Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/vEklRUj0uC_TNRLC-quPeNS_qZ0.roa
File: vEklRUj0uC_TNRLC-quPeNS_qZ0.roa (raw, json)
Hash identifier: G6+r+0gTFWc9EfD6UsT57Y/fuCHl9DE3RElv++LRjFc=
Subject key identifier: BC:49:25:45:48:F4:B8:2F:D3:35:12:C2:FA:AB:8F:78:D4:BF:A9:9D
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A827CB6
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/vEklRUj0uC_TNRLC-quPeNS_qZ0.roa
Signing time: Sat 01 Jan 2022 04:52:05 +0000
ROA not before: Sat 01 Jan 2022 04:52:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198984
IP address blocks: 195.136.172.0/24 maxlen: 24
195.136.175.0/24 maxlen: 24
195.136.184.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 981630134 (0x3a827cb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc49254548f4b82fd33512c2faab8f78d4bfa99d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:51:b4:b1:64:4e:c5:9e:dd:3c:3b:9e:08:89:
ca:ee:c8:51:99:ce:77:b4:9f:9f:35:2d:cd:25:5d:
73:d6:38:70:6a:bd:47:e3:35:55:10:c3:76:c1:d0:
86:b5:67:1a:f1:6b:df:33:39:ca:e7:e4:45:9e:5e:
4f:3f:95:3c:b6:67:d6:5b:53:96:47:70:74:76:ee:
04:77:df:2c:6e:78:46:37:3a:0b:7a:3b:a6:4b:69:
00:2e:d1:5b:68:71:09:b5:46:a4:9f:fe:ef:1b:c0:
67:e8:9f:2a:95:3e:47:d9:35:dc:71:ad:cf:28:ca:
84:f3:9e:4c:38:b8:ba:fd:e3:35:af:6e:b8:e6:f4:
bc:3c:9c:a7:4c:7c:fa:56:2f:d6:bd:40:b2:79:08:
bb:9f:9b:81:46:a3:e9:1e:bf:a4:26:3b:0a:3a:78:
71:42:fc:51:12:8b:73:bb:d4:ac:70:9f:26:cd:fd:
29:46:76:93:36:61:91:7a:8e:c2:2a:ff:3b:d0:95:
f1:ce:4a:c1:e9:6c:ef:f6:31:cc:24:9d:d1:ad:95:
d4:a0:33:80:17:00:db:b5:6a:ad:e3:84:cf:b4:ba:
ca:99:32:35:f2:82:8e:33:2c:d9:3b:16:8a:48:c3:
d3:d4:d0:3f:ee:00:25:52:2d:f7:b3:4d:96:bf:d3:
f5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:49:25:45:48:F4:B8:2F:D3:35:12:C2:FA:AB:8F:78:D4:BF:A9:9D
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/vEklRUj0uC_TNRLC-quPeNS_qZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.136.172.0/24
195.136.175.0/24
195.136.184.0/23
Signature Algorithm: sha256WithRSAEncryption
12:69:b8:5d:cd:68:09:cc:c7:9d:5b:61:17:9c:9b:74:eb:b4:
c0:93:a3:34:bd:3d:df:ce:67:e5:eb:92:7f:80:a6:cd:aa:34:
55:41:13:12:21:24:ab:b7:f1:a9:eb:10:02:3c:0a:d2:cb:93:
37:72:db:10:45:80:a8:64:30:ec:1f:01:1a:bd:84:c1:70:e6:
6f:58:3a:40:f2:fa:41:49:91:45:4b:68:8b:41:de:b6:89:b4:
92:51:17:34:bf:d8:c2:0e:a7:a2:b0:62:32:09:4f:98:3a:07:
eb:9b:76:1e:23:7a:c5:bb:28:f6:b7:1a:4b:90:ed:d2:73:31:
30:73:a3:41:6c:7c:cc:81:3f:84:6e:3d:cc:0b:a9:fc:3b:90:
63:ff:b8:3f:77:75:a3:3b:c1:36:7f:a4:bb:e3:eb:8d:03:90:
5f:82:31:98:36:34:57:4f:ae:90:54:9a:5a:06:35:b9:17:66:
76:8f:c3:27:0a:5b:4c:16:e7:49:00:0f:b9:21:8f:a0:b5:8c:
a4:ec:5e:3c:b3:e6:59:6c:45:ee:e9:b5:cd:1c:5d:6a:f3:0f:
9e:3e:da:52:32:8b:41:13:57:6b:12:97:ce:e0:30:cd:24:8a:
6c:bc:87:c9:93:a0:b1:08:cc:d9:38:84:e0:69:2b:02:02:7c:
03:17:fb:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:02 2025 by rpki-client