5d:16:5b:54:6e:cd:99:75:96:
07:05:dd:90:fb:63:90:1a:c6:08:f0:ce:a2:d9:93:
73:01:c5:a9:03:3e:31:bd:1a:d4:8b:d8:d6:3f:71:
38:49:56:38:19:97:89:4b:ae:e8:e4:d0:59:34:1a:
8b:b9:02:01:1c:fe:29:d0:f8:55:f5:7a:10:ad:be:
0c:14:5d:2a:b1:23:44:6d:a7:b0:a4:f1:aa:32:1c:
23:fa:28:17:8c:ea:7e:5e:68:84:77:e2:87:08:e1:
b3:f6:30:20:4b:04:c5:a3:d3:85:77:bd:10:2e:bf:
ae:ad:0c:40:3c:25:6b:56:e6:37:4f:97:30:f4:b2:
84:c1:2b:cd:b5:7f:4f:ae:8a:9c:c5:26:13:7d:bd:
13:5a:ae:41:67:96:c8:bb:23:a3:78:cd:95:66:54:
d2:9e:a6:51:63:9c:31:40:84:aa:12:30:d9:89:75:
93:91:1b:7b:4a:87:e8:09:e0:4c:f0:af:81:6e:f9:
dc:15:a5:76:32:51:f7:cb:37:30:7e:8e:71:43:bd:
4c:58:39:d2:86:55:66:9e:e5:3a:6d:e6:ee:b1:43:
07:2d:49:f7:55:53:ac:36:e0:9a:2d:52:74:40:45:
8b:9f:ba:11:5f:2f:09:4c:f9:6e:c1:b3:82:9d:8d:
0b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C4:7F:05:08:C6:3E:8E:06:3C:21:57:17:A2:6C:FA:BB:D9:D8:8D
X509v3 Authority Key Identifier:
keyid:15:C4:C8:A9:D2:C1:D0:E0:A6:F5:16:6E:3E:A7:43:67:86:3D:CE:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FcTIqdLB0OCm9RZuPqdDZ4Y9zr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b55522-0b89-400b-92cc-7b3cc228271d/1/vsR_BQjGPo4GPCFXF6Js-rvZ2I0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b55522-0b89-400b-92cc-7b3cc228271d/1/FcTIqdLB0OCm9RZuPqdDZ4Y9zr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.96.0/24
Signature Algorithm: sha256WithRSAEncryption
73:0e:84:ab:ca:23:3e:22:36:89:de:8a:26:f5:03:a0:f0:77:
ba:b1:50:1f:b0:cc:9a:39:c0:5f:52:b3:1e:ba:dc:ad:a9:93:
a7:9f:e9:8c:eb:d4:c5:51:8b:58:77:fa:fb:68:ff:bb:63:14:
db:21:16:67:df:26:70:32:aa:24:0a:01:be:c8:f5:d6:01:1d:
37:b6:d3:e3:bc:06:96:9c:23:85:75:16:1f:81:31:12:0c:73:
7f:b6:59:28:11:e7:50:e8:8b:49:a5:96:6c:0d:ec:8f:44:34:
65:cc:f5:c3:f1:c5:2d:e3:24:cb:5e:0c:52:14:95:14:7c:97:
36:c1:90:df:ad:fe:40:46:bc:d1:b5:0d:1f:f0:9b:a6:21:b5:
cb:59:31:6a:1d:4d:c4:95:bd:32:d4:c1:80:37:21:4e:e4:e0:
b3:37:96:9c:c4:a6:66:0a:8d:c3:87:b6:af:95:69:d0:3a:7e:
ad:66:71:1a:4a:b9:c1:76:a9:f8:1f:1a:df:dc:f1:ba:2c:b6:
4e:e1:a7:49:20:a4:d4:80:51:35:0c:bb:3e:c3:78:e0:98:4c:
46:d8:13:36:96:60:2a:3e:08:57:f4:8b:54:82:60:cd:91:8c:
fc:b8:17:8a:a5:0c:1c:9f:eb:22:fd:98:8d:71:52:0d:d7:6e:
87:61:13:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:09 2025 by rpki-client