Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/62a01d-feec-40fd-98ed-bc8c6d286f1c/1/VX63m3SAnPq1fMdjXI35-LQvEBk.roa
File: VX63m3SAnPq1fMdjXI35-LQvEBk.roa (raw, json)
Hash identifier: syrh16z37Dj1lIc7FGm14ceBF2SUTYoN+KQs2eya860=
Subject key identifier: 55:7E:B7:9B:74:80:9C:FA:B5:7C:C7:63:5C:8D:F9:F8:B4:2F:10:19
Certificate issuer: /CN=b8155ac34b6ec15f226ae9913d6aecfca7a784d4
Certificate serial: 018201E0919127E49B6BDBE4C02175BFF9F8
Authority key identifier: B8:15:5A:C3:4B:6E:C1:5F:22:6A:E9:91:3D:6A:EC:FC:A7:A7:84:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBVaw0tuwV8iaumRPWrs_KenhNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/62a01d-feec-40fd-98ed-bc8c6d286f1c/1/VX63m3SAnPq1fMdjXI35-LQvEBk.roa
Signing time: Fri 15 Jul 2022 12:41:10 +0000
ROA not before: Fri 15 Jul 2022 12:41:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204693
IP address blocks: 2a02:e220:7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:01:e0:91:91:27:e4:9b:6b:db:e4:c0:21:75:bf:f9:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8155ac34b6ec15f226ae9913d6aecfca7a784d4
Validity
Not Before: Jul 15 12:41:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=557eb79b74809cfab57cc7635c8df9f8b42f1019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7a:d5:47:1a:f5:30:ca:96:64:3d:2d:84:fb:
17:9a:53:3b:40:50:e6:77:b9:27:9d:34:35:5f:c1:
2a:68:8e:1e:32:5b:cc:53:25:a7:63:23:80:88:53:
01:2c:80:45:33:fb:0a:1e:9c:b8:48:07:4b:81:ef:
59:b9:28:2f:93:cf:47:d1:15:32:08:1d:44:29:ae:
3d:d9:17:1b:1b:d6:76:77:e9:f6:6a:30:95:4f:c2:
a8:c5:3b:14:d9:d5:87:c5:d1:dd:10:32:d0:71:59:
0a:bb:46:f9:28:2d:77:61:3e:a5:78:0e:11:20:22:
2a:fa:84:09:be:b1:f6:81:8d:0a:be:1a:57:50:20:
72:f6:a8:4c:54:bb:b2:8c:22:28:eb:82:0f:32:9f:
79:7d:db:3b:02:1c:e0:7a:e0:9d:09:65:29:2b:37:
f3:82:7e:df:7d:37:90:ed:ce:b3:f5:83:2e:2f:db:
ac:62:71:ed:10:e1:74:b2:85:e4:4c:7a:d9:a5:44:
9e:53:48:10:4f:35:5d:5e:d8:f7:96:c9:49:e6:8f:
05:5e:24:26:8b:63:18:04:81:da:9e:2d:38:21:3f:
cd:a5:76:dd:25:77:1d:68:1c:ac:0f:be:8d:bd:db:
54:27:76:8a:53:43:de:3e:37:84:50:27:3b:2e:f9:
d6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:7E:B7:9B:74:80:9C:FA:B5:7C:C7:63:5C:8D:F9:F8:B4:2F:10:19
X509v3 Authority Key Identifier:
keyid:B8:15:5A:C3:4B:6E:C1:5F:22:6A:E9:91:3D:6A:EC:FC:A7:A7:84:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBVaw0tuwV8iaumRPWrs_KenhNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/62a01d-feec-40fd-98ed-bc8c6d286f1c/1/VX63m3SAnPq1fMdjXI35-LQvEBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/62a01d-feec-40fd-98ed-bc8c6d286f1c/1/uBVaw0tuwV8iaumRPWrs_KenhNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:e220:7::/48
Signature Algorithm: sha256WithRSAEncryption
39:25:24:83:1f:fc:6a:23:af:d6:cb:7f:ed:75:5a:42:a9:3a:
3c:32:77:7b:63:1e:14:65:d1:42:f7:7c:12:ea:dd:5b:2c:3e:
f9:93:be:47:6e:e9:84:3f:a3:1e:19:b8:79:d0:bb:e8:6f:ea:
f2:1c:0d:60:65:f8:e7:52:06:75:21:1e:cf:e4:41:1c:f5:a6:
bd:1c:f0:cf:ed:d3:39:eb:bc:b2:e3:15:89:42:78:34:5d:27:
00:01:25:c5:38:56:5b:99:83:2a:bb:1c:a1:12:2b:0e:d6:8b:
97:2a:75:a4:74:42:46:be:e9:ba:cb:2b:4d:a6:3e:77:01:40:
dd:b7:48:8f:96:7d:00:4f:03:43:ca:e8:f2:2a:03:a6:2c:90:
85:5e:82:85:e6:e4:f5:b1:c2:13:10:6f:63:47:6d:47:ae:6f:
84:7e:19:69:66:43:da:8f:c7:61:a9:04:85:87:d1:f8:61:1f:
6b:c3:e7:49:7d:f7:a2:50:28:68:c1:e1:2e:2e:27:ad:45:45:
41:41:55:8d:32:55:f9:c9:9f:34:a7:3b:be:e9:05:3d:c5:dc:
52:01:86:fa:0f:91:97:cb:77:0c:97:78:17:a2:0f:42:5d:ee:
ea:88:fb:ed:46:42:46:8c:b5:08:5c:4c:7d:46:6a:2e:af:a2:
66:e6:a5:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:18:05 2025 by rpki-client