Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/vUVHG7YrYrrwxjzA9Dj3vuFzOxU.roa
File: vUVHG7YrYrrwxjzA9Dj3vuFzOxU.roa (raw, json)
Hash identifier: 2a7aKFlgwXpz7uQ7EQd/Ue7hOo6Rq/bW/2Xr8SjEIzM=
Subject key identifier: BD:45:47:1B:B6:2B:62:BA:F0:C6:3C:C0:F4:38:F7:BE:E1:73:3B:15
Certificate issuer: /CN=b453a86fd3081b803edc10d23bbeda91d7932025
Certificate serial: 018572C39663C21097BA06014FB07933F927
Authority key identifier: B4:53:A8:6F:D3:08:1B:80:3E:DC:10:D2:3B:BE:DA:91:D7:93:20:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/vUVHG7YrYrrwxjzA9Dj3vuFzOxU.roa
Signing time: Mon 02 Jan 2023 13:54:58 +0000
ROA not before: Mon 02 Jan 2023 13:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 193.22.32.0/20 maxlen: 20
193.22.48.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:96:63:c2:10:97:ba:06:01:4f:b0:79:33:f9:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b453a86fd3081b803edc10d23bbeda91d7932025
Validity
Not Before: Jan 2 13:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd45471bb62b62baf0c63cc0f438f7bee1733b15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ae:6c:41:72:94:82:da:d1:7b:7b:cc:e8:87:
26:a5:9c:35:3b:ad:76:16:64:75:de:af:6a:e5:09:
28:ab:66:e4:44:aa:f8:e6:56:3d:78:16:a7:b7:02:
00:ca:a8:cb:fa:d5:3e:81:0e:f7:01:f4:44:84:34:
10:85:ab:88:86:06:92:3f:cc:98:27:2d:a6:6e:9f:
c9:3c:2c:5e:b1:d6:b3:ab:cc:21:21:ec:55:a0:4b:
b2:62:dd:ad:56:f7:94:58:53:c5:33:7c:16:2f:18:
de:3b:9f:46:95:b6:7e:be:7a:67:c3:04:2b:e0:58:
7e:f7:ee:01:f0:3b:07:2e:05:cb:57:32:7d:c8:9a:
4f:4d:06:dd:54:ff:1a:34:cc:20:ac:cb:49:ef:42:
9f:25:cc:c4:09:ea:7b:bd:f5:83:67:c9:4d:63:01:
b4:72:4e:af:73:f0:20:65:ad:7c:29:36:5e:2e:33:
1b:5f:7d:43:7a:1e:df:97:1a:9d:2a:a7:a3:31:67:
71:de:a5:46:81:7d:63:36:bb:1c:8e:18:d5:64:b9:
a3:09:d0:26:87:8a:8f:d9:92:40:e5:37:84:22:26:
e9:41:c5:84:01:8d:67:f5:41:f2:b9:51:ed:07:16:
92:3a:19:7e:80:e4:1a:50:79:f0:98:6e:18:3e:4c:
ff:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:45:47:1B:B6:2B:62:BA:F0:C6:3C:C0:F4:38:F7:BE:E1:73:3B:15
X509v3 Authority Key Identifier:
keyid:B4:53:A8:6F:D3:08:1B:80:3E:DC:10:D2:3B:BE:DA:91:D7:93:20:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/vUVHG7YrYrrwxjzA9Dj3vuFzOxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.32.0-193.22.49.255
Signature Algorithm: sha256WithRSAEncryption
18:18:55:28:6e:b0:18:a8:c6:e5:14:c8:c3:fb:be:b4:63:80:
2f:4e:c5:d0:1f:41:41:d6:75:8e:ff:85:21:cf:e8:c6:05:a3:
f4:40:d0:b5:bd:84:36:df:8e:78:cd:cf:25:c5:8d:49:ef:15:
dc:0e:8e:6c:1c:2d:49:1a:58:4c:a9:e6:6e:e2:d4:aa:e0:20:
4d:5c:8d:56:29:e2:9b:23:96:5a:15:2f:46:54:0d:f5:2f:5a:
83:12:b8:c5:3e:3d:3f:92:a6:f8:ae:d5:dd:ed:75:4f:22:c5:
5f:80:9f:ae:0a:9b:34:f8:90:22:51:41:7d:5d:54:94:42:d9:
d4:5d:cf:03:b2:78:74:70:60:47:ca:e2:f7:7d:72:21:ec:0e:
b9:55:ac:9e:9b:be:d5:33:1f:82:c0:b3:2c:fc:ff:f0:4e:21:
da:9b:1d:8c:e6:18:e1:ae:e3:18:fc:1f:54:e0:e7:0e:27:03:
ef:24:89:8d:15:24:d7:09:00:00:ab:89:d9:e5:d0:d2:6a:6f:
6a:27:49:e1:2a:8f:0f:8f:46:a4:4d:62:87:01:42:9b:71:02:
ba:ea:7f:1a:e8:df:2d:87:b0:82:06:4a:e1:d7:f8:1d:01:8b:
46:85:f1:44:38:49:48:d6:02:ba:0f:0e:04:2e:b6:d2:c7:80:
da:e4:1c:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:09 2025 by rpki-client