Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/vmZWBGY9HhEsXrlcdeEH3sLJ7g8.roa
File: vmZWBGY9HhEsXrlcdeEH3sLJ7g8.roa (raw, json)
Hash identifier: kXXoqSceHGzfNGxgjovMUFes6bJIymlbITHk9xeeRog=
Subject key identifier: BE:66:56:04:66:3D:1E:11:2C:5E:B9:5C:75:E1:07:DE:C2:C9:EE:0F
Certificate issuer: /CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Certificate serial: 01856F4B65E746FFA8000AE6465EF55D8965
Authority key identifier: 98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/vmZWBGY9HhEsXrlcdeEH3sLJ7g8.roa
Signing time: Sun 01 Jan 2023 21:44:50 +0000
ROA not before: Sun 01 Jan 2023 21:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211826
IP address blocks: 45.84.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:65:e7:46:ff:a8:00:0a:e6:46:5e:f5:5d:89:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Validity
Not Before: Jan 1 21:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be665604663d1e112c5eb95c75e107dec2c9ee0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:dd:98:4c:b8:d8:20:03:17:2b:50:43:cd:33:
c3:71:31:f7:a1:d6:57:c6:b2:7d:b9:5a:4f:17:21:
4c:d0:1c:f1:f6:cd:28:ee:b7:85:48:ec:db:51:5a:
56:70:a6:86:59:e0:c5:7b:8e:c7:f3:f2:ba:91:0b:
54:f5:ad:56:65:64:a5:de:ee:1e:cd:4a:c6:5b:f5:
21:14:23:67:36:9a:ff:c6:0c:1b:57:2f:3f:c9:81:
c7:0f:aa:72:a4:67:7d:2b:fe:81:bd:86:a9:8a:1b:
70:7b:7d:dc:ef:30:be:49:db:6d:3d:a6:13:98:6c:
e7:66:25:04:1d:28:c2:bb:52:ce:f9:b4:ff:98:6b:
6e:64:58:76:34:cc:9e:22:3c:2b:70:30:df:34:ca:
9a:25:75:65:5e:c2:36:00:f6:cc:fe:8c:aa:3d:19:
c7:38:a9:e5:9e:cf:8f:94:6f:fe:ef:e4:26:57:53:
79:b0:1e:54:ad:79:b3:69:2c:73:17:72:82:99:03:
e8:42:94:94:ac:77:b0:80:fc:c9:07:61:28:f5:8e:
91:0d:9a:11:d2:c7:45:5c:dc:a7:c1:ff:00:0f:19:
fc:be:52:d6:fa:b0:f5:f5:b2:7b:c5:6d:dc:e9:aa:
bd:b8:01:c7:c0:76:9e:7f:c1:2d:ba:24:e0:97:d0:
01:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:66:56:04:66:3D:1E:11:2C:5E:B9:5C:75:E1:07:DE:C2:C9:EE:0F
X509v3 Authority Key Identifier:
keyid:98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/vmZWBGY9HhEsXrlcdeEH3sLJ7g8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.58.0/24
Signature Algorithm: sha256WithRSAEncryption
02:1f:c9:7c:4a:d7:9b:e7:c5:5a:60:7a:ac:d1:36:f2:38:00:
44:45:15:37:f4:c6:f4:25:a4:79:4d:f6:0e:14:f1:ef:32:c2:
76:5c:29:40:0e:4f:86:e5:e6:15:fa:cd:0c:16:2a:8a:79:ae:
8d:6b:83:9c:5f:57:b2:d9:b7:da:a7:87:e6:f2:32:4d:e6:25:
d1:3c:68:ec:ad:a2:7e:65:7b:21:09:ed:88:56:79:68:aa:b6:
17:4c:70:dc:03:5a:19:a0:aa:56:8e:45:1f:bc:77:18:63:71:
0f:d2:db:9d:38:56:ba:ee:4c:64:17:58:6d:e0:27:bf:ff:16:
e1:77:bb:77:b8:34:5f:45:f8:37:06:42:32:40:ce:42:ca:54:
e5:7f:f6:b4:85:fe:ea:ac:ae:15:72:81:42:55:19:d4:c5:ec:
ee:f3:32:f1:ef:08:dd:98:7e:00:25:e1:a7:8b:40:51:21:f5:
64:07:26:15:59:a3:51:dc:7c:5a:b1:99:16:0c:e8:c8:ec:f0:
e5:12:9d:19:1f:b0:f5:19:1a:ee:1e:8f:93:c5:db:55:4f:03:
34:21:97:87:cd:4a:9d:78:e6:77:02:ee:82:7a:79:e8:11:cc:
38:a7:76:3e:b0:b4:5c:1f:f4:df:cc:b8:23:6d:94:81:26:34:
a2:61:a9:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:28 2025 by rpki-client