Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/mVCmnfzus1zrH-n5fz9Qyfcerhw.roa
File: mVCmnfzus1zrH-n5fz9Qyfcerhw.roa (raw, json)
Hash identifier: gTyIsYn6sr+yNWlUHrxDpg238Mm0zjkuZ2lowFLz+z4=
Subject key identifier: 99:50:A6:9D:FC:EE:B3:5C:EB:1F:E9:F9:7F:3F:50:C9:F7:1E:AE:1C
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 10B87C57
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/mVCmnfzus1zrH-n5fz9Qyfcerhw.roa
Signing time: Sat 01 Jan 2022 13:02:16 +0000
ROA not before: Sat 01 Jan 2022 13:02:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42923
IP address blocks: 88.199.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280525911 (0x10b87c57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 13:02:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9950a69dfceeb35ceb1fe9f97f3f50c9f71eae1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:bb:3a:ca:07:34:4a:50:87:16:d4:c5:7a:63:
6c:1b:d4:69:ca:9d:8c:cc:16:f6:5d:cf:d4:d5:75:
ee:03:3b:96:e7:2f:40:cb:8a:29:81:64:7c:5c:a7:
46:f9:63:c2:67:e6:54:57:68:47:82:8d:d4:c2:f2:
2d:eb:95:5b:52:15:b6:76:1d:ef:a7:22:67:17:68:
5c:98:30:25:04:4e:57:15:18:a0:ac:0b:ed:c0:5b:
d0:2c:b4:cc:11:1e:66:dd:37:34:9d:ab:7f:77:e0:
8f:bf:ec:e3:eb:d4:7b:ef:4d:d9:17:65:0e:79:a7:
97:d5:5b:8a:35:32:c5:3a:67:ef:ea:4d:d3:64:9f:
5e:b4:8f:9d:d1:30:31:fc:73:09:d4:c9:3b:00:2c:
e4:2a:d7:16:08:06:88:e9:5c:57:33:16:43:07:84:
89:b3:ad:dd:5a:20:e2:2f:62:8e:a5:24:b0:0c:ff:
65:c6:6b:2c:56:bd:01:7b:0f:df:2f:1a:9a:7f:6c:
8d:a1:8a:cf:2f:9b:4c:7d:32:57:90:18:51:c7:cb:
46:0c:c3:4c:41:51:13:ae:86:ff:b0:aa:bc:4e:f4:
c8:1a:d9:ff:7d:3f:cb:d4:42:cf:b7:10:79:b8:9b:
57:62:83:4c:42:9f:1a:1f:e5:8a:5e:aa:9f:db:57:
52:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:50:A6:9D:FC:EE:B3:5C:EB:1F:E9:F9:7F:3F:50:C9:F7:1E:AE:1C
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/mVCmnfzus1zrH-n5fz9Qyfcerhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.199.162.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:e8:66:4e:c6:47:66:a8:d3:ac:14:08:b5:d4:63:ad:3e:22:
80:62:e7:15:7c:0c:b6:c9:25:f0:b0:ec:bd:4e:0c:14:28:7d:
2b:b6:c2:bf:cf:c2:0e:ef:6b:b5:6f:a5:15:24:1b:f2:76:44:
c6:db:a7:c4:89:b1:14:91:8e:fb:23:97:b5:e0:3c:7b:24:1f:
34:c7:2a:57:14:b7:fd:05:66:df:a4:bc:66:73:17:35:3c:dd:
76:df:63:e3:4e:54:b8:49:8c:16:de:a4:9f:c7:c8:f7:c0:2e:
85:70:87:61:e4:7f:b2:97:2d:c2:51:6a:33:98:29:8a:98:dc:
14:77:7c:4e:4e:94:3b:dc:54:15:73:d7:97:e3:6c:1b:6c:22:
7f:40:cf:25:4f:54:32:76:8a:2a:66:17:81:96:3f:6a:eb:b5:
e3:48:34:8d:84:dd:9d:80:bc:2d:ef:a9:43:67:2e:96:92:82:
9c:23:fb:b0:84:fb:8d:38:cb:d3:b0:01:50:bb:02:70:5c:4f:
06:99:f7:40:ae:17:43:ac:75:8a:ae:c7:1e:93:68:4e:2e:6d:
08:70:e8:2b:19:cb:d5:2b:83:a7:e4:4b:e9:fe:b4:f8:56:bd:
3d:24:ad:dc:d7:af:75:9a:7f:91:d3:ca:86:12:3d:61:8e:18:
a7:19:c5:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:39:18 2025 by rpki-client