Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/vx6tpDqYRRWoMncx1ARxXNwUIJ4.roa
File: vx6tpDqYRRWoMncx1ARxXNwUIJ4.roa (raw, json)
Hash identifier: Dn0rBFdCsq0KCFa14nYk1jIwPzga6ZmwMKi3XazfNpk=
Subject key identifier: BF:1E:AD:A4:3A:98:45:15:A8:32:77:31:D4:04:71:5C:DC:14:20:9E
Certificate issuer: /CN=992b86095ce558d2e9618728a44228a27be9098f
Certificate serial: 07A622E0
Authority key identifier: 99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/vx6tpDqYRRWoMncx1ARxXNwUIJ4.roa
Signing time: Fri 24 Jun 2022 13:08:31 +0000
ROA not before: Fri 24 Jun 2022 13:08:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50628
IP address blocks: 166.108.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128328416 (0x7a622e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=992b86095ce558d2e9618728a44228a27be9098f
Validity
Not Before: Jun 24 13:08:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf1eada43a984515a8327731d404715cdc14209e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:dd:dc:77:25:85:ce:93:21:60:d1:f8:f3:13:
9d:32:e3:5b:d8:85:67:31:cb:d5:69:7d:07:c6:60:
4b:a3:2b:83:bc:6b:92:a4:54:3b:5f:ea:42:22:27:
99:7d:63:b1:72:1c:89:19:c2:3a:21:aa:ef:3a:4b:
8b:dc:d7:4a:94:e9:d7:13:a8:c1:02:94:fe:7a:68:
e4:47:09:bc:cd:b3:8e:6b:8e:c0:f4:fd:b8:d8:99:
8f:28:c1:a0:91:b4:2e:94:f1:22:b8:45:49:9f:f6:
5b:c5:ad:44:fc:f8:55:8e:2b:f0:61:8f:49:2d:9a:
61:30:7f:0e:a0:86:83:ab:ac:b1:38:66:17:a6:5f:
95:1a:2f:69:81:3a:53:4a:73:bd:70:b6:55:9f:a5:
e1:84:2e:75:3a:45:aa:49:c4:b3:32:ab:e0:83:72:
70:96:10:94:53:98:68:7c:8a:16:55:5d:88:a9:e0:
27:3b:00:08:90:8f:c2:db:10:70:17:f9:85:71:0d:
f6:64:eb:06:7a:a3:7d:15:20:e5:3c:af:b3:d0:54:
28:c3:10:55:ce:3f:d5:e5:c5:45:e0:3a:7c:34:6c:
a9:2a:1d:8f:af:a4:3c:aa:67:c4:fb:62:a7:3f:e5:
dd:a2:a8:8f:e6:26:68:f1:46:dc:f8:10:e3:a2:e5:
bb:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:1E:AD:A4:3A:98:45:15:A8:32:77:31:D4:04:71:5C:DC:14:20:9E
X509v3 Authority Key Identifier:
keyid:99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/vx6tpDqYRRWoMncx1ARxXNwUIJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/mSuGCVzlWNLpYYcopEIoonvpCY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
166.108.128.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:3e:52:4a:c2:c4:f7:20:0f:87:f9:e9:b0:77:67:54:89:c7:
d1:55:51:fe:0c:db:94:5f:38:8e:f4:1a:fc:8b:5e:62:0e:a0:
1b:a9:27:bf:d9:07:4a:b5:91:27:69:4f:87:8c:2b:7d:21:38:
75:74:e0:94:ca:bb:72:1a:2f:af:36:85:0f:33:02:60:fe:c5:
7b:4f:7e:51:dd:60:94:23:b6:5e:c0:49:6d:7b:f0:93:ff:89:
70:b6:66:f1:4e:7d:d9:a4:c9:55:cb:1e:15:26:1d:2e:af:e5:
57:5f:fd:d1:41:74:b0:fd:9b:1f:3d:1b:4a:cb:d6:0d:3d:8a:
d6:70:b4:45:7f:bd:d3:9a:92:3f:c1:83:c4:01:1c:ac:41:91:
56:39:ec:f7:5f:ae:be:3e:41:72:45:47:0c:dd:f2:fa:98:36:
6a:20:2f:69:b7:1f:96:0b:52:2b:08:7f:b9:3d:3b:c7:7c:ef:
7b:9c:d4:89:05:ee:06:2d:04:fa:79:8d:1a:2d:c1:17:b0:fd:
c9:c3:87:45:24:0d:56:a8:19:3a:d8:32:ae:36:29:10:9d:63:
d6:16:c8:2b:0b:53:42:aa:c5:4d:40:96:49:fb:82:7b:b6:e9:
f8:69:0c:34:37:9f:16:57:26:2d:f8:3a:8d:d6:16:19:ef:fd:
19:77:90:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:45 2025 by rpki-client