Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/VouuQ_MNH4DsY5c45q86tQvh4AM.roa
File: VouuQ_MNH4DsY5c45q86tQvh4AM.roa (raw, json)
Hash identifier: Nyo11V2gZBbmWodwV08IBuWWdLu92tCBtbB8Z14JxDQ=
Subject key identifier: 56:8B:AE:43:F3:0D:1F:80:EC:63:97:38:E6:AF:3A:B5:0B:E1:E0:03
Certificate issuer: /CN=fb79c26f31575345159c840ed278a878a9256615
Certificate serial: 01856CCACD44F7BDC600EFCC996CAE5F5626
Authority key identifier: FB:79:C2:6F:31:57:53:45:15:9C:84:0E:D2:78:A8:78:A9:25:66:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3nCbzFXU0UVnIQO0nioeKklZhU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/VouuQ_MNH4DsY5c45q86tQvh4AM.roa
Signing time: Sun 01 Jan 2023 10:05:08 +0000
ROA not before: Sun 01 Jan 2023 10:05:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199968
IP address blocks: 185.7.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:cd:44:f7:bd:c6:00:ef:cc:99:6c:ae:5f:56:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb79c26f31575345159c840ed278a878a9256615
Validity
Not Before: Jan 1 10:05:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=568bae43f30d1f80ec639738e6af3ab50be1e003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5b:0a:b7:a5:71:85:04:22:39:5f:55:ba:5b:
25:c5:47:cd:93:66:30:58:10:a3:58:e2:0c:5b:5c:
a7:a5:12:00:82:10:f0:ac:a7:3f:db:b5:63:50:61:
9e:d7:36:d7:41:09:91:ff:0c:53:26:fa:01:1a:ed:
b7:51:55:96:e7:11:02:d2:42:5b:9d:5a:82:3e:0a:
41:26:5e:64:31:6a:ac:71:10:4b:5f:7f:de:4f:9e:
3c:4b:94:68:9c:c6:67:64:af:37:b6:3f:af:9f:fb:
45:a3:18:91:12:d5:bc:15:77:2c:7d:65:a6:81:cb:
6c:2b:93:3d:8f:49:ef:b3:6c:52:39:3f:12:f2:ab:
1f:5c:72:9d:f9:77:1f:d2:cf:4a:5e:3e:99:b8:4f:
9e:2d:f4:70:38:cd:f5:14:b3:96:83:90:9c:83:53:
8b:58:33:51:96:9d:da:aa:52:02:5d:3e:1d:be:06:
f8:48:8e:55:ae:4b:22:cd:fc:59:e1:82:fc:64:ca:
a6:fb:4b:bd:da:6d:a4:62:75:5e:74:ed:36:23:2a:
a9:3e:76:ce:55:91:60:85:0e:68:5c:18:66:ce:61:
34:c3:5a:d3:8b:49:bf:24:ca:8d:11:20:4f:87:0c:
a3:a7:13:f9:6a:eb:b2:1f:fe:74:09:72:da:0b:22:
f0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:8B:AE:43:F3:0D:1F:80:EC:63:97:38:E6:AF:3A:B5:0B:E1:E0:03
X509v3 Authority Key Identifier:
keyid:FB:79:C2:6F:31:57:53:45:15:9C:84:0E:D2:78:A8:78:A9:25:66:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3nCbzFXU0UVnIQO0nioeKklZhU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/VouuQ_MNH4DsY5c45q86tQvh4AM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/1-3nCbzFXU0UVnIQO0nioeKklZhU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.33.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:44:9a:01:c0:de:53:9f:f6:64:c6:d6:7a:6e:af:49:86:9c:
91:7f:de:88:d0:5c:8d:54:77:21:50:e0:85:4a:02:0a:07:6b:
41:36:78:8e:dd:0c:60:3b:66:e5:9e:10:9a:75:04:c4:40:c2:
38:ec:13:2c:fc:7f:6e:43:e9:05:51:cf:01:2a:13:49:ba:4c:
f5:6b:4d:19:cd:e7:cc:ee:d4:c2:03:25:28:2d:7e:cc:e5:7b:
4f:a8:80:70:eb:82:dd:40:4d:95:96:65:03:26:cd:cf:f8:f9:
d2:e6:5b:ec:9a:2a:0d:24:24:05:42:0b:49:2c:7f:83:30:06:
62:a2:8b:a0:a4:19:17:3a:3c:ea:5e:58:f5:6d:d8:45:5e:e9:
3f:44:7e:44:24:f7:06:d6:b9:f6:ab:8d:10:1d:fc:f1:50:d1:
41:12:2c:2d:4b:b6:ff:c4:b2:e9:38:b8:5a:fa:db:0d:85:60:
7d:50:c8:47:21:0a:fd:05:72:64:c6:4f:cd:bb:af:f4:e6:63:
73:b2:13:98:bd:fc:e7:b6:69:87:7a:84:22:dd:bb:4e:4e:89:
0e:fb:c8:7a:f8:f6:c7:94:91:00:ad:2e:64:22:b6:d1:d4:85:
8f:6d:77:a2:a3:c5:bc:87:3b:83:fb:c3:bd:a4:60:36:a1:24:
03:e2:4d:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 08:43:41 2025 by rpki-client