Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d55988-42d2-4206-95a9-bb018cfbeaa2/1/VIwq_ctsCkQrfgowqt1NDJOC5_U.roa
File: VIwq_ctsCkQrfgowqt1NDJOC5_U.roa (raw, json)
Hash identifier: Khic3PFMMg3WfE3g/m/pow0Bnd5pXIeo/sGGls6g3bk=
Subject key identifier: 54:8C:2A:FD:CB:6C:0A:44:2B:7E:0A:30:AA:DD:4D:0C:93:82:E7:F5
Certificate issuer: /CN=185a2f67d245cba9518b017061a71692ee79e7ff
Certificate serial: 0188C3A88F9079907579FE9D15BF0FB65573
Authority key identifier: 18:5A:2F:67:D2:45:CB:A9:51:8B:01:70:61:A7:16:92:EE:79:E7:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GFovZ9JFy6lRiwFwYacWku555_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d55988-42d2-4206-95a9-bb018cfbeaa2/1/VIwq_ctsCkQrfgowqt1NDJOC5_U.roa
Signing time: Fri 16 Jun 2023 10:03:03 +0000
ROA not before: Fri 16 Jun 2023 10:03:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200638
IP address blocks: 81.163.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c3:a8:8f:90:79:90:75:79:fe:9d:15:bf:0f:b6:55:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=185a2f67d245cba9518b017061a71692ee79e7ff
Validity
Not Before: Jun 16 10:03:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=548c2afdcb6c0a442b7e0a30aadd4d0c9382e7f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2c:84:cf:fb:44:75:e0:a1:9f:4c:5a:18:da:
56:a3:c4:30:bf:0f:8c:db:64:68:3c:e5:fc:73:1e:
fb:b6:85:f7:00:0d:04:72:a2:c3:61:91:5f:9e:cc:
fb:41:fc:8a:5c:1a:61:3f:72:5f:77:7a:4b:9f:ee:
54:20:02:d0:f8:b9:97:6f:95:c7:eb:06:ce:67:7f:
f1:00:ac:03:cc:37:2d:8b:c2:26:0f:bc:eb:78:a6:
4c:9f:6f:64:06:ef:13:bb:c0:25:cb:7b:6d:ab:e3:
b9:ba:1d:73:70:80:fc:97:03:4b:bc:5b:e1:3a:4f:
f2:ac:b0:4f:90:a5:cc:96:67:77:9a:9e:20:9c:06:
2a:db:32:41:4e:15:76:21:70:49:22:63:93:69:a5:
fe:5d:1d:b2:9f:0e:53:66:1a:55:0f:b2:12:83:8f:
6d:4b:a6:20:05:4f:b5:d5:c8:20:58:c6:69:b0:77:
9e:e0:33:3a:46:74:7c:53:27:05:16:9a:ba:e8:34:
0f:a1:0a:07:f1:4f:f9:ed:38:1e:60:e6:63:a0:ee:
99:60:33:74:7f:1e:cb:2d:00:bc:bb:bb:e4:a9:44:
cf:a1:53:35:01:7b:52:24:82:f5:b0:49:fb:cb:af:
eb:43:a7:fc:b9:ec:50:f6:01:6b:ce:b7:e1:44:12:
fd:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:8C:2A:FD:CB:6C:0A:44:2B:7E:0A:30:AA:DD:4D:0C:93:82:E7:F5
X509v3 Authority Key Identifier:
keyid:18:5A:2F:67:D2:45:CB:A9:51:8B:01:70:61:A7:16:92:EE:79:E7:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GFovZ9JFy6lRiwFwYacWku555_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d55988-42d2-4206-95a9-bb018cfbeaa2/1/VIwq_ctsCkQrfgowqt1NDJOC5_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d55988-42d2-4206-95a9-bb018cfbeaa2/1/GFovZ9JFy6lRiwFwYacWku555_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.163.195.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:d1:aa:99:01:a2:22:a1:fe:9b:12:9f:d3:3d:24:43:5d:3c:
ba:84:98:3f:ce:a1:c6:cb:e2:85:d4:d4:1a:33:f4:a1:fb:4d:
0f:19:00:0a:f2:06:c9:f5:ba:31:9d:c6:0d:64:49:1e:bb:88:
2d:aa:fc:52:db:58:5f:3c:99:5e:6c:0c:69:10:1d:5b:f7:9f:
f7:18:d3:5d:95:c7:a6:d9:04:e4:8d:e4:ee:d0:f9:8f:ca:78:
a7:7f:84:b6:1d:3f:ed:22:ba:71:78:79:d2:b2:43:b3:48:4e:
de:c8:09:92:f1:0c:c1:38:8e:7d:fc:50:9c:28:5c:f7:04:63:
a7:70:d9:6f:d6:bc:d7:95:b1:92:ea:6c:b5:8e:ba:27:f8:54:
d3:92:04:72:62:12:c9:76:e0:ec:88:71:c8:16:59:a8:5d:01:
e0:f8:ab:7e:37:8b:71:0a:38:c2:e0:b9:09:3f:b2:61:d9:39:
e5:ec:fe:9d:04:2e:97:25:9d:32:93:aa:68:8f:bb:7c:b6:a8:
c0:9d:54:fb:8d:d1:c3:5a:95:65:94:98:8f:d8:cb:6c:64:9f:
33:33:cc:01:7d:b2:c4:c9:0c:e2:44:d0:3e:c4:63:15:a7:f9:
63:ae:3b:54:ce:55:bd:1c:86:00:55:24:66:f9:a4:86:f1:dd:
44:49:a6:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 13:21:46 2025 by rpki-client