Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/621941-f53c-448f-bd30-42b3d68b5676/1/vML8EWmdsGrbQbmU8flwCboAEj8.roa
File: vML8EWmdsGrbQbmU8flwCboAEj8.roa (raw, json)
Hash identifier: vrac+Mj8TXhFdnTWBWp09I95ca16kkXyeEKMw0TVe1A=
Subject key identifier: BC:C2:FC:11:69:9D:B0:6A:DB:41:B9:94:F1:F9:70:09:BA:00:12:3F
Certificate issuer: /CN=b8d251c4bfd526da062d4ce2af56b6e46e925117
Certificate serial: 09BC37C5
Authority key identifier: B8:D2:51:C4:BF:D5:26:DA:06:2D:4C:E2:AF:56:B6:E4:6E:92:51:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNJRxL_VJtoGLUzir1a25G6SURc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/621941-f53c-448f-bd30-42b3d68b5676/1/vML8EWmdsGrbQbmU8flwCboAEj8.roa
Signing time: Wed 06 Apr 2022 05:55:05 +0000
ROA not before: Wed 06 Apr 2022 05:55:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 132.75.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163329989 (0x9bc37c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8d251c4bfd526da062d4ce2af56b6e46e925117
Validity
Not Before: Apr 6 05:55:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcc2fc11699db06adb41b994f1f97009ba00123f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:9d:01:2a:98:7f:b1:b2:af:47:f4:1c:13:eb:
3a:76:db:ef:91:e5:fe:c4:b5:57:e3:61:92:21:24:
d4:6b:72:7e:2c:b1:c2:0c:44:c7:aa:c0:7d:cb:ae:
23:48:85:ba:76:bb:99:a5:ea:e9:a4:a1:21:3c:8d:
e5:e1:b7:26:b1:5e:8c:48:9e:fa:9c:4b:d2:6c:0a:
f1:4b:64:71:4f:01:31:07:06:ba:f2:90:15:59:1d:
60:db:55:b7:5e:0a:19:af:a3:52:81:b4:52:d6:d7:
63:38:e4:9a:e5:31:bf:06:27:b1:00:15:0f:66:6e:
af:65:6f:ef:b9:85:70:1f:c4:cd:e1:a7:73:55:8f:
7c:54:f8:67:f0:44:5f:75:6b:fa:98:0e:31:11:4b:
2b:3c:d6:a1:95:f9:4f:aa:f6:50:85:e0:62:c3:71:
4d:58:2c:f0:6c:20:6c:80:30:1c:f8:2d:fa:0b:88:
9f:4e:dc:ae:f4:44:f8:5e:92:5b:78:8a:37:bd:e3:
82:70:ef:a6:99:2c:2d:c7:62:74:3d:62:47:1f:1b:
31:30:c6:5f:22:63:c8:0b:1e:a1:9a:0a:63:cc:60:
69:21:44:07:bc:80:d1:84:f8:84:64:4e:79:58:90:
9d:c6:32:28:b8:c9:b9:0d:0a:8a:c0:d1:2e:14:fe:
25:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:C2:FC:11:69:9D:B0:6A:DB:41:B9:94:F1:F9:70:09:BA:00:12:3F
X509v3 Authority Key Identifier:
keyid:B8:D2:51:C4:BF:D5:26:DA:06:2D:4C:E2:AF:56:B6:E4:6E:92:51:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNJRxL_VJtoGLUzir1a25G6SURc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/621941-f53c-448f-bd30-42b3d68b5676/1/vML8EWmdsGrbQbmU8flwCboAEj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/621941-f53c-448f-bd30-42b3d68b5676/1/uNJRxL_VJtoGLUzir1a25G6SURc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.75.97.0/24
Signature Algorithm: sha256WithRSAEncryption
39:dd:45:b4:b1:a7:be:1a:01:99:3c:da:46:30:17:4e:cb:9d:
44:91:32:dd:45:84:fd:a2:56:7a:b7:73:44:05:54:e9:06:56:
12:52:79:55:d0:25:19:09:52:af:4e:51:53:cc:2a:76:54:59:
04:a4:48:ae:b3:8c:6e:32:42:01:03:07:e2:0a:c0:c5:ec:7a:
e6:39:c5:de:2b:6b:8a:62:6b:9a:b6:77:b7:0c:b0:5e:67:e3:
28:9a:bb:c5:61:b3:81:63:03:2d:b2:5d:60:16:af:27:e9:43:
86:92:0b:e7:d7:f0:63:99:56:94:71:12:7c:82:58:86:3d:be:
53:6f:df:c1:58:7a:76:4f:1b:36:8a:95:e4:da:81:ab:d5:7b:
e4:35:e4:c0:89:31:c0:85:ad:ae:6f:bc:85:ed:3f:d7:e2:03:
e1:41:ae:08:86:8a:2e:d0:91:b1:96:2f:d9:e1:48:eb:ee:76:
83:60:d2:d1:1a:3f:88:55:ee:6d:94:d5:99:73:85:a4:07:d1:
fb:e8:db:90:cc:f4:28:02:e0:83:ec:79:8b:ce:aa:88:25:0a:
d0:e5:ca:17:5c:6d:df:7f:28:f4:8a:64:dd:05:a4:2f:5a:a7:
e4:dc:ed:88:5f:23:a8:4a:39:8b:e3:de:48:98:d9:db:89:c9:
6a:00:0e:47
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECbw3xTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
OGQyNTFjNGJmZDUyNmRhMDYyZDRjZTJhZjU2YjZlNDZlOTI1MTE3MB4XDTIyMDQw
NjA1NTUwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmNjMmZjMTE2OTlk
YjA2YWRiNDFiOTk0ZjFmOTcwMDliYTAwMTIzZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOedASqYf7Gyr0f0HBPrOnbb75Hl/sS1V+NhkiEk1Gtyfiyx
wgxEx6rAfcuuI0iFuna7maXq6aShITyN5eG3JrFejEie+pxL0mwK8UtkcU8BMQcG
uvKQFVkdYNtVt14KGa+jUoG0UtbXYzjkmuUxvwYnsQAVD2Zur2Vv77mFcB/EzeGn
c1WPfFT4Z/BEX3Vr+pgOMRFLKzzWoZX5T6r2UIXgYsNxTVgs8GwgbIAwHPgt+guI
n07crvRE+F6SW3iKN73jgnDvppksLcdidD1iRx8bMTDGXyJjyAseoZoKY8xgaSFE
B7yA0YT4hGROeViQncYyKLjJuQ0KisDRLhT+JUkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS8wvwRaZ2wattBuZTx+XAJugASPzAfBgNVHSMEGDAWgBS40lHEv9Um2gYt
TOKvVrbkbpJRFzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VOSlJ4TF9WSnRvR0xVemlyMWEyNUc2U1VSYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTIvNjIxOTQxLWY1M2MtNDQ4Zi1iZDMwLTQyYjNkNjhiNTY3Ni8x
L3ZNTDhFV21kc0dyYlFibVU4Zmx3Q2JvQUVqOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTIv
NjIxOTQxLWY1M2MtNDQ4Zi1iZDMwLTQyYjNkNjhiNTY3Ni8xL3VOSlJ4TF9WSnRv
R0xVemlyMWEyNUc2U1VSYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIRLYTANBgkqhkiG9w0BAQsFAAOC
AQEAOd1FtLGnvhoBmTzaRjAXTsudRJEy3UWE/aJWerdzRAVU6QZWElJ5VdAlGQlS
r05RU8wqdlRZBKRIrrOMbjJCAQMH4grAxex65jnF3itrimJrmrZ3twywXmfjKJq7
xWGzgWMDLbJdYBavJ+lDhpIL59fwY5lWlHESfIJYhj2+U2/fwVh6dk8bNoqV5NqB
q9V75DXkwIkxwIWtrm+8he0/1+ID4UGuCIaKLtCRsZYv2eFI6+52g2DS0Ro/iFXu
bZTVmXOFpAfR++jbkMz0KALgg+x5i86qiCUK0OXKF1xt338o9Ipk3QWkL1qn5Nzt
iF8jqEo5i+PeSJjZ24nJagAORw==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:24 2025 by rpki-client