Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/79721f-f40b-41d2-ac0e-c947e16c2c61/1/VgWjNNVN1Onp0_4Kp_oZflilM-Q.roa
File: VgWjNNVN1Onp0_4Kp_oZflilM-Q.roa (raw, json)
Hash identifier: DVh/73mVjPtf4D4neTfgGw2gMqF5M3KANeBk4FOczAA=
Subject key identifier: 56:05:A3:34:D5:4D:D4:E9:E9:D3:FE:0A:A7:FA:19:7E:58:A5:33:E4
Certificate issuer: /CN=8e63704d5501ed75a6e20966ebf07a36555b1ab6
Certificate serial: 019C
Authority key identifier: 8E:63:70:4D:55:01:ED:75:A6:E2:09:66:EB:F0:7A:36:55:5B:1A:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmNwTVUB7XWm4glm6_B6NlVbGrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/79721f-f40b-41d2-ac0e-c947e16c2c61/1/VgWjNNVN1Onp0_4Kp_oZflilM-Q.roa
Signing time: Thu 28 Apr 2022 12:36:17 +0000
ROA not before: Thu 28 Apr 2022 12:36:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 193.247.124.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 412 (0x19c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e63704d5501ed75a6e20966ebf07a36555b1ab6
Validity
Not Before: Apr 28 12:36:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5605a334d54dd4e9e9d3fe0aa7fa197e58a533e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b1:ab:49:42:81:90:25:cb:98:b9:d4:88:4a:
af:36:5c:99:80:00:04:b6:bc:67:d2:15:aa:99:ce:
86:f3:05:9c:3e:3c:d1:f1:47:4b:c6:69:d3:b0:d9:
8f:c0:bd:bf:98:27:46:da:7e:8d:5b:61:5e:e3:1f:
7c:b5:88:4d:25:94:81:e8:36:6a:84:a9:dc:ad:f7:
81:72:d4:a8:e0:f7:31:5e:ff:78:db:af:dc:8a:f1:
6a:53:f9:2c:75:5a:c1:63:a6:f4:e6:b2:cc:7a:cb:
46:98:9c:bd:ef:51:6a:71:a9:0e:8a:8e:91:df:1a:
fc:53:fe:55:fe:f0:95:e6:02:c6:1e:60:2f:a2:be:
03:8e:72:a7:b1:21:17:15:76:48:8d:42:b2:5f:b2:
64:c6:18:ba:d8:a1:f5:4f:3a:05:90:5d:c9:86:a7:
0b:15:80:dd:00:44:d3:5a:8b:53:34:7b:00:9b:bd:
90:d9:b7:50:25:94:d3:ca:dc:80:ca:09:84:cc:d9:
bb:9e:bc:9a:37:5e:17:42:8b:64:f8:f8:b4:a6:a5:
ba:8c:bc:87:33:d4:fc:3a:06:7f:20:af:5a:bd:1d:
b6:e4:e9:03:26:4c:2e:13:74:5a:e7:81:81:3a:33:
35:93:6d:78:56:90:16:ec:e2:48:0e:a0:0f:8f:86:
74:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:05:A3:34:D5:4D:D4:E9:E9:D3:FE:0A:A7:FA:19:7E:58:A5:33:E4
X509v3 Authority Key Identifier:
keyid:8E:63:70:4D:55:01:ED:75:A6:E2:09:66:EB:F0:7A:36:55:5B:1A:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmNwTVUB7XWm4glm6_B6NlVbGrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/79721f-f40b-41d2-ac0e-c947e16c2c61/1/VgWjNNVN1Onp0_4Kp_oZflilM-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/79721f-f40b-41d2-ac0e-c947e16c2c61/1/jmNwTVUB7XWm4glm6_B6NlVbGrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.124.0/23
Signature Algorithm: sha256WithRSAEncryption
35:e7:21:49:68:ba:b8:38:8b:f7:e4:8f:94:5a:e1:b3:5e:97:
02:cd:54:e6:8f:61:8c:72:20:54:0b:5e:7e:8e:03:bc:65:91:
54:d9:d7:27:2b:c8:7e:9b:92:97:05:b4:8d:1f:48:de:fb:c2:
97:17:7e:19:f5:33:7a:85:55:3d:bd:3d:c0:44:75:06:bf:50:
5e:2c:46:77:48:5d:00:ec:d1:cd:16:2f:88:59:93:4d:71:1e:
1f:cd:7a:16:4b:d5:ab:b6:d8:fb:dc:67:67:7f:b9:56:98:5a:
a0:3c:36:6f:de:c4:55:25:04:69:70:6a:59:8b:a5:f3:de:24:
01:59:ac:ee:e5:7d:e4:38:15:02:a1:c5:c2:e5:14:fc:dc:a2:
23:af:47:b9:a9:18:8e:22:6b:22:e5:f4:98:db:f2:0d:8a:aa:
3d:2e:18:25:eb:7e:4c:9c:2f:13:83:f2:37:c4:54:ab:67:04:
cc:00:50:c0:5a:4b:32:30:ff:66:79:84:47:88:6d:08:0b:87:
d8:e8:bc:ac:09:24:b9:26:eb:54:96:79:ab:85:0e:76:b1:da:
5c:4f:79:ab:bd:ec:df:d3:88:2b:50:67:bf:fc:c4:92:df:ae:
51:bc:c0:fa:ab:fc:b8:2c:5f:a0:e3:04:52:76:a9:d2:20:07:
30:b4:c9:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:55 2025 by rpki-client