Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/vLQjN7BdgZx9Ukzcj-J8TCLf1Tg.roa
File: vLQjN7BdgZx9Ukzcj-J8TCLf1Tg.roa (raw, json)
Hash identifier: vkMIz835BmSw6Zs0OlbICreuksguosLYBDSSlOW+F2I=
Subject key identifier: BC:B4:23:37:B0:5D:81:9C:7D:52:4C:DC:8F:E2:7C:4C:22:DF:D5:38
Certificate issuer: /CN=d2622fdec8fadfca58e7575c29f10e73ae775715
Certificate serial: 0A348E82
Authority key identifier: D2:62:2F:DE:C8:FA:DF:CA:58:E7:57:5C:29:F1:0E:73:AE:77:57:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mIv3sj638pY51dcKfEOc653VxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/vLQjN7BdgZx9Ukzcj-J8TCLf1Tg.roa
Signing time: Sat 01 Jan 2022 10:59:23 +0000
ROA not before: Sat 01 Jan 2022 10:59:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48233
IP address blocks: 151.237.84.0/22 maxlen: 24
194.69.201.0/24 maxlen: 24
85.187.192.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171216514 (0xa348e82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2622fdec8fadfca58e7575c29f10e73ae775715
Validity
Not Before: Jan 1 10:59:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcb42337b05d819c7d524cdc8fe27c4c22dfd538
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ed:21:8b:2a:d7:7e:77:67:3b:ed:b2:83:4b:
1e:c0:49:c1:5d:b6:13:3f:80:da:a5:ea:93:99:77:
af:c2:0d:5a:72:e3:17:a9:46:1e:29:98:87:f2:38:
eb:36:56:23:b5:6c:2a:06:b6:75:71:1b:b0:11:21:
ca:a2:ae:c1:b8:cf:70:c7:e0:41:ce:a5:45:04:80:
c9:73:6e:a0:3e:83:d2:df:7a:9b:4e:3f:80:f7:ce:
f3:8a:c7:77:31:48:f9:8d:55:9e:32:28:cb:83:d0:
86:41:e0:6f:ff:82:31:36:6d:ef:6f:7f:44:ef:4a:
03:b5:6f:f4:3c:45:86:32:89:c8:b0:86:72:e1:3e:
39:74:c2:c6:2f:95:83:ec:28:04:f5:55:af:48:cb:
1f:db:29:bb:71:a8:e1:69:35:ef:02:06:15:5a:cc:
f0:04:dc:44:9b:9b:7a:72:86:a3:6c:dc:5e:19:d1:
ae:a4:b4:4b:ae:fc:eb:39:76:39:5a:c9:90:b8:3f:
d3:7c:c1:36:59:28:ac:bc:66:30:94:9f:7c:9b:45:
86:ea:e3:25:52:24:a9:aa:99:3a:2c:c5:f2:4b:39:
1b:1c:1c:61:1f:53:b0:75:1d:d3:14:18:0d:2d:63:
a6:d0:73:da:51:86:50:ad:98:7d:b1:fc:23:32:a2:
83:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:B4:23:37:B0:5D:81:9C:7D:52:4C:DC:8F:E2:7C:4C:22:DF:D5:38
X509v3 Authority Key Identifier:
keyid:D2:62:2F:DE:C8:FA:DF:CA:58:E7:57:5C:29:F1:0E:73:AE:77:57:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mIv3sj638pY51dcKfEOc653VxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/vLQjN7BdgZx9Ukzcj-J8TCLf1Tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/0mIv3sj638pY51dcKfEOc653VxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.192.0/21
151.237.84.0/22
194.69.201.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:b7:fe:09:ad:33:fc:a1:77:ca:ff:0e:f3:6c:b5:8c:92:41:
db:33:1a:14:83:14:b5:41:cd:9b:d3:05:b7:69:dd:af:2c:78:
f5:cd:68:e8:67:6d:61:55:44:d7:94:36:8a:39:ac:db:c0:09:
5c:f7:a7:0e:a5:05:86:01:01:c0:d5:b7:fb:50:8a:27:42:90:
64:43:9b:d2:5a:c3:10:11:46:f9:dc:f7:d5:5b:93:1b:b6:11:
d1:4f:11:49:06:89:48:ac:a8:59:62:09:66:5e:a2:55:2c:2b:
d6:eb:db:90:2d:24:7b:e2:12:dd:dc:ef:9d:fe:cb:08:d9:b8:
38:d5:e5:41:97:d4:b3:b0:4f:9f:4e:56:69:50:50:72:6a:96:
14:cb:e7:63:56:79:b8:5f:8a:9e:4e:01:72:34:32:b0:14:37:
65:11:ff:f1:36:6d:37:e4:e6:be:94:a3:db:5a:2b:c2:db:66:
73:99:40:14:f6:0d:69:b2:f5:4c:26:10:03:20:2f:f9:70:ba:
ef:3b:f3:ee:ba:7f:34:aa:7c:48:24:37:75:b0:3f:4d:fc:42:
59:e1:f4:47:e9:11:a3:30:cc:c2:e3:19:40:77:a5:03:35:62:
1a:b1:8c:2d:ab:d9:bf:c0:6e:16:0b:55:16:f7:6e:3b:50:30:
20:b4:c0:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:38 2025 by rpki-client