Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/46dec5-c38d-4c1d-9cec-9ead81da2e44/1/IMVLnl9NIB7r4j8XphVmGvbxw6s.roa
File: IMVLnl9NIB7r4j8XphVmGvbxw6s.roa (raw, json)
Hash identifier: vyWMfTBpKWlcZWJr/BfZoIQlXQYZNLcLTj6+qFumbZA=
Subject key identifier: 20:C5:4B:9E:5F:4D:20:1E:EB:E2:3F:17:A6:15:66:1A:F6:F1:C3:AB
Certificate issuer: /CN=ab7aaabb23cd245bfa828fb02521d644c6d5b566
Certificate serial: 048CB5E2
Authority key identifier: AB:7A:AA:BB:23:CD:24:5B:FA:82:8F:B0:25:21:D6:44:C6:D5:B5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q3qquyPNJFv6go-wJSHWRMbVtWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/46dec5-c38d-4c1d-9cec-9ead81da2e44/1/IMVLnl9NIB7r4j8XphVmGvbxw6s.roa
Signing time: Thu 05 May 2022 10:47:07 +0000
ROA not before: Thu 05 May 2022 10:47:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212318
IP address blocks: 178.57.66.0/24 maxlen: 24
178.57.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76330466 (0x48cb5e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab7aaabb23cd245bfa828fb02521d644c6d5b566
Validity
Not Before: May 5 10:47:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20c54b9e5f4d201eebe23f17a615661af6f1c3ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:10:f7:0b:af:73:3a:68:e2:f0:2a:b2:22:e8:
0b:ca:f1:91:6c:f1:b8:c8:20:46:e1:2f:18:9f:0f:
1a:29:3d:e8:28:98:82:07:60:31:96:54:73:12:7d:
ab:8a:0a:47:1b:b5:cf:14:1b:10:4e:e0:29:01:ce:
60:b2:26:65:1e:f9:1d:e3:3a:b6:b2:d4:7b:58:04:
97:d5:75:43:a8:13:38:13:c2:ae:7f:47:40:40:e0:
59:f4:09:fd:a1:e4:64:18:f7:c5:b5:02:88:c6:2e:
66:2c:bc:b8:84:35:b5:a6:35:c6:76:3a:82:a2:64:
1c:bb:00:c0:6f:53:fc:9e:03:27:f8:39:b6:96:b9:
7a:8b:ad:ae:ce:6b:99:10:5e:90:d4:d7:e4:d6:a7:
d1:c6:81:de:84:2a:2d:30:e1:1a:dd:0e:b4:f4:fb:
10:71:02:85:99:8e:d6:69:24:c6:df:16:16:dc:e2:
14:c0:2c:10:43:64:7c:d8:f9:8a:ff:b2:d6:41:c7:
a5:39:2c:0b:00:12:a9:cf:c6:6f:9c:8a:6e:17:c8:
3a:a0:09:a2:16:3f:36:5f:17:dc:a6:11:d2:97:9d:
a8:de:bc:ed:3a:9b:e7:1a:31:7d:24:69:4e:05:bf:
46:86:a2:0f:79:1a:8e:ca:d1:e3:42:b2:d6:e4:b3:
2e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C5:4B:9E:5F:4D:20:1E:EB:E2:3F:17:A6:15:66:1A:F6:F1:C3:AB
X509v3 Authority Key Identifier:
keyid:AB:7A:AA:BB:23:CD:24:5B:FA:82:8F:B0:25:21:D6:44:C6:D5:B5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q3qquyPNJFv6go-wJSHWRMbVtWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/46dec5-c38d-4c1d-9cec-9ead81da2e44/1/IMVLnl9NIB7r4j8XphVmGvbxw6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/46dec5-c38d-4c1d-9cec-9ead81da2e44/1/q3qquyPNJFv6go-wJSHWRMbVtWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.57.65.0-178.57.66.255
Signature Algorithm: sha256WithRSAEncryption
88:3d:88:ac:3d:21:d8:9a:fe:d4:ce:36:28:38:77:ac:24:af:
f4:15:8f:1a:c9:15:fe:4b:5f:15:0a:7f:17:ba:cd:12:ec:71:
3c:d6:ba:75:4c:e1:fb:56:9d:5d:3d:db:5b:45:c4:12:7a:57:
24:64:46:1e:8c:14:44:c8:17:ef:08:7d:57:4c:0e:66:c7:98:
4c:b8:36:84:06:0f:53:8b:81:8f:aa:02:34:a5:36:e3:12:64:
c8:46:e4:c7:1e:4c:b1:ba:34:49:f0:f9:a6:0c:99:e6:eb:1a:
d1:04:21:49:cb:dc:ad:60:a5:18:99:f9:74:f5:fe:c6:cd:46:
de:ea:a2:f0:90:3a:db:aa:1d:f6:df:49:a4:17:9b:7f:35:48:
16:48:47:ba:a0:d0:fb:c9:fc:28:3c:d1:24:96:61:70:43:f2:
4e:00:00:4a:fa:34:31:49:dd:52:96:6f:cd:19:4a:fb:e5:15:
8e:2d:c9:6a:64:f6:54:02:1e:0c:97:a3:1b:b6:9f:7d:ea:29:
d0:de:dd:3b:cb:8a:fb:e1:0e:7d:28:d6:ee:84:32:f8:41:c7:
ae:11:46:c3:40:c5:ed:55:fb:43:ef:b0:df:b8:b8:1e:a8:b4:
9f:13:a2:87:0b:d1:6c:63:37:10:08:36:72:ef:35:d1:e9:28:
0d:9b:79:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:24:43 2025 by rpki-client