Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/VEMwDhqmRGrn7akM6vCDwo9YsBo.roa
File: VEMwDhqmRGrn7akM6vCDwo9YsBo.roa (raw, json)
Hash identifier: JmO1yKRHjTh/5x4lsKcZk2w8u3cRB0XIVhOYvzDY/NU=
Subject key identifier: 54:43:30:0E:1A:A6:44:6A:E7:ED:A9:0C:EA:F0:83:C2:8F:58:B0:1A
Certificate issuer: /CN=4081f85602b1168925d83eb3ca61609f357956a6
Certificate serial: 01856CB83BF4A4BB61F46E53922D56D15E2D
Authority key identifier: 40:81:F8:56:02:B1:16:89:25:D8:3E:B3:CA:61:60:9F:35:79:56:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIH4VgKxFokl2D6zymFgnzV5VqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/VEMwDhqmRGrn7akM6vCDwo9YsBo.roa
Signing time: Sun 01 Jan 2023 09:44:51 +0000
ROA not before: Sun 01 Jan 2023 09:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39650
IP address blocks: 31.130.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:3b:f4:a4:bb:61:f4:6e:53:92:2d:56:d1:5e:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4081f85602b1168925d83eb3ca61609f357956a6
Validity
Not Before: Jan 1 09:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5443300e1aa6446ae7eda90ceaf083c28f58b01a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:21:7e:86:99:a4:df:d1:31:8d:b7:91:77:ca:
70:7d:f4:28:20:c6:b5:ee:b3:64:21:1d:94:7d:c4:
62:37:7b:9c:98:e1:73:31:b5:53:f6:60:97:7c:f0:
87:42:c9:22:b3:8e:fb:58:f0:f1:c6:b7:d1:0b:6a:
9e:2b:a4:9c:79:c4:db:f1:da:60:6a:fe:9a:e7:e1:
1e:32:e8:19:e5:a9:c2:56:06:d4:f6:ff:02:db:73:
cf:3a:c6:d8:e1:e9:83:0d:c5:76:da:e4:87:5a:30:
83:e4:37:d3:5f:90:bd:e2:30:6a:4b:5b:1f:7b:ca:
e8:88:af:d2:28:4f:2b:1d:42:a2:9c:9e:d3:fb:39:
12:b8:f0:68:c8:a7:c7:be:93:80:23:5c:fd:35:13:
f4:51:1f:21:38:86:eb:df:fb:4d:ed:03:10:fb:be:
08:f4:fa:cc:bf:2a:9b:68:a6:0d:49:08:26:31:f2:
17:1f:6b:01:1d:8b:e3:0e:70:45:0e:f2:43:6d:d5:
84:64:60:db:09:73:27:8a:9c:e9:70:19:2b:07:7f:
7e:4b:59:ef:95:79:1c:33:f7:e8:ef:54:78:b4:4e:
27:9d:3f:84:e1:73:6e:df:02:95:32:5f:d8:cc:f9:
12:24:8d:45:7b:5e:21:6b:ba:82:63:0c:4a:3d:08:
88:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:43:30:0E:1A:A6:44:6A:E7:ED:A9:0C:EA:F0:83:C2:8F:58:B0:1A
X509v3 Authority Key Identifier:
keyid:40:81:F8:56:02:B1:16:89:25:D8:3E:B3:CA:61:60:9F:35:79:56:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIH4VgKxFokl2D6zymFgnzV5VqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/VEMwDhqmRGrn7akM6vCDwo9YsBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/22c93c-9000-4e73-a1c5-c03f3fddd4ac/1/QIH4VgKxFokl2D6zymFgnzV5VqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.181.0/24
Signature Algorithm: sha256WithRSAEncryption
e3:e8:0f:b2:17:de:30:ae:9e:b1:57:61:94:f2:ff:62:40:9c:
d4:86:8a:a1:12:b0:86:d5:cf:b4:ec:11:67:fa:5c:e8:bd:3b:
bf:30:8a:10:05:0c:7c:15:f1:17:ac:7d:cb:4c:bf:86:a7:20:
6d:dc:21:2b:d7:8f:0a:2d:cb:1a:34:1f:b3:35:d4:fe:3f:e7:
b4:2c:79:3a:b0:39:bb:e6:90:d3:1e:37:a6:85:0c:0f:33:98:
3e:e3:a5:79:dd:7a:2c:bf:7a:6f:81:a5:cc:0f:85:e1:40:d2:
01:79:36:1b:74:e5:1e:87:e6:44:65:14:5f:70:02:b2:74:b6:
09:65:4a:7c:00:2e:9d:d2:e2:a5:e7:03:d5:76:22:f7:1e:12:
8e:af:13:ee:6d:0f:60:32:a5:6d:f7:36:b2:af:5a:59:78:6a:
7d:e0:0d:e6:f8:68:02:b9:ff:d0:67:09:4f:01:26:04:20:93:
bd:87:dc:86:b8:9f:90:c9:50:3a:63:1f:5e:2e:a9:89:0b:37:
7c:b9:c8:a0:db:96:94:0f:d7:9d:6c:e0:7c:bb:02:f7:ca:25:
3f:4b:3e:70:d6:53:4f:8e:f0:35:fc:28:0e:54:7e:72:a4:1e:
db:dd:70:78:fe:23:7a:f8:fb:18:ea:4f:8b:08:fd:d3:72:7a:
05:25:54:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 01:52:42 2025 by rpki-client