Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/c78348-ac2e-44e4-8467-2bdd20b4823b/1/VLHZPJl_a4Lez6OXKYJY-wkQvsU.roa
File: VLHZPJl_a4Lez6OXKYJY-wkQvsU.roa (raw, json)
Hash identifier: oAYk52Uzv/KtwF3rEaHDBzaymfF++Y4j5FfmPph1lzI=
Subject key identifier: 54:B1:D9:3C:99:7F:6B:82:DE:CF:A3:97:29:82:58:FB:09:10:BE:C5
Certificate issuer: /CN=70d13e2a16a0ee6634207a88ff0aac4eabc6693c
Certificate serial: 0913C8CB
Authority key identifier: 70:D1:3E:2A:16:A0:EE:66:34:20:7A:88:FF:0A:AC:4E:AB:C6:69:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNE-Khag7mY0IHqI_wqsTqvGaTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/c78348-ac2e-44e4-8467-2bdd20b4823b/1/VLHZPJl_a4Lez6OXKYJY-wkQvsU.roa
Signing time: Sat 01 Jan 2022 05:56:50 +0000
ROA not before: Sat 01 Jan 2022 05:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62102
IP address blocks: 185.47.179.0/24 maxlen: 24
185.47.178.0/24 maxlen: 24
185.47.178.0/23 maxlen: 23
185.47.176.0/22 maxlen: 22
185.47.177.0/24 maxlen: 24
185.47.176.0/23 maxlen: 23
185.47.176.0/24 maxlen: 24
2a01:7ce0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152291531 (0x913c8cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70d13e2a16a0ee6634207a88ff0aac4eabc6693c
Validity
Not Before: Jan 1 05:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54b1d93c997f6b82decfa397298258fb0910bec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:30:90:db:19:a3:4a:76:6c:88:04:b1:fe:5e:
da:97:b5:4e:73:45:d5:2c:28:96:90:4e:ff:21:43:
f8:78:74:7d:ef:ef:6e:89:d8:a1:63:6c:2b:4b:49:
4b:1a:a2:09:bb:4f:6e:a3:eb:06:98:44:d2:ad:8b:
ec:59:c8:16:8e:a0:b7:ea:24:7f:7a:1e:b8:8d:75:
ac:d1:55:08:9a:eb:9d:1f:ca:81:2c:f2:c9:2a:53:
5e:94:6a:4a:ed:a5:6f:dd:cc:88:f4:ec:d4:8b:39:
f5:d0:c7:44:e1:ae:f2:af:4d:0d:7a:ad:99:8e:58:
9b:41:fd:f9:2f:0e:98:53:5a:65:13:55:37:4a:66:
fd:3d:c8:7a:00:d0:8b:13:b0:3a:d8:d5:1d:33:e1:
50:d8:2d:9e:13:4a:7c:36:e5:9d:c9:7d:b9:9a:14:
4d:f6:7d:51:41:d4:98:fb:2b:6d:7d:32:a8:7f:36:
ae:ee:5e:7b:ea:28:58:e0:e9:97:23:38:bd:87:76:
48:42:d0:58:69:ed:c8:a2:fb:86:05:12:ea:fe:bd:
1f:ec:ae:a3:94:67:4b:81:ee:9e:70:a1:17:5b:06:
d8:8d:0f:1c:66:0b:c2:5c:4c:d8:9d:14:32:c3:32:
8b:91:1e:07:37:74:2f:67:09:a0:e5:74:a9:ff:b1:
b8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B1:D9:3C:99:7F:6B:82:DE:CF:A3:97:29:82:58:FB:09:10:BE:C5
X509v3 Authority Key Identifier:
keyid:70:D1:3E:2A:16:A0:EE:66:34:20:7A:88:FF:0A:AC:4E:AB:C6:69:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNE-Khag7mY0IHqI_wqsTqvGaTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c78348-ac2e-44e4-8467-2bdd20b4823b/1/VLHZPJl_a4Lez6OXKYJY-wkQvsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c78348-ac2e-44e4-8467-2bdd20b4823b/1/cNE-Khag7mY0IHqI_wqsTqvGaTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.176.0/22
IPv6:
2a01:7ce0::/32
Signature Algorithm: sha256WithRSAEncryption
75:b3:28:62:17:c2:23:1c:58:d0:93:d8:82:c1:33:ea:13:90:
87:14:7b:27:53:b9:e4:a3:70:aa:74:4f:0b:19:61:ec:82:6a:
df:af:37:8b:6c:a6:83:bf:24:0b:3f:3e:74:ab:12:ec:ea:c5:
45:f5:bb:2d:ca:ac:68:24:d6:32:22:01:8c:92:e3:70:f6:09:
88:b4:d2:45:ae:0f:eb:73:66:63:16:cf:95:22:00:4d:e2:6d:
f9:2c:92:80:99:f7:b4:fd:63:9a:f9:b0:15:fb:23:67:81:5a:
dd:cb:f0:45:35:1d:75:63:e7:19:2c:da:5f:4e:50:5e:52:31:
dd:66:30:0f:3f:cf:5e:94:5e:d4:d9:21:e7:0f:4f:37:16:e5:
63:4e:79:b7:0c:9b:f2:f6:d3:57:bf:1e:e0:49:a2:87:66:6b:
f8:e4:78:82:49:5b:fa:e0:be:46:c7:d7:89:d6:12:a3:f4:92:
bd:6c:0d:42:00:dd:aa:02:ab:d1:ce:4d:a4:c1:0a:d3:ac:0c:
2d:d3:65:3a:5d:ba:18:1a:fa:4f:1f:61:80:95:12:3e:63:64:
04:1d:a1:f4:be:55:a7:e4:d7:7c:ef:22:fa:d4:46:37:72:94:
92:dc:78:63:01:dd:4f:3e:fd:c2:1c:58:50:1a:15:af:2a:65:
90:18:5c:51
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECRPIyzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MGQxM2UyYTE2YTBlZTY2MzQyMDdhODhmZjBhYWM0ZWFiYzY2OTNjMB4XDTIyMDEw
MTA1NTY1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTRiMWQ5M2M5OTdm
NmI4MmRlY2ZhMzk3Mjk4MjU4ZmIwOTEwYmVjNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK0wkNsZo0p2bIgEsf5e2pe1TnNF1SwolpBO/yFD+Hh0fe/v
bonYoWNsK0tJSxqiCbtPbqPrBphE0q2L7FnIFo6gt+okf3oeuI11rNFVCJrrnR/K
gSzyySpTXpRqSu2lb93MiPTs1Is59dDHROGu8q9NDXqtmY5Ym0H9+S8OmFNaZRNV
N0pm/T3IegDQixOwOtjVHTPhUNgtnhNKfDblncl9uZoUTfZ9UUHUmPsrbX0yqH82
ru5ee+ooWODplyM4vYd2SELQWGntyKL7hgUS6v69H+yuo5RnS4HunnChF1sG2I0P
HGYLwlxM2J0UMsMyi5EeBzd0L2cJoOV0qf+xuNcCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRUsdk8mX9rgt7Po5cpglj7CRC+xTAfBgNVHSMEGDAWgBRw0T4qFqDuZjQg
eoj/CqxOq8ZpPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NORS1LaGFnN21ZMElIcUlfd3FzVHF2R2FUdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDcvYzc4MzQ4LWFjMmUtNDRlNC04NDY3LTJiZGQyMGI0ODIzYi8x
L1ZMSFpQSmxfYTRMZXo2T1hLWUpZLXdrUXZzVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDcv
Yzc4MzQ4LWFjMmUtNDRlNC04NDY3LTJiZGQyMGI0ODIzYi8xL2NORS1LaGFnN21Z
MElIcUlfd3FzVHF2R2FUdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArkvsDANBAIAAjAHAwUAKgF84DAN
BgkqhkiG9w0BAQsFAAOCAQEAdbMoYhfCIxxY0JPYgsEz6hOQhxR7J1O55KNwqnRP
Cxlh7IJq3683i2ymg78kCz8+dKsS7OrFRfW7LcqsaCTWMiIBjJLjcPYJiLTSRa4P
63NmYxbPlSIATeJt+SySgJn3tP1jmvmwFfsjZ4Fa3cvwRTUddWPnGSzaX05QXlIx
3WYwDz/PXpRe1Nkh5w9PNxblY055twyb8vbTV78e4Emih2Zr+OR4gklb+uC+RsfX
idYSo/SSvWwNQgDdqgKr0c5NpMEK06wMLdNlOl26GBr6Tx9hgJUSPmNkBB2h9L5V
p+TXfO8i+tRGN3KUktx4YwHdTz79whxYUBoVryplkBhcUQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:23 2025 by rpki-client