Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/7d64f1-3d64-42eb-a275-2179644f3788/1/V4pyrrB4OCS4AFGXbOapNW6evVc.roa
File: V4pyrrB4OCS4AFGXbOapNW6evVc.roa (raw, json)
Hash identifier: /JQ6hp4tT/VxxrvDP314n8gjM4nkDWFZuUHVbbEV/so=
Subject key identifier: 57:8A:72:AE:B0:78:38:24:B8:00:51:97:6C:E6:A9:35:6E:9E:BD:57
Certificate issuer: /CN=a5bec32d6c64ffb601e270cedbcd3efff5ce7a40
Certificate serial: 01856C4A5DB99AE8896A559A7C5E93376D15
Authority key identifier: A5:BE:C3:2D:6C:64:FF:B6:01:E2:70:CE:DB:CD:3E:FF:F5:CE:7A:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pb7DLWxk_7YB4nDO280-__XOekA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/7d64f1-3d64-42eb-a275-2179644f3788/1/V4pyrrB4OCS4AFGXbOapNW6evVc.roa
Signing time: Sun 01 Jan 2023 07:44:50 +0000
ROA not before: Sun 01 Jan 2023 07:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137
IP address blocks: 156.14.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:5d:b9:9a:e8:89:6a:55:9a:7c:5e:93:37:6d:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5bec32d6c64ffb601e270cedbcd3efff5ce7a40
Validity
Not Before: Jan 1 07:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=578a72aeb0783824b80051976ce6a9356e9ebd57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:26:a8:d1:a5:dd:00:34:af:7e:e6:35:b2:60:
86:b1:20:7a:19:38:95:d3:7b:c7:a6:f2:f6:8a:11:
34:ee:72:85:bd:b8:9e:16:38:95:4f:59:c5:21:b3:
3f:d3:7f:49:53:69:42:b9:2d:f6:aa:ec:b6:df:46:
b7:ed:f6:50:47:a0:83:15:0a:fe:bf:72:43:99:c2:
1b:38:5d:ad:be:36:9c:53:eb:a2:84:d4:84:ac:97:
28:03:a2:b1:35:6d:f0:73:c2:31:40:36:06:d1:e7:
cf:cf:56:fd:60:89:df:92:28:e3:73:14:cb:67:b7:
87:0c:32:01:54:1c:a6:23:ee:9c:01:f0:30:31:e0:
91:63:8d:62:cd:f4:1e:64:b1:4c:1d:f3:5c:0a:9c:
d3:e6:15:ee:0c:73:99:04:35:c7:bd:c1:9c:96:dc:
3f:d7:2d:ab:a4:d6:8b:3e:31:63:e6:9f:79:b3:84:
53:3f:1e:f0:4e:65:b9:92:de:91:61:f7:ee:35:40:
0d:3d:2c:7d:66:61:3b:3c:56:45:18:60:8a:30:f2:
4b:3d:75:6c:8a:85:47:fa:57:37:0d:c0:14:e3:d2:
4d:8c:22:5d:84:38:a0:f2:20:ba:e5:47:b6:34:9e:
0e:13:fa:d8:50:c8:dc:40:75:c2:04:31:2d:12:31:
cc:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:8A:72:AE:B0:78:38:24:B8:00:51:97:6C:E6:A9:35:6E:9E:BD:57
X509v3 Authority Key Identifier:
keyid:A5:BE:C3:2D:6C:64:FF:B6:01:E2:70:CE:DB:CD:3E:FF:F5:CE:7A:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pb7DLWxk_7YB4nDO280-__XOekA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7d64f1-3d64-42eb-a275-2179644f3788/1/V4pyrrB4OCS4AFGXbOapNW6evVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7d64f1-3d64-42eb-a275-2179644f3788/1/pb7DLWxk_7YB4nDO280-__XOekA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.14.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8c:08:91:f6:44:cb:e3:03:69:4d:d1:1e:2c:3c:63:a4:84:30:
24:8c:1c:dc:15:0f:37:fd:3e:92:25:4e:d8:41:b1:41:6a:31:
b4:16:32:4c:49:b2:fe:57:fc:51:49:de:dc:79:8f:20:0c:2e:
44:d9:bd:52:33:d5:e2:fa:a9:a4:d7:15:f8:bb:37:63:fa:8b:
64:54:ed:65:4a:c4:2e:32:40:4f:b4:70:25:43:06:0d:e9:0d:
c4:a1:c2:46:fa:c8:f6:76:45:a4:a7:ce:2b:c6:3f:82:ab:e3:
e4:aa:37:d4:c3:ea:c1:7a:40:8a:f8:04:ad:67:f2:2b:66:34:
0e:8d:11:0b:ff:c3:0e:8d:10:40:f0:31:49:28:20:0a:69:60:
f8:25:cf:ab:09:58:fe:44:b7:be:55:f8:aa:d1:19:b6:66:46:
ea:30:a1:d8:f9:7b:01:b6:14:56:f7:1e:f3:e0:dc:35:65:6c:
9a:bb:e6:61:c6:d2:7b:77:45:59:a7:51:47:86:76:32:e9:20:
0e:9e:16:59:54:4f:dd:b5:80:50:7a:a8:28:61:2b:72:1c:7e:
a2:49:fb:3e:ae:d2:7d:c4:31:ad:1a:b9:74:6b:0d:ab:26:b5:
87:11:61:a5:ab:1e:8d:ee:eb:b1:29:70:d2:e2:9b:c2:dc:bf:
13:ce:75:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:37 2025 by rpki-client